Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0555298C7EBD11EE985ABE674AD9E6FC.roa
File: 0555298C7EBD11EE985ABE674AD9E6FC.roa (raw, json)
Hash identifier: vkUUzbRnvEc/qXeYr/o2T/6KEXVLnQsSCiXbNeiu5xI=
Subject key identifier: 07:20:35:7B:B5:BC:88:72:F6:94:54:F5:CB:72:47:F2:1F:F8:CF:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4DDD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0555298C7EBD11EE985ABE674AD9E6FC.roa
Signing time: Thu 09 Nov 2023 05:01:20 +0000
ROA not before: Thu 09 Nov 2023 05:01:17 +0000
ROA not after: Wed 06 Nov 2024 05:01:17 +0000
asID: 139057
IP address blocks: 154.92.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19933 (0x4ddd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 05:01:17 2023 GMT
Not After : Nov 6 05:01:17 2024 GMT
Subject: CN=654c67a0-5b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bb:1b:44:0e:17:50:28:ad:2b:d5:49:c1:38:
e4:1b:e8:da:15:53:e8:20:57:a9:58:64:78:82:bf:
32:89:d0:76:77:40:6c:bc:d2:33:20:32:ff:13:8f:
57:76:57:ea:0f:0a:91:cc:f9:fc:65:cc:cc:09:63:
da:9c:45:8a:77:7b:ae:a2:cf:3d:ba:f7:f7:24:65:
cf:64:7f:3b:32:05:50:88:98:ba:0f:1b:07:a1:49:
b4:d9:3e:17:56:f6:13:8a:3a:13:ad:2c:ea:b3:ba:
72:62:d3:84:19:dd:d1:8f:77:40:0b:b4:9d:2f:e0:
a0:73:b6:1c:62:34:66:6a:bf:1f:cc:d7:02:32:42:
eb:6c:5a:e7:7d:ae:8d:6e:59:86:ef:03:f3:21:4a:
9d:a8:fc:84:ce:12:02:41:a6:5b:80:bf:4c:a9:c3:
55:1b:76:f8:31:d0:e3:9c:e9:8d:8e:cb:a8:04:b9:
e5:d6:7b:7d:f5:a5:07:b5:98:0e:d9:0e:0f:71:7c:
4a:d3:97:fd:df:b6:1a:1b:c6:9d:8a:c1:e5:ec:5d:
dd:06:91:c6:4b:5b:f8:c0:e9:11:d3:7a:cf:c1:c7:
d2:90:75:01:d0:8b:6c:28:95:76:f2:11:f6:8f:33:
6f:dd:e2:70:f8:9b:b7:f4:c3:f7:3d:d6:80:e7:e2:
e7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:20:35:7B:B5:BC:88:72:F6:94:54:F5:CB:72:47:F2:1F:F8:CF:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0555298C7EBD11EE985ABE674AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.25.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b3:9e:49:0c:ca:07:c7:db:81:f0:12:b0:24:33:37:6c:2f:
a0:cb:18:d6:05:20:55:1b:47:8d:76:16:94:f5:5d:c0:ca:bf:
7e:ca:81:87:f7:ae:79:fe:21:3d:50:53:f5:e1:8e:78:25:b2:
1c:fb:19:94:36:58:9a:61:58:1b:44:83:11:f7:9b:a7:ca:f4:
20:86:0c:6c:00:12:97:fa:73:a7:c0:5c:86:7e:ff:99:37:86:
fd:e2:48:56:24:2a:cd:36:af:22:7d:8d:1b:78:a0:88:da:90:
22:ff:2d:d7:0a:1b:c1:7d:c4:8f:1c:02:7f:d3:78:17:24:6e:
3a:a8:fc:8e:fc:eb:55:fa:af:33:a4:66:11:6e:1b:64:15:92:
6c:02:79:f2:c3:7d:fd:ca:b9:31:8e:fb:f1:b0:f4:27:2f:22:
16:ba:58:37:7a:c2:6a:c4:ff:bf:3d:5f:29:e3:30:b4:be:01:
18:e4:b4:07:30:cd:aa:62:af:7c:a3:a4:a3:fd:f2:f2:8a:88:
99:9b:53:b4:0d:85:bd:f7:33:32:10:18:da:6d:d2:f2:be:1d:
a5:ce:64:7e:73:b5:b1:a0:0e:4d:cb:d6:f9:42:d5:6a:2e:8c:
65:5d:88:5e:a5:65:33:64:ef:c5:3c:15:ec:c1:3f:03:71:e2:
0c:3b:47:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:14 2024 by rpki-client on console-fra.rpki-client.org