Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10DC887682BF11EEA67A333F4AD9E6FC.roa
File: 10DC887682BF11EEA67A333F4AD9E6FC.roa (raw, json)
Hash identifier: wO/brv2af6V0X4vb7Cm2Wn9/nG0aoqNNMq+1prvgch8=
Subject key identifier: 3E:CF:39:19:0A:A8:21:42:72:57:EC:13:D9:61:98:4B:5C:BC:6E:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 500A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10DC887682BF11EEA67A333F4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:26:03 +0000
ROA not before: Tue 14 Nov 2023 07:25:59 +0000
ROA not after: Tue 12 Nov 2024 07:25:59 +0000
asID: 397630
IP address blocks: 154.201.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20490 (0x500a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 07:25:59 2023 GMT
Not After : Nov 12 07:25:59 2024 GMT
Subject: CN=6553210b-197c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:89:13:3b:3b:9a:0a:59:29:6e:d5:67:83:
07:65:d2:18:bc:56:8e:ef:e8:b7:8b:59:69:4e:1c:
0e:78:ee:16:9a:47:c3:86:ac:76:10:14:34:b3:3f:
06:2d:ce:b6:d7:b9:42:c1:ff:d5:7c:ce:cf:f6:ba:
dc:05:a2:4f:07:99:1c:bf:d9:64:fb:15:e3:44:6b:
98:6d:f3:5d:bf:e2:08:27:db:77:de:fb:11:96:99:
f8:b9:fc:22:7a:74:12:a1:bc:86:68:b6:51:41:d7:
ee:d3:7b:b5:e2:cc:d3:55:44:52:a6:b6:cd:ae:4c:
6c:cc:32:8d:cc:9b:0f:fe:3a:02:dc:f9:ac:f1:ac:
8d:c8:7d:4b:c4:e0:26:fc:c2:38:4f:ea:0a:e2:41:
8c:f2:5e:ed:4a:68:61:46:1b:64:3d:5c:c8:22:91:
cc:8c:50:d3:8b:01:fa:fc:50:92:89:77:68:e6:ee:
03:05:3a:be:e8:85:2e:2e:ed:17:98:f4:50:49:0f:
c2:7f:22:11:bd:35:b9:6f:f0:1c:22:a8:8f:a9:62:
a9:8d:b4:3e:cc:c8:e9:56:6d:21:66:9c:bb:9c:e4:
48:5c:9d:6e:e5:e0:45:f5:f8:b1:1c:27:46:24:a0:
ba:21:1c:10:34:5c:7b:a6:70:80:10:1f:72:75:24:
2d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CF:39:19:0A:A8:21:42:72:57:EC:13:D9:61:98:4B:5C:BC:6E:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10DC887682BF11EEA67A333F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.45.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:1f:5c:35:1b:e6:5e:68:26:d8:d2:3f:cd:fb:28:26:ca:37:
9a:f4:a1:44:a8:b9:14:6e:85:92:fd:7b:66:aa:6e:c4:6b:b2:
3e:4b:6b:e1:5e:31:f5:d2:32:68:4a:e2:47:27:5f:5d:e9:b9:
a2:59:24:d9:8e:9d:72:80:17:a4:ed:8a:a5:0c:61:ce:28:9b:
b9:f8:33:5f:0b:16:0a:c9:a9:09:b8:3a:eb:cd:07:ae:b0:d1:
df:53:12:6e:66:ce:e8:10:f5:29:f7:74:b1:99:62:a0:51:80:
9f:31:a4:51:ad:31:80:de:bf:79:95:10:0e:d6:fc:93:60:a8:
2d:8b:51:00:b1:1d:f8:34:3c:af:1d:75:1b:94:c2:87:2c:bc:
11:d8:d4:f2:92:3e:c6:5e:be:78:70:63:c2:69:90:af:58:4d:
a6:88:c6:f9:19:5d:e6:ba:b0:60:a8:21:f4:a6:5a:53:48:02:
d6:6b:67:04:b8:40:08:43:58:42:73:86:dc:31:e8:ac:86:ca:
19:ee:ac:5b:58:ad:0d:6f:02:b3:1e:1d:f4:0c:86:e4:84:12:
a1:cd:fe:8f:6e:8f:e4:c7:9f:5d:a6:d0:a1:71:76:a9:2f:7a:
a1:40:4f:e3:ab:9b:e5:e4:d2:aa:f7:c6:d9:d7:20:35:9b:12:
e2:3c:4e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:15 2024 by rpki-client on console-fra.rpki-client.org