Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13A923D0E74A11EEB5CD4660775412E6.roa
File: 13A923D0E74A11EEB5CD4660775412E6.roa (raw, json)
Hash identifier: ME2e9P2+6Pz4V43h54dTlwVjIFF1kEDWixQe1TLVKI4=
Subject key identifier: E3:4B:A3:86:EA:FE:41:DE:7D:B2:5B:CB:B6:22:7B:6D:D1:86:05:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A42B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13A923D0E74A11EEB5CD4660775412E6.roa
Signing time: Thu 21 Mar 2024 06:13:04 +0000
ROA not before: Thu 21 Mar 2024 06:13:00 +0000
ROA not after: Tue 23 Apr 2024 06:13:00 +0000
asID: 44559
IP address blocks: 154.220.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42027 (0xa42b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:13:00 2024 GMT
Not After : Apr 23 06:13:00 2024 GMT
Subject: CN=65fbcff0-a0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:88:30:7c:b8:0b:c4:fd:2e:e0:a9:c7:59:1c:
79:b5:e1:03:38:03:e6:59:4f:1d:de:6c:0b:eb:df:
8a:68:c4:2f:ac:e4:30:d0:28:50:d5:9d:e3:1f:9e:
0d:ef:6d:ee:8f:06:e3:37:43:4e:bb:f9:a6:9b:9b:
11:10:4c:dc:e0:96:e4:52:7c:df:0a:23:4f:4a:00:
7f:3f:ee:f9:73:3f:ff:63:0f:ac:fc:70:c4:6b:08:
d8:65:76:e5:98:1e:d4:74:5c:e9:38:61:05:4a:1b:
78:74:bc:8a:e4:de:eb:e5:00:c9:fc:ad:a6:d7:1c:
0c:d4:2f:c5:70:e9:9e:e0:25:21:08:f9:6a:3b:7b:
41:ca:7c:a3:91:ac:bd:5f:db:81:b2:fc:bb:8a:49:
0a:b2:a1:2e:4a:f3:40:ad:db:48:66:b0:c1:39:ef:
26:b1:11:06:ea:a6:0c:b8:d9:77:40:61:d5:fb:40:
16:9d:75:89:fb:b7:27:58:f2:91:7d:7a:62:2c:af:
c4:30:ec:25:f5:df:16:f6:f5:18:64:6d:df:0f:61:
76:a5:fe:4b:1b:8f:47:38:b6:4f:5b:e4:15:ff:4d:
11:17:6e:49:6b:32:c6:df:94:41:8c:c9:07:6d:18:
e8:9a:54:9b:32:94:2a:01:2e:eb:fd:57:eb:99:fb:
e2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4B:A3:86:EA:FE:41:DE:7D:B2:5B:CB:B6:22:7B:6D:D1:86:05:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13A923D0E74A11EEB5CD4660775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.163.0/24
Signature Algorithm: sha256WithRSAEncryption
16:99:a7:e8:31:d7:f2:41:43:8c:3e:21:00:0c:6e:8d:05:0b:
4b:b8:a2:c9:78:85:97:03:bf:51:2c:29:15:53:17:31:59:3c:
1e:b6:04:c0:a4:e4:44:50:0f:d1:88:8d:a5:77:c0:c0:ea:7a:
41:22:af:cc:a9:72:2f:9f:3b:56:98:db:99:2c:51:c5:31:89:
a6:18:07:50:73:4c:76:aa:6e:98:1d:a9:71:c9:75:f5:8b:52:
00:f2:53:0c:6c:6b:8d:33:31:63:15:03:bd:df:f4:d7:68:0e:
96:d2:4e:11:e0:e8:1a:f1:49:99:76:12:82:65:23:e1:28:10:
67:f5:94:c4:f3:6b:d1:8a:70:6f:aa:0e:95:ad:3c:d9:15:7e:
49:b2:df:71:31:74:04:b6:f1:55:bc:6c:c2:83:60:0b:22:cc:
7f:ab:51:18:0c:c5:3e:ec:65:2a:56:e3:f9:a6:70:c7:5c:f1:
69:46:6d:3e:ba:a2:c7:f0:4c:aa:5a:46:da:e3:62:aa:89:7f:
62:20:e8:60:8d:49:f9:2f:74:e3:d0:91:12:09:ce:89:6f:04:
9a:d5:9d:5d:3e:53:5c:17:e0:e0:6a:8a:e5:96:ea:24:56:f9:
c1:e3:ca:22:49:03:ec:0e:03:e4:e1:b6:03:d8:4d:a3:59:cc:
1b:47:52:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:14 2024 by rpki-client on console-ams.rpki-client.org