Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E87343641E5111EFABC9F92C7DDC24C2.roa
File: E87343641E5111EFABC9F92C7DDC24C2.roa (raw, json)
Hash identifier: /q+Hu0EQZ0w6Or5vEh8cqI6fidqSZ2zTj+XZpIcOF4Y=
Subject key identifier: CD:5C:47:78:EC:C8:FF:40:55:E7:40:BA:5B:BE:52:64:95:FE:BF:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BBF2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E87343641E5111EFABC9F92C7DDC24C2.roa
Signing time: Thu 30 May 2024 06:57:41 +0000
ROA not before: Thu 30 May 2024 06:57:38 +0000
ROA not after: Mon 01 Jul 2024 06:57:38 +0000
asID: 44559
IP address blocks: 154.209.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48114 (0xbbf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 06:57:38 2024 GMT
Not After : Jul 1 06:57:38 2024 GMT
Subject: CN=66582365-45dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:14:e7:9b:2d:ed:a1:95:fe:e6:cc:05:11:9f:
4c:c4:70:3a:23:96:76:dc:96:73:48:12:34:df:cf:
98:59:69:23:8f:b3:4e:ac:0b:56:7e:4e:90:b5:e1:
c1:15:d3:b0:18:d6:05:b3:a9:03:69:0d:d5:3a:b0:
45:2f:b6:28:8d:87:a3:75:d8:9f:a4:c6:6a:c4:6b:
da:1b:ce:7f:3d:45:e7:7f:74:81:3e:ce:71:5f:5d:
9e:f1:43:f2:00:a7:25:95:90:30:c8:f9:38:be:c4:
7e:75:aa:ba:a9:e6:fa:76:e7:b7:7b:0c:30:48:d4:
b7:0e:39:b7:6b:52:f9:a6:6a:51:aa:9f:65:39:cf:
27:0b:44:fd:9c:a3:f2:54:e7:c8:c0:ea:bf:e4:d1:
8e:ad:d6:94:62:56:c0:7a:59:b9:f2:9a:1a:d8:89:
70:4d:8e:3f:97:5d:bb:81:48:e4:f3:97:c8:8c:96:
94:9c:a3:ae:d1:83:19:e2:99:2e:f9:c9:3e:08:fa:
e1:da:f0:d1:d0:81:d8:76:9b:ca:c6:2b:3d:96:c1:
ac:bf:81:c9:cc:00:a4:09:98:69:dc:74:62:d3:9c:
7b:72:7f:76:61:88:a6:b5:e0:7c:c7:8d:70:bf:3e:
ba:36:8e:00:1e:39:8f:d0:ed:b6:98:93:ec:9b:4e:
61:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:5C:47:78:EC:C8:FF:40:55:E7:40:BA:5B:BE:52:64:95:FE:BF:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E87343641E5111EFABC9F92C7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.192.0/19
Signature Algorithm: sha256WithRSAEncryption
bc:51:3c:b8:d9:3c:67:fb:7f:af:4c:04:84:cd:8d:19:cb:95:
a5:cb:01:b5:5f:0d:f7:d6:71:12:18:e0:e5:5c:2a:6e:ed:b0:
db:24:ba:fb:76:92:8f:53:99:13:e6:67:43:c0:ef:9d:ac:fb:
99:73:4b:eb:2f:8d:39:93:2c:f5:ed:15:ac:af:62:c0:e6:c1:
41:db:f7:72:3f:1a:ac:fd:17:4f:44:08:7a:2d:2a:cc:23:c9:
15:1e:49:14:c5:ae:ac:61:90:fc:36:3d:14:6c:7d:cc:03:d3:
59:21:2c:ae:3c:47:0f:2e:38:63:04:b8:d6:5c:f0:aa:a0:31:
29:cd:89:f0:38:cd:f2:09:d4:01:94:30:48:7c:e4:89:a5:23:
02:e1:9c:d3:42:65:c7:07:1f:aa:d1:ee:80:12:7d:0f:82:61:
b6:b8:bb:d3:29:34:f3:28:e4:4e:bb:b5:cb:86:3c:37:f4:57:
e1:44:97:3b:f6:0d:54:87:f7:ee:bd:6f:72:c4:70:54:18:1f:
37:f6:6e:69:6c:fb:c2:bc:47:82:9b:63:64:c0:20:f4:9e:82:
33:25:c2:54:50:55:6b:93:9a:d4:d5:88:56:13:31:9f:db:9c:
ff:9d:0f:c9:d2:7a:9c:2f:52:51:3b:88:09:31:26:b2:b8:e9:
dc:84:f5:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 02:45:17 2024 by rpki-client on console-fra.rpki-client.org