Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1344C15CB34611EEBAF0E36E775412E6.roa
File: 1344C15CB34611EEBAF0E36E775412E6.roa (raw, json)
Hash identifier: BZD5ofQ2SKdJfZACJ8SReMXUdLDm29dBzBS+YtWGyik=
Subject key identifier: 87:91:31:74:08:9A:A8:54:8D:9D:E4:AB:32:57:42:82:94:3B:3A:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7532
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1344C15CB34611EEBAF0E36E775412E6.roa
Signing time: Mon 15 Jan 2024 01:33:25 +0000
ROA not before: Mon 15 Jan 2024 01:33:21 +0000
ROA not after: Fri 13 Dec 2024 01:33:21 +0000
asID: 8796
IP address blocks: 154.205.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30002 (0x7532)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:33:21 2024 GMT
Not After : Dec 13 01:33:21 2024 GMT
Subject: CN=65a48b65-1d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cc:9b:72:fe:9c:e3:f8:bb:f7:4d:a6:13:6e:
05:47:fb:c0:0b:c9:42:3d:30:0f:36:0d:8e:d9:7a:
cf:cd:09:ab:4d:9c:69:20:4f:28:14:b7:38:fd:f8:
25:76:8a:f3:13:a5:ff:da:3a:1c:0f:3e:b3:d0:32:
56:10:85:34:1d:f6:a2:81:85:ee:be:50:7b:d5:30:
51:f9:17:90:d7:59:2f:f4:f0:6d:d1:5e:2d:4a:9f:
2e:da:b3:eb:6f:5d:f4:f5:ae:eb:77:be:ed:07:61:
f9:e0:53:4c:16:d4:99:ec:a9:28:64:0c:1b:b8:1d:
7c:58:4b:14:c1:bc:6c:d3:87:93:e1:f9:a9:a1:27:
0d:e2:c8:a3:ab:75:73:1c:c9:88:98:6b:b3:dd:a9:
9f:ee:4a:92:67:68:3a:ca:16:e1:e3:c0:15:79:f0:
43:ed:70:61:fc:7f:0f:d1:24:09:c9:6a:74:d6:d7:
5b:47:22:a3:72:9f:3d:80:c4:c1:3f:24:37:ec:bb:
d3:d8:a5:41:7f:3b:1e:23:b1:11:b6:a1:1b:0e:5b:
53:9d:b5:8a:68:80:3f:75:cd:4a:8e:29:fc:ce:0c:
d6:5d:07:70:89:3a:84:3a:04:5f:05:e3:74:2d:12:
18:bf:8f:3e:d4:ce:8a:9c:c4:ca:7c:42:46:04:76:
81:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:91:31:74:08:9A:A8:54:8D:9D:E4:AB:32:57:42:82:94:3B:3A:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1344C15CB34611EEBAF0E36E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.211.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:58:6c:a4:35:f4:85:47:49:d5:dd:86:5c:b2:64:89:ec:08:
9f:59:2a:84:0e:e5:2b:c0:80:44:fb:be:5b:8e:e9:77:f3:ae:
4f:1f:b0:24:83:fe:e1:a3:be:95:f0:a3:b6:82:27:c2:96:76:
67:10:92:c8:ff:e5:21:ad:78:9e:57:47:28:18:af:af:14:4e:
ca:b7:3f:56:1c:f9:e6:ee:97:bd:15:7a:f4:27:b4:1b:8d:1b:
8e:f4:14:38:9c:03:f6:88:cd:75:45:fe:2b:3f:00:45:30:dd:
98:e5:70:79:83:17:40:ad:1e:a5:ae:07:a3:f4:d8:58:75:0d:
c9:56:b4:ad:35:9e:21:55:07:21:4b:95:0c:1a:50:b1:bc:fb:
13:f8:6f:e7:56:52:b2:a3:73:95:bd:78:6e:42:8e:18:66:6e:
e8:7c:46:7a:95:48:08:5d:f0:59:c7:46:61:30:bc:15:02:8f:
91:08:36:e7:42:7e:3a:35:67:4b:71:9f:6f:e9:fe:64:c6:0f:
5d:4b:90:44:c1:cb:47:37:80:80:f6:bc:8d:dc:96:48:ac:fd:
14:74:6d:54:f2:4a:ef:d6:04:75:7a:b2:d1:e7:53:0c:01:4c:
73:49:24:8e:18:3f:51:ef:d5:34:e3:f6:bc:e9:5d:e3:ed:0a:
be:03:6b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:16 2024 by rpki-client on console-fra.rpki-client.org