Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/B27462D677CE11EE92D72D474AD9E6FC.roa
File: B27462D677CE11EE92D72D474AD9E6FC.roa (raw, json)
Hash identifier: jAN4r34ofSFeK8zRXd4T/2zGryJDsF7FCE205yiNRzU=
Subject key identifier: 8B:48:E0:0A:F3:10:63:42:37:4A:A4:3A:D5:01:47:E7:1C:F7:D3:B2
Certificate issuer: /CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Certificate serial: 0406
Authority key identifier: A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/B27462D677CE11EE92D72D474AD9E6FC.roa
Signing time: Tue 31 Oct 2023 09:20:14 +0000
ROA not before: Tue 31 Oct 2023 09:20:10 +0000
ROA not after: Fri 31 Oct 2031 09:20:10 +0000
asID: 205897
IP address blocks: 154.70.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.mft
rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1030 (0x406)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Validity
Not Before: Oct 31 09:20:10 2023 GMT
Not After : Oct 31 09:20:10 2031 GMT
Subject: CN=6540c6ce-cdc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5e:18:dc:41:02:b6:25:48:38:41:7e:d5:07:
6d:00:19:d0:b0:dc:78:c8:aa:18:ce:8c:34:91:40:
8b:b5:fd:a4:58:52:00:d0:d8:4b:3c:84:48:6f:b7:
be:41:5e:0d:2a:a9:86:35:3c:55:db:25:cb:28:31:
89:e8:3b:ff:72:9b:24:30:b9:5c:38:95:8a:33:88:
01:00:ed:86:72:e0:8c:35:d6:36:43:71:26:9b:f4:
91:63:b7:51:eb:d3:17:50:6e:79:07:ea:56:6d:3c:
05:ac:8b:08:89:d8:63:bf:70:83:cb:4c:0c:c7:8c:
16:5f:5e:04:cd:d4:95:68:93:2d:d9:e4:28:7d:95:
bb:c9:5f:34:c5:71:56:88:67:db:4d:86:24:f7:31:
f9:20:fc:50:b3:b3:e1:48:ad:68:fe:fb:07:21:5a:
46:39:d9:58:1e:38:7b:e5:ec:99:5d:54:7b:f8:7c:
5a:4a:0c:8c:a3:5c:17:11:88:54:76:28:31:b2:9f:
cf:96:49:34:63:f1:c4:d6:e9:07:17:48:fb:8a:e1:
75:21:aa:65:a3:83:c9:2c:71:fd:cd:f4:eb:93:6a:
89:66:ce:5b:b6:74:fa:b0:51:94:21:11:6d:c1:db:
d3:ba:50:24:d2:a0:3c:07:da:01:5d:c4:d3:b4:22:
b4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:48:E0:0A:F3:10:63:42:37:4A:A4:3A:D5:01:47:E7:1C:F7:D3:B2
X509v3 Authority Key Identifier:
keyid:A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/B27462D677CE11EE92D72D474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.70.201.0/24
Signature Algorithm: sha256WithRSAEncryption
21:ba:53:d3:0f:84:dc:14:04:7e:ff:e8:f0:27:ec:b4:4d:f9:
98:97:6d:1c:e9:11:fe:84:32:6b:56:52:ac:51:01:fe:bc:14:
36:06:bb:a8:58:76:12:8d:0b:d1:e1:c5:3d:9c:10:c6:c4:4f:
de:42:5d:2e:37:aa:bc:fe:44:87:a8:cf:20:79:c9:f8:c4:65:
3f:17:d7:a5:66:59:48:3f:58:50:a1:a4:d7:20:aa:c8:91:53:
7c:9b:9b:c9:94:ec:99:ce:34:56:28:1c:04:43:79:63:b0:07:
76:99:1a:29:5f:b1:41:eb:70:45:a9:b4:67:0f:7e:8c:ef:be:
ef:f3:8e:c6:bf:0a:b8:99:26:73:4a:cd:c9:1a:89:a9:a1:8b:
c6:f2:6f:4a:45:3d:84:16:60:bb:12:9e:0a:64:50:97:b7:fa:
81:77:ff:ed:0f:cb:56:83:24:69:dd:eb:75:23:c4:d3:35:bb:
d5:94:25:9e:ec:f8:b1:e8:95:84:60:22:45:aa:38:96:32:e5:
b5:1a:f0:e8:5b:f6:af:11:60:52:67:81:14:cc:4e:81:a3:af:
d5:08:65:23:d0:bb:de:45:5e:7e:64:7d:38:dd:c6:bb:b3:40:
ad:b0:88:5a:2d:f6:a6:27:6f:f0:99:f5:50:15:db:35:a7:fd:
d7:c5:52:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:39:30 2024 by rpki-client on console-fra.rpki-client.org