Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01DA97F810DE11EE94A3362E4AD9E6FC.roa
File: 01DA97F810DE11EE94A3362E4AD9E6FC.roa (raw, json)
Hash identifier: BJz2TsIlXSH1aKTmtwl4DtDaPfAAvymauWlhym53UeQ=
Subject key identifier: EE:F8:62:63:C0:68:6F:C3:3A:EC:83:16:15:7B:45:7D:75:6D:C4:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D7C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01DA97F810DE11EE94A3362E4AD9E6FC.roa
Signing time: Thu 22 Jun 2023 09:20:20 +0000
ROA not before: Thu 22 Jun 2023 09:20:16 +0000
ROA not after: Fri 05 Jul 2024 09:20:16 +0000
asID: 146993
IP address blocks: 154.203.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11644 (0x2d7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 09:20:16 2023 GMT
Not After : Jul 5 09:20:16 2024 GMT
Subject: CN=64941253-6f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:40:69:70:6b:54:ce:1e:9c:5f:36:8d:6a:e8:
49:c3:ff:f9:ef:43:c9:49:49:0c:18:f0:bf:64:c8:
e9:3e:ed:a0:19:20:59:e6:bb:7e:76:f6:89:6f:9e:
a8:f5:18:82:07:71:81:37:52:b1:2f:d9:d5:6c:8c:
d3:bb:da:ea:a1:89:89:4d:fd:fd:ad:db:74:f6:0e:
ad:3e:f2:a8:29:6d:9e:5a:cf:dc:a6:2b:99:3d:f9:
b8:17:65:67:a1:75:c6:0b:de:70:e5:5f:51:18:0d:
07:eb:b0:95:8a:59:ef:fb:35:40:df:34:61:a2:73:
3d:49:31:0f:9f:43:20:cc:45:51:0a:61:0b:13:02:
11:44:ab:3f:fb:71:81:23:32:cd:36:b8:d9:a2:12:
11:3e:a1:02:bc:74:83:ef:6a:c9:55:1a:f8:54:10:
c0:ba:40:5b:78:a5:3d:ef:fb:de:67:ac:83:71:35:
80:b1:fe:38:64:3d:d4:29:a9:eb:88:0e:8e:fb:90:
9b:90:d5:8b:d9:4d:84:cf:4a:60:37:bf:0c:6e:c7:
3a:2a:fa:72:30:a7:35:93:81:ba:bc:23:68:03:c1:
a7:72:c8:c3:e2:71:13:49:ac:51:82:a7:84:de:e3:
a0:74:57:d2:bd:a5:73:a8:97:c6:91:33:ff:c3:e9:
27:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F8:62:63:C0:68:6F:C3:3A:EC:83:16:15:7B:45:7D:75:6D:C4:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01DA97F810DE11EE94A3362E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.21.0/24
Signature Algorithm: sha256WithRSAEncryption
31:b8:a5:f9:f9:b3:df:2b:e0:98:a9:a8:19:61:e8:bd:fe:01:
9c:b6:dd:d4:de:e3:f1:6d:8f:4e:9c:37:64:c9:0d:fe:6e:46:
44:f4:c6:53:82:7c:94:4c:56:e2:d8:a1:2e:0c:16:6a:ba:4c:
ee:0a:34:25:fa:d3:7c:0a:98:a2:d0:5a:12:ff:79:d2:ba:e3:
94:65:11:f0:29:08:8e:47:d9:a2:d7:d5:27:a7:0c:a7:96:0f:
be:19:b2:fc:71:f1:f2:c6:e3:b3:b2:18:ed:8b:20:51:36:0c:
90:5e:f2:cd:1f:7a:bb:fe:21:63:07:ce:67:a6:a9:82:b8:90:
c0:9e:0c:73:f5:e7:fb:4d:5a:ea:46:87:04:21:c5:f6:bb:db:
6d:69:b5:30:c7:92:e1:e5:84:43:ba:de:a6:52:19:ea:e0:f2:
16:ff:af:e1:2e:78:cf:ab:bb:b6:fd:b4:8b:a7:73:01:35:6e:
0b:ff:77:cf:8c:49:96:1c:7f:3c:e4:cd:21:e9:0e:d5:8b:3a:
04:71:5d:4b:2b:0a:1e:8d:87:3d:24:3d:5f:f0:31:9b:a0:ae:
76:dc:3d:db:19:84:ba:4c:74:73:82:35:5f:57:ac:85:1d:1d:
02:1c:54:c6:8a:1d:9d:2d:bc:fa:55:cb:47:34:a4:1c:c5:54:
1e:c7:cf:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:01 2024 by rpki-client on console-ams.rpki-client.org