Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE41D7F40C0B11EF89252100017001B1.roa
File: EE41D7F40C0B11EF89252100017001B1.roa (raw, json)
Hash identifier: vuzXF7s1MlRNoP8RaVZ/g7g2Aj/Nj34mWomWt9FSQBY=
Subject key identifier: 00:1F:D8:2C:C8:CD:80:FA:F4:05:B9:BD:63:C1:D2:76:A7:26:6E:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B541
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE41D7F40C0B11EF89252100017001B1.roa
Signing time: Tue 07 May 2024 00:51:25 +0000
ROA not before: Tue 07 May 2024 00:00:22 +0000
ROA not after: Sun 09 Jun 2024 00:00:22 +0000
asID: 23470
IP address blocks: 154.194.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46401 (0xb541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 00:00:22 2024 GMT
Not After : Jun 9 00:00:22 2024 GMT
Subject: CN=66397b0d-1672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:aa:7e:5f:e9:eb:52:6e:31:7f:0f:03:7d:07:
be:98:eb:b0:2b:b3:5d:31:31:28:ac:de:ae:30:66:
e7:4a:d9:fb:21:a9:18:13:f3:c8:ba:db:73:e9:88:
1c:5b:f9:d1:78:84:ef:9c:9f:7e:5b:16:88:bb:6b:
f5:b9:d5:bf:b3:0e:08:a6:3d:2c:24:d1:5b:81:13:
a8:ae:2f:55:de:a2:40:84:a6:0d:99:91:70:7e:0e:
f2:43:08:33:7c:e8:a2:57:92:15:a5:e9:1f:26:7b:
ad:b9:8b:18:81:57:a9:24:bf:45:a7:b8:20:3c:aa:
c1:92:bc:7e:6c:e9:8e:47:d5:91:64:f3:70:a2:65:
6b:59:82:0c:1d:4a:2c:04:1d:76:e9:ac:85:61:f4:
a6:16:bb:02:28:a3:cf:16:75:dd:d4:d9:7f:1f:f5:
30:14:02:5e:40:b4:25:35:4d:ec:6c:d8:19:8b:c7:
84:61:e2:72:88:b9:1b:50:59:3a:db:a0:5d:85:61:
c6:69:4f:c7:03:6c:e6:5d:6b:8a:68:b3:ee:2e:9f:
9f:59:47:a0:ae:a7:93:8f:02:1b:94:a4:8f:64:ff:
71:5f:b1:6a:85:cf:22:e1:55:dd:ca:6c:e1:86:77:
7f:ea:58:3f:e3:78:75:ab:c5:04:1a:79:04:f8:31:
59:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1F:D8:2C:C8:CD:80:FA:F4:05:B9:BD:63:C1:D2:76:A7:26:6E:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE41D7F40C0B11EF89252100017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.57.0/24
Signature Algorithm: sha256WithRSAEncryption
39:70:d0:19:3d:55:70:dc:41:34:a1:ce:41:25:51:db:b6:ce:
48:be:4f:cb:6f:52:c6:17:08:ed:00:bf:a0:a5:b8:0f:bb:ef:
49:20:96:32:51:8d:29:c7:18:96:51:54:77:04:a7:db:ab:3d:
8e:20:ed:a2:24:0d:24:ef:60:6f:78:0d:c3:c7:15:08:70:25:
1d:70:a6:13:09:a2:c1:27:ee:07:65:a8:e1:ba:33:0f:a6:64:
1d:5c:ab:6d:45:25:ab:8f:ea:00:80:11:8a:5c:c7:70:2d:d1:
6b:2f:b9:20:c3:72:10:1f:4b:70:0c:ee:87:a7:fb:82:f3:98:
79:8d:3b:3c:44:b7:37:47:d5:e5:32:51:47:d3:a5:e4:5d:f8:
f7:8d:8e:81:17:06:8f:31:99:f8:45:68:43:2a:d4:bb:fd:05:
86:79:90:38:1f:b9:7a:74:1e:15:21:95:9e:da:59:27:f9:1c:
d7:a0:8e:8e:05:46:94:28:01:7b:e9:86:79:2f:28:79:8e:de:
d6:b2:1d:57:00:17:ec:96:43:cc:3d:9c:b2:31:fb:ba:43:26:
cd:d8:c3:af:9b:96:68:15:5a:95:66:d7:46:f0:4e:2e:03:ea:
60:e7:d9:db:25:da:24:13:75:29:e5:6f:93:62:90:0b:75:e7:
cc:27:5e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:26 2024 by rpki-client on console-fra.rpki-client.org