Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1313052CCB4211EE92A9CB92775412E6.roa
File: 1313052CCB4211EE92A9CB92775412E6.roa (raw, json)
Hash identifier: bkN27nSTKotVrEIAcZxFgNjfxIpSFnvvt8hIJ0WnpxY=
Subject key identifier: DF:47:58:5D:0A:3F:97:F0:34:B9:3B:89:B1:F0:4D:67:B0:D3:39:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8985
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1313052CCB4211EE92A9CB92775412E6.roa
Signing time: Wed 14 Feb 2024 14:05:14 +0000
ROA not before: Wed 14 Feb 2024 14:05:09 +0000
ROA not after: Mon 17 Feb 2025 14:05:09 +0000
asID: 16509
IP address blocks: 154.201.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35205 (0x8985)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 14 14:05:09 2024 GMT
Not After : Feb 17 14:05:09 2025 GMT
Subject: CN=65ccc89a-fa5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:57:8a:14:9b:36:d3:1a:d3:ca:8f:f6:7b:c2:
fb:5a:ce:8c:8b:c4:a8:79:80:55:28:1f:0b:8a:8b:
95:9b:d9:d9:eb:5c:32:7e:a1:1e:e5:6e:8d:0c:1e:
11:87:ca:c9:4d:7a:bd:32:e9:c5:3d:00:03:4c:9f:
14:fd:5a:6d:35:9b:83:8c:5e:1a:18:3f:33:ee:be:
27:d9:61:b9:91:24:5d:9c:d5:9a:35:3f:01:a9:87:
90:58:4b:3a:ee:e6:ed:05:e2:b3:9c:79:01:ba:91:
a2:e1:c1:9f:b2:8d:33:4a:6d:92:fc:17:6c:e8:b9:
67:d9:7b:09:94:59:4a:53:f2:80:d5:b8:16:5d:c6:
68:ee:0b:4e:00:85:e6:a5:6a:81:a3:29:bc:ad:99:
a9:8b:71:ff:a4:a2:13:00:cc:e0:9c:e3:20:43:d1:
33:ea:fe:16:76:b4:02:b6:02:0e:9a:bd:a8:d2:67:
2c:6b:3f:32:ab:05:5e:cd:4a:7b:34:4c:fe:e2:3f:
1b:42:01:37:d6:ca:b7:06:6a:c9:bf:ba:48:68:28:
2d:bc:01:8c:c9:ee:73:59:1e:37:af:04:a0:2a:45:
36:1f:91:78:34:49:e7:41:3e:ba:88:40:67:10:e4:
78:5e:1c:18:c6:50:b0:b2:78:6c:7e:05:7b:5a:0b:
2c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:47:58:5D:0A:3F:97:F0:34:B9:3B:89:B1:F0:4D:67:B0:D3:39:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1313052CCB4211EE92A9CB92775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.120.0/22
Signature Algorithm: sha256WithRSAEncryption
45:8d:24:88:4d:02:e9:60:08:96:be:2e:1c:ce:7b:0a:61:50:
06:d7:d1:fe:6b:34:56:45:dd:56:96:36:0e:9c:1b:84:a6:4a:
ff:c0:60:be:11:94:76:f5:e6:05:af:70:a8:a6:a0:70:28:51:
23:e1:fb:f9:42:d0:1e:ed:3d:3a:50:5b:61:ca:92:de:8f:36:
be:9a:be:e5:a7:ae:77:56:9d:ce:14:5f:82:93:d9:25:dd:7b:
1a:0d:72:d7:05:15:96:2c:76:77:e0:e6:1b:69:6d:eb:f8:b1:
51:8c:a4:87:f0:44:b7:fc:5f:be:0b:d6:9a:eb:49:25:3e:68:
3e:a7:f2:72:f3:75:ef:fc:5f:38:d8:eb:72:52:2e:af:28:66:
e4:1f:92:32:4e:96:1c:d5:27:82:cd:1c:41:3e:ba:61:52:f2:
77:c8:c8:4a:9f:1f:6b:f8:4e:d3:e7:41:cb:b5:db:b7:1a:95:
54:22:44:b3:9a:6c:4f:ca:49:01:d2:01:52:ab:4f:a8:3c:66:
a5:c0:7b:c4:0f:f5:8f:c6:49:24:fe:f2:b0:e7:11:73:22:0e:
3a:32:0b:98:54:51:a7:f3:74:3a:bb:f9:7a:c4:75:c6:17:4e:
d6:e8:3a:e5:77:bc:e0:8b:f9:c7:f7:a4:c2:79:14:1b:ae:04:
ff:dc:6c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 17:17:58 2024 by rpki-client on console-ams.rpki-client.org