Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0CE21F10F86C11EE924A9C17017001B1.roa
File: 0CE21F10F86C11EE924A9C17017001B1.roa (raw, json)
Hash identifier: Owa8JffOPm6jSzl2tPadG69fv5EEuhrsgpPHwvQfdAI=
Subject key identifier: 3A:45:E4:A0:F6:ED:32:E9:2F:34:36:75:AE:C7:26:7B:60:34:63:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0CE21F10F86C11EE924A9C17017001B1.roa
Signing time: Fri 12 Apr 2024 01:29:05 +0000
ROA not before: Fri 12 Apr 2024 01:29:02 +0000
ROA not after: Sun 19 May 2024 01:29:02 +0000
asID: 138915
IP address blocks: 154.93.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43906 (0xab82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:29:02 2024 GMT
Not After : May 19 01:29:02 2024 GMT
Subject: CN=66188e61-c249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:03:9a:92:59:c8:f4:af:f9:c5:7c:76:54:4d:
1b:ce:e9:f1:9c:47:47:d8:04:ee:4a:10:bd:7e:e9:
9c:b7:f9:d5:04:ef:22:b7:79:9a:83:54:c0:23:4a:
87:fc:8a:bb:de:c5:11:39:a6:b0:33:59:24:60:04:
ec:77:2a:da:ce:ea:97:90:3a:67:5a:0a:5c:61:11:
71:c0:d2:3f:2f:68:5e:d8:68:fe:35:b6:10:c1:98:
c5:16:b2:6f:97:a7:97:e4:8a:04:58:1f:86:cb:78:
59:8d:92:e5:84:8d:cf:a0:04:7c:80:99:06:f6:12:
99:3b:87:aa:c2:14:0d:34:a2:fa:3c:a9:e1:61:56:
15:c1:54:94:9c:4e:fa:10:a4:4f:ba:82:37:be:95:
db:cd:a5:c3:14:58:bb:92:18:6a:2f:1a:e6:21:30:
79:c5:7f:0e:88:4a:4c:1b:9e:cc:7f:db:7c:68:bd:
ad:6c:f4:b1:0d:21:b9:b4:97:89:09:20:90:74:bd:
9e:cd:5f:89:d6:ad:2a:a3:58:64:68:d3:69:61:e2:
6b:a1:70:28:d0:02:bc:78:02:80:6f:a2:38:b3:a7:
84:a7:3b:f0:81:0e:53:07:ae:7e:1c:fa:c7:19:e0:
91:3e:2b:2a:ca:1e:7a:d4:0e:5b:d4:44:91:80:3a:
83:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:45:E4:A0:F6:ED:32:E9:2F:34:36:75:AE:C7:26:7B:60:34:63:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0CE21F10F86C11EE924A9C17017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.46.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ec:0f:ec:d3:ef:ae:ad:10:94:41:21:03:60:30:e4:5e:82:
04:0b:ae:cf:c2:11:ce:a4:68:7f:94:59:54:1c:a9:05:d0:4e:
98:1b:41:0f:32:bc:ab:92:83:cd:2e:70:83:93:8c:2d:43:b1:
55:6d:e5:ff:75:0c:5b:7b:89:53:b3:f5:73:57:8c:c9:62:0d:
9c:df:08:79:bf:c1:5f:d5:7e:23:1c:d2:58:00:2f:83:e4:63:
3f:88:62:f7:d4:5c:d0:17:7e:d6:70:fc:8b:af:9d:17:71:b3:
df:fa:45:91:b4:07:b2:80:74:ca:22:9a:d0:ee:ae:0c:18:c9:
5b:43:8b:a7:e4:dd:6f:2c:b2:25:eb:b0:13:95:5f:5e:ad:78:
69:31:52:ef:97:b5:78:ab:ef:e4:55:3d:85:62:a1:47:e9:db:
d9:3b:8e:fd:2c:61:97:0e:fe:9d:19:ff:00:32:32:6d:82:79:
4f:7b:16:c0:de:e3:3d:61:a5:5d:e3:9a:50:0d:b6:23:6f:9b:
b1:0a:9a:de:ba:2c:d6:45:ba:4f:7f:7c:b7:37:14:ff:65:f1:
ee:13:cb:85:62:96:62:33:27:3e:af:31:6d:30:17:65:12:98:
76:7b:b7:ea:eb:c5:3a:0e:ce:b2:f7:bc:c2:45:48:a1:98:b4:
72:07:bf:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org