Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C8E0A0EE77A11EE84699555775412E6.roa
File: 0C8E0A0EE77A11EE84699555775412E6.roa (raw, json)
Hash identifier: kXyHKYMg/xzejG53QE4ZBvSTULOl91XPHjIt2Ig0JPk=
Subject key identifier: EE:F0:F4:3A:7E:54:BF:61:6A:2D:69:BE:52:FC:65:DD:D3:51:D3:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A53D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C8E0A0EE77A11EE84699555775412E6.roa
Signing time: Thu 21 Mar 2024 11:56:28 +0000
ROA not before: Thu 21 Mar 2024 11:56:24 +0000
ROA not after: Tue 23 Apr 2024 11:56:24 +0000
asID: 44559
IP address blocks: 154.210.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42301 (0xa53d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 11:56:24 2024 GMT
Not After : Apr 23 11:56:24 2024 GMT
Subject: CN=65fc206c-a1ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6a:68:de:76:b3:55:ac:6a:e8:5b:f7:1a:0d:
5e:75:6a:30:b8:f2:91:92:bd:85:8e:8a:30:a7:ed:
71:f2:d7:c3:b3:60:73:28:73:33:d5:e9:82:fa:b7:
bf:15:de:24:2e:4f:48:c9:73:4f:ae:ea:2a:0a:f3:
b6:8d:91:62:64:65:58:94:84:41:56:82:5a:cf:76:
b8:51:1c:f8:28:1e:9d:ef:8c:3f:72:69:5f:89:c1:
72:05:06:cb:18:f3:8b:73:30:1a:d5:8d:63:e3:21:
46:bf:db:dd:23:63:ce:1b:cf:5f:a5:a7:3b:50:2b:
d1:5d:84:08:74:23:16:ac:ff:84:02:2a:61:1c:1c:
94:10:ef:1b:e2:79:17:6a:ea:9d:29:f1:71:79:1d:
2f:8a:b7:60:ce:2d:57:54:19:8e:9e:1e:0a:ce:96:
dd:1b:32:d4:e3:09:83:fd:9e:d5:28:e7:f6:f2:2f:
3a:21:60:57:cb:1b:78:fe:e0:b8:0e:a8:bd:e3:dc:
6b:c9:56:db:df:40:29:4f:af:83:34:a0:52:c3:4d:
9c:e6:a4:8f:aa:4d:cf:8f:e5:db:35:67:e2:2d:cc:
48:33:9e:da:87:35:37:fd:fc:ff:5b:84:6b:a9:6d:
7f:39:ad:29:51:71:e7:65:f4:32:19:eb:87:c6:8b:
83:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F0:F4:3A:7E:54:BF:61:6A:2D:69:BE:52:FC:65:DD:D3:51:D3:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C8E0A0EE77A11EE84699555775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.126.0/24
Signature Algorithm: sha256WithRSAEncryption
47:49:e8:f5:1a:fc:b1:2d:ab:dc:f5:92:c5:87:bd:b3:d3:2b:
8d:1f:5d:32:52:77:bd:ad:75:2e:f5:bb:b2:42:13:e8:4b:de:
3a:a2:03:ce:ff:8f:07:01:4e:30:59:f6:fb:59:bd:2f:fa:f7:
74:98:42:46:26:dc:e2:bc:56:ee:ff:9f:db:e4:2c:6c:b9:9e:
6c:f7:bb:ab:f1:bd:ca:f2:ae:15:66:e7:25:27:4d:6f:c3:69:
74:1e:8e:29:a9:55:ef:0d:d7:13:30:aa:05:8c:1d:f5:ee:5a:
74:55:26:d3:e4:28:f7:2b:c4:7b:32:48:02:8b:70:ba:96:b6:
04:eb:8e:e1:ee:16:a0:9f:18:7a:52:93:bc:a4:0a:8a:d0:78:
06:b4:b4:98:e1:fb:62:52:a7:ae:4f:04:c7:b7:56:a8:bb:fc:
d5:e7:cc:2c:14:c9:a3:96:73:df:7d:26:42:e6:28:5a:bf:db:
b3:b7:46:84:15:25:52:84:ed:35:26:bf:3e:d9:51:23:65:f7:
16:af:49:19:4c:4d:5f:8d:64:b0:e0:ff:af:de:bc:33:ec:b1:
18:e2:cd:1f:86:df:80:1c:e0:47:f2:c9:f9:a2:82:bc:78:e1:
db:65:dd:2c:06:03:a6:4a:6a:37:a5:93:45:45:82:3a:ab:cf:
27:2c:7c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:13 2024 by rpki-client on console-ams.rpki-client.org