Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/067DC6CEEFF211EEAB2E759D775412E6.roa
File: 067DC6CEEFF211EEAB2E759D775412E6.roa (raw, json)
Hash identifier: dgrqtyvSvSvju2ufKIAXU1ysUIQpHVPOICfMD44ttzQ=
Subject key identifier: 9F:08:C5:83:41:03:2D:DD:89:6A:F3:52:5E:6D:36:C4:A2:35:22:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/067DC6CEEFF211EEAB2E759D775412E6.roa
Signing time: Mon 01 Apr 2024 06:35:27 +0000
ROA not before: Mon 01 Apr 2024 06:35:23 +0000
ROA not after: Tue 07 May 2024 06:35:23 +0000
asID: 138915
IP address blocks: 154.223.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42950 (0xa7c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:35:23 2024 GMT
Not After : May 7 06:35:23 2024 GMT
Subject: CN=660a55ae-d413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:22:09:9c:f1:ef:f8:fe:10:f1:15:81:77:f2:
31:6f:e0:f0:1c:8f:db:e2:88:38:80:03:1c:be:5f:
03:2a:00:13:6f:c6:e6:52:75:79:ef:cb:92:34:48:
be:01:bb:61:8a:b3:40:de:38:6e:26:c7:b9:1e:6a:
9c:52:dc:ea:e0:39:45:5d:61:5e:83:ca:08:74:a1:
cd:41:81:21:db:bf:b0:57:80:9f:16:0d:65:9d:b6:
36:89:60:0c:fa:78:58:cb:8a:e7:48:3f:72:89:d3:
df:5c:a1:46:56:79:87:15:87:a3:a4:63:bd:fd:14:
80:9f:0a:31:33:9e:6f:39:6f:62:e3:3a:b9:8a:27:
a0:61:c9:ce:e1:4f:8f:f8:f7:34:1f:bf:c2:dc:6c:
21:4c:25:8b:49:b8:3a:e3:3b:00:34:91:df:f4:92:
46:53:1e:19:67:73:fa:58:d5:23:71:6f:12:df:6f:
98:4f:0e:10:7b:72:f4:bb:08:d8:24:b6:a0:94:9b:
f0:d1:8e:a6:3a:74:37:76:89:e7:df:2c:a6:f4:8c:
88:6a:ec:3a:37:16:12:9f:7d:86:a9:82:16:8a:2b:
e8:93:29:34:cb:2e:d1:9e:68:b0:01:43:85:48:8a:
ad:3c:85:13:ab:50:39:14:5b:ac:6e:42:30:bc:74:
57:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:08:C5:83:41:03:2D:DD:89:6A:F3:52:5E:6D:36:C4:A2:35:22:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/067DC6CEEFF211EEAB2E759D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.48.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:51:56:ec:63:af:b8:b4:0a:8a:6a:75:4e:52:f3:ac:1b:98:
ad:b8:88:95:00:c6:4f:c3:27:ae:9b:62:f7:c3:6e:a1:ed:db:
1f:b6:3d:b7:f1:68:80:0f:e0:e0:f3:e1:44:fd:09:19:e7:7a:
37:ec:26:fa:3c:f6:fa:3a:5c:48:5a:f1:29:7a:5b:e2:37:48:
38:61:8a:53:ba:1f:e5:a0:ab:13:15:83:a7:c2:f8:2c:1b:4c:
74:e2:ac:2c:f6:fb:27:8c:09:0c:52:67:15:29:9d:93:bf:31:
e1:39:f8:00:bc:25:81:88:76:a4:bc:be:e6:71:ee:d9:b7:71:
b4:ae:44:7e:02:da:4d:c3:4c:8a:1e:6f:2e:8a:f6:7b:31:15:
d2:7d:bd:ab:64:4c:f4:23:b9:c4:76:53:bb:26:12:e0:33:f4:
62:ff:75:39:21:cb:80:d9:89:98:1a:3d:51:d9:e9:20:42:fb:
e0:85:1f:86:49:7a:6b:5d:af:8d:43:86:46:8a:be:00:59:02:
2e:fa:9c:88:bf:f2:ad:a1:bb:94:64:86:26:8c:16:8a:80:04:
4e:9d:95:a5:84:f0:f8:61:d9:e8:6f:a9:4e:46:99:9c:e9:bc:
d2:46:af:ef:e2:f0:23:ee:22:92:e4:95:0e:d6:b0:4d:8e:de:
c6:40:59:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:01 2024 by rpki-client on console-ams.rpki-client.org