Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FCF931A25FE11EEB4251F354AD9E6FC.roa
File: 0FCF931A25FE11EEB4251F354AD9E6FC.roa (raw, json)
Hash identifier: +LPiXkpPlMSui/wm1CSCuNog54CiYlqEjXGT7DFZ+Qc=
Subject key identifier: FD:BF:59:49:38:47:09:DE:27:E8:CB:5B:02:0A:9C:82:EE:7E:67:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 32ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FCF931A25FE11EEB4251F354AD9E6FC.roa
Signing time: Wed 19 Jul 2023 06:32:41 +0000
ROA not before: Wed 19 Jul 2023 06:32:37 +0000
ROA not after: Sun 21 Jul 2024 06:32:37 +0000
asID: 139056
IP address blocks: 154.214.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13037 (0x32ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 19 06:32:37 2023 GMT
Not After : Jul 21 06:32:37 2024 GMT
Subject: CN=64b78389-8c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7f:d3:72:10:7e:e7:f1:f3:96:ca:55:f3:e2:
c8:7a:d8:2c:d1:68:b5:04:98:08:e1:e8:d7:8e:52:
b7:9a:1e:f7:c4:12:38:ed:4c:94:3d:4d:0a:5b:e1:
6d:6b:e5:0a:f4:61:b4:1e:0d:d9:9b:2b:7b:d5:2d:
bc:ea:a0:e4:f9:d5:10:ca:34:87:63:b5:43:55:a6:
f4:fa:0c:1b:73:4a:40:92:6d:5f:d3:65:99:d1:6d:
b4:81:47:94:da:86:2e:50:44:23:8b:79:25:2c:b4:
57:8b:3a:61:d7:14:53:61:a3:98:29:96:f7:d3:d9:
f7:b0:4d:7d:f3:c3:60:51:86:f4:a6:45:a7:17:27:
49:ba:8d:01:c0:b3:81:4b:78:17:8a:e6:e3:e3:63:
ed:e5:4c:70:93:4d:35:08:40:42:65:20:5e:7a:cf:
9d:3a:b8:33:7b:ee:1d:8f:6a:67:b8:de:d6:dc:4c:
30:07:7f:91:0c:86:ac:df:42:5d:33:7c:4e:83:f5:
26:61:0b:f3:94:36:91:7d:45:ab:d8:60:cb:d7:12:
a7:48:8f:9d:29:f5:32:00:62:84:ed:38:f2:97:cf:
2f:ad:50:34:be:06:34:68:08:e1:a1:d6:5b:5b:3a:
20:94:69:03:40:84:7e:f3:d6:da:09:40:bb:60:2e:
74:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:BF:59:49:38:47:09:DE:27:E8:CB:5B:02:0A:9C:82:EE:7E:67:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FCF931A25FE11EEB4251F354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.2.0/23
Signature Algorithm: sha256WithRSAEncryption
45:f2:af:a1:e3:c0:9c:91:8b:3f:52:04:e4:6b:9c:45:92:95:
fc:28:fa:33:66:90:be:5c:d5:5c:10:8e:5e:e3:ef:cc:2b:51:
95:03:73:95:55:b7:fa:ee:0d:db:31:7b:f2:84:a2:e4:d9:7b:
1d:6f:71:30:ba:98:17:fe:04:87:9d:4f:db:91:94:37:f0:5c:
b5:b3:e4:43:b3:48:d0:cd:70:a8:4e:b6:16:28:e7:89:00:9f:
9a:7f:3a:4f:e0:f1:dc:f4:56:b3:77:91:61:8e:92:e5:25:f9:
96:ac:9b:c0:6f:5c:89:11:21:29:13:c1:5c:8c:18:1e:07:c3:
a9:50:3a:d5:2a:2c:48:fd:24:e0:5a:af:e0:19:57:49:80:3d:
65:d8:57:2a:c1:23:80:a2:f9:76:4b:c6:7f:d7:fa:0b:9a:e2:
11:7d:1a:5a:b9:58:8d:33:4d:55:46:a6:9e:6d:c0:89:01:9d:
14:b4:47:b0:f8:68:08:ec:80:c4:20:22:02:4b:42:36:37:e0:
00:56:ec:e3:98:b4:c0:69:dd:10:2f:ae:19:8e:51:e2:41:b9:
58:34:79:3d:08:66:31:54:3b:23:cd:4c:22:5f:9a:6e:eb:73:
58:55:ef:ca:62:bd:2c:fd:0f:de:c1:c9:72:a2:12:11:e5:05:
7e:43:31:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org