Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED38ECD00B5C11EFBB410300017001B1.roa
File: ED38ECD00B5C11EFBB410300017001B1.roa (raw, json)
Hash identifier: cMaDmodIaQxi8oowEakQIwA8W7kCfVKJdEgQzYA+Kf8=
Subject key identifier: B2:10:DB:B3:13:6F:81:3A:81:D7:EF:DA:24:0B:B4:F9:90:54:19:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B4F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED38ECD00B5C11EFBB410300017001B1.roa
Signing time: Mon 06 May 2024 03:58:42 +0000
ROA not before: Mon 06 May 2024 03:58:38 +0000
ROA not after: Tue 11 Jun 2024 03:58:38 +0000
asID: 63139
IP address blocks: 154.203.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46324 (0xb4f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 03:58:38 2024 GMT
Not After : Jun 11 03:58:38 2024 GMT
Subject: CN=66385572-37df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:53:a6:bb:c7:6f:50:a4:04:f1:11:5b:73:20:
3d:ba:bd:ac:7c:77:de:cb:d9:69:7c:fa:fd:68:57:
dd:b2:9e:9c:67:b1:f9:ba:c9:cd:2d:4e:cd:b4:58:
2a:dd:dc:9c:69:6a:31:d8:e2:4b:31:6e:21:eb:21:
65:75:ed:75:52:97:db:66:b8:e7:85:27:42:34:22:
4b:77:f1:3d:39:be:13:a5:c7:a5:56:2b:d0:c1:6c:
c5:98:d8:4a:b4:c5:41:a2:3d:b6:63:27:83:69:c4:
cb:7a:e5:9a:06:c1:3a:19:01:9b:7a:19:81:ba:cf:
63:9b:50:ff:cf:63:68:79:29:fa:08:f2:1d:1b:ca:
11:8a:4c:41:72:86:31:12:17:02:c4:53:74:7f:8e:
2e:91:e5:a5:b3:5a:22:a9:86:7e:e2:e1:82:bf:1e:
be:15:da:76:78:b4:ff:d5:f7:2c:2f:ec:aa:67:ad:
e8:de:d1:b1:64:f7:52:24:d0:1f:b4:1b:c0:d2:88:
95:e7:03:37:92:85:43:f0:a5:25:8e:d6:d4:b0:ba:
50:64:e2:58:e0:c4:e4:f6:93:fc:5c:79:5b:da:6e:
2b:6d:82:85:86:a5:1d:24:88:b4:36:8e:fd:d4:ec:
fd:ad:60:dd:b7:4e:09:a7:d2:4c:d8:f3:fb:01:d2:
44:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:10:DB:B3:13:6F:81:3A:81:D7:EF:DA:24:0B:B4:F9:90:54:19:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED38ECD00B5C11EFBB410300017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.188.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:8c:e7:32:f3:96:89:d5:91:cf:5e:26:f2:07:ca:0d:ee:da:
8d:44:25:f3:62:e9:03:d5:71:2b:8f:14:9d:26:a1:23:0f:05:
80:a6:d0:84:49:04:56:c3:cf:a0:0c:03:7d:89:e6:a4:17:9e:
a9:ca:26:14:c7:03:a5:ff:00:53:e8:8f:c9:97:c0:d3:83:25:
3b:f1:b2:e1:3a:b7:07:08:7b:aa:78:6a:34:dc:0f:dc:1e:41:
44:6a:05:9c:da:f5:5a:9e:39:a3:5a:fb:a0:ca:bd:c7:73:43:
23:20:c1:63:e1:42:06:97:03:8c:c9:88:e7:b0:b5:3f:cb:13:
04:b6:79:63:0c:0d:39:8d:f4:d3:49:eb:84:2e:2d:b8:94:c0:
85:40:ef:55:de:2d:63:01:07:d3:da:c9:05:00:fd:c7:af:2f:
61:61:1e:38:e0:1d:c5:65:aa:3e:19:07:62:7e:a1:ce:0a:22:
ea:bd:51:85:17:31:b9:e7:ba:90:81:48:58:89:50:58:98:4e:
2d:01:71:0a:af:5e:10:04:12:4f:67:4d:34:59:ae:28:78:38:
26:5d:12:ff:4c:97:4f:0d:8b:1d:c0:7b:8f:1c:16:36:1b:cc:
c8:e1:84:44:5e:27:40:99:9c:98:c3:b2:e3:a1:87:f0:28:59:
80:58:5c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:26 2024 by rpki-client on console-fra.rpki-client.org