Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/063A0372278311EEA202AE204AD9E6FC.roa
File: 063A0372278311EEA202AE204AD9E6FC.roa (raw, json)
Hash identifier: CDbhEjklDZJI1rSlpHEreOxI70Ptl03SBrkR4FURvPA=
Subject key identifier: 17:69:96:1A:9A:34:9E:81:A7:26:18:BD:A3:91:83:F7:A5:2D:DF:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/063A0372278311EEA202AE204AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:56:59 +0000
ROA not before: Fri 21 Jul 2023 04:56:56 +0000
ROA not after: Thu 13 Jun 2024 04:56:56 +0000
asID: 5065
IP address blocks: 154.85.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13225 (0x33a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 04:56:56 2023 GMT
Not After : Jun 13 04:56:56 2024 GMT
Subject: CN=64ba101b-b448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:55:5f:05:cc:eb:19:c6:e2:0f:ea:0c:03:37:
2d:f9:7c:30:38:5d:b2:e6:07:e8:46:ae:6f:c6:71:
11:42:44:69:e0:c2:03:78:c9:c2:c9:78:d1:5c:aa:
73:11:c9:cb:05:da:5f:12:bc:c1:2d:ed:5d:6e:e4:
ba:05:63:15:80:73:77:72:8e:0e:4f:23:29:e9:5a:
40:c6:33:54:d4:51:3e:73:d2:91:5a:99:3c:72:84:
fe:1a:83:e3:3b:48:2a:9d:1b:7b:b9:3f:da:48:63:
f4:db:ea:82:be:2d:b2:4e:ee:91:9b:63:8b:3b:64:
6f:76:5b:ad:0b:48:b2:dd:0d:ea:21:b4:19:bc:44:
ac:6b:b5:70:2c:18:1a:3d:7e:47:f9:51:6d:44:7c:
4e:3e:e6:b5:88:f3:60:4f:47:fb:6a:43:aa:76:f5:
4b:ec:3d:dc:9c:75:71:7d:30:57:f8:b7:4f:0e:a2:
a7:71:52:6a:cc:8f:92:d3:12:c0:ab:93:96:85:83:
79:18:70:b1:19:e1:8f:a1:d9:f5:00:e7:c5:44:c5:
43:de:81:36:01:56:5e:61:2b:dd:95:7b:01:6e:40:
0a:cd:67:fd:d5:f0:21:b4:08:88:d0:9a:bf:8f:02:
ae:9e:d3:4b:ae:cf:32:f4:54:47:9a:ee:8b:5b:f1:
09:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:69:96:1A:9A:34:9E:81:A7:26:18:BD:A3:91:83:F7:A5:2D:DF:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/063A0372278311EEA202AE204AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.122.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c6:ca:63:aa:89:da:3e:44:4f:e6:aa:5f:28:b3:b3:c4:ca:
51:dd:23:4f:4a:7e:5e:76:78:83:df:d7:2a:c1:a1:c6:41:14:
ee:7f:1d:79:6c:d4:47:e5:a3:70:67:cb:19:86:f3:ab:08:ed:
57:75:d0:93:09:a9:7c:4c:cd:05:4c:f9:70:f9:83:87:3a:70:
7c:fe:58:54:36:f1:fa:55:da:c3:a8:a9:a1:f6:2b:7a:f0:be:
ba:a7:6d:58:46:66:e4:5c:df:f3:06:c8:11:1b:da:cc:8c:bb:
f1:df:15:9a:6b:eb:72:b1:34:64:1f:6c:d8:45:e4:4a:3b:3d:
e3:6f:b7:86:59:86:60:9a:64:77:1c:7c:a0:20:bd:b7:d1:d2:
91:bd:05:62:f8:1a:f3:fd:0e:14:ee:33:20:f9:46:a5:bb:b0:
fc:db:b0:ea:13:cc:d4:22:69:d8:75:fe:e1:a1:c7:a1:c3:12:
62:a5:86:fb:31:24:07:ba:a6:85:0b:6d:dd:eb:f7:1e:76:96:
56:f0:b6:1b:58:d4:6a:62:79:b7:4a:06:36:35:dd:e6:24:90:
82:11:ee:23:ef:c4:3c:a8:f4:3b:28:94:bc:5b:ed:05:e8:08:
c8:55:9a:bc:e2:5c:0c:41:5f:f6:96:30:6c:ad:f9:87:6b:b9:
82:a2:57:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:01 2024 by rpki-client on console-ams.rpki-client.org