Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/048A4D48E77C11EE8FEB6265775412E6.roa
File: 048A4D48E77C11EE8FEB6265775412E6.roa (raw, json)
Hash identifier: g3ArAV8R1YsG2McG0MOUc5hTMVUlf5Y9HquTXC3IgTo=
Subject key identifier: D4:C4:25:1D:06:11:D7:C1:83:0B:D1:AA:06:0F:CC:45:91:1A:AC:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A551
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/048A4D48E77C11EE8FEB6265775412E6.roa
Signing time: Thu 21 Mar 2024 12:10:33 +0000
ROA not before: Thu 21 Mar 2024 12:10:30 +0000
ROA not after: Tue 23 Apr 2024 12:10:30 +0000
asID: 44559
IP address blocks: 154.210.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42321 (0xa551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:10:30 2024 GMT
Not After : Apr 23 12:10:30 2024 GMT
Subject: CN=65fc23b9-e849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:28:99:df:c8:66:7f:3c:69:1c:73:c1:c4:
b5:90:f9:c8:cb:21:f6:b3:1b:c4:98:79:f5:1d:0e:
d0:7f:a5:3d:e9:ef:e6:74:0f:39:e6:18:6e:8f:fb:
c4:a1:17:54:5f:3f:b1:c1:2b:e0:4c:0b:a7:91:78:
b3:dc:b3:39:6c:30:77:d3:10:16:b8:e4:5d:b1:b3:
de:ee:c2:50:5d:03:dc:b6:5f:45:0c:da:8e:19:88:
fc:13:4f:ae:dd:f7:8b:6d:61:9b:26:c7:9b:97:46:
74:64:24:29:03:8d:1c:29:c6:5f:eb:00:b3:fb:f4:
6a:3c:20:55:ed:ff:08:99:db:39:52:12:6b:d7:75:
31:38:39:3f:41:c6:94:d7:9e:3e:d2:4c:c8:73:b4:
c6:5d:db:8f:35:b4:c8:1e:9e:79:23:ce:7e:5c:d6:
00:61:7a:5c:e3:e2:a1:fb:51:81:c7:5f:62:7c:d8:
76:16:d4:53:9e:dd:ff:84:fb:fd:b8:8b:6e:5b:df:
1f:9b:fa:e3:79:f4:3a:2b:36:96:11:61:5f:e1:dd:
8e:1b:4f:6e:12:ac:95:65:23:a2:20:2c:20:6e:bc:
80:b8:06:9b:78:40:79:4d:41:81:0b:ad:58:10:dd:
db:31:00:04:25:f3:24:13:27:aa:7e:4a:13:38:91:
3f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C4:25:1D:06:11:D7:C1:83:0B:D1:AA:06:0F:CC:45:91:1A:AC:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/048A4D48E77C11EE8FEB6265775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.116.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:6d:92:5c:ab:41:d8:bf:18:da:27:fd:ed:61:3a:7b:43:58:
a3:af:3e:3b:c5:10:ad:7b:f5:2d:43:b2:03:a2:9f:f1:51:fa:
47:35:56:39:fe:a1:10:f5:97:03:bf:72:43:6e:8a:c1:a1:a6:
5c:c5:9b:75:8e:24:f9:00:45:19:2b:dc:6c:ab:83:e1:db:d4:
9e:98:2d:04:8c:73:eb:53:cb:f6:63:63:d7:eb:1a:72:5c:f2:
e8:cb:16:93:5d:1c:6c:91:92:10:62:a3:ef:6a:96:47:37:41:
e0:a1:80:d3:02:55:8e:01:7b:57:55:7e:22:ed:7c:51:c9:47:
b4:26:74:69:3e:d3:88:41:f0:e5:71:52:14:b5:20:a9:a5:67:
c2:63:13:9b:d7:4d:58:7a:64:7f:e5:05:a8:9d:b0:94:c9:a0:
cd:23:47:4e:86:b1:97:50:ff:ac:6d:ff:48:b8:72:13:a2:ee:
13:9b:c2:fa:ab:33:ef:f5:8b:9d:0a:ff:c4:0a:08:54:dd:84:
51:ce:cd:99:ff:2f:1a:ee:f9:57:cd:f7:81:c9:26:93:25:7f:
06:2c:99:4c:2e:1e:24:3a:36:4d:28:70:6f:65:7b:16:aa:6e:
85:1a:24:66:b2:06:05:36:37:2c:af:ca:c4:de:38:8f:22:cd:
9c:bb:cc:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:13 2024 by rpki-client on console-ams.rpki-client.org