Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17CAB1EAF7C111EEA136712F017001B1.roa
File: 17CAB1EAF7C111EEA136712F017001B1.roa (raw, json)
Hash identifier: 6tlVaozhHR4HcspUvPVHeJ3l0/nDGdRHWJ7UYIGcrgY=
Subject key identifier: 04:79:8E:C8:D0:B2:A0:76:3E:C7:56:2A:7B:E8:E8:2A:B1:B2:08:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB2D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17CAB1EAF7C111EEA136712F017001B1.roa
Signing time: Thu 11 Apr 2024 05:05:20 +0000
ROA not before: Thu 11 Apr 2024 05:05:16 +0000
ROA not after: Sun 19 May 2024 05:05:16 +0000
asID: 138915
IP address blocks: 154.93.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43821 (0xab2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:05:16 2024 GMT
Not After : May 19 05:05:16 2024 GMT
Subject: CN=66176f8f-d63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3d:8d:6d:94:97:2a:ca:84:19:b8:db:8c:35:
9e:d1:85:5b:4b:e9:4a:1c:e6:9c:78:b6:54:a7:63:
73:02:e8:b0:8d:58:89:26:96:4f:74:35:25:f0:c2:
da:30:f2:d7:89:b1:0b:18:a1:d8:ec:eb:0c:4a:7c:
a3:49:80:50:d7:1f:9f:aa:e8:81:6c:44:2c:d9:1c:
a2:e5:3e:8d:72:19:8b:0c:90:d8:6a:35:b7:29:47:
8a:75:ca:c2:6a:50:58:00:e6:f9:f7:09:43:a8:52:
5a:9e:21:6e:a7:3a:e9:6f:28:44:85:17:c3:14:9f:
29:f8:02:13:83:78:80:2f:59:c9:e1:c4:1a:c7:56:
e7:2c:a6:82:6f:3f:62:98:15:17:35:69:1d:6b:99:
4b:04:f0:f9:b8:57:d0:fd:b3:17:a3:20:dd:0d:fc:
a5:f2:d3:6a:fb:92:f2:ac:95:70:cf:97:8e:36:20:
c2:0a:d7:78:62:67:39:97:fe:01:c1:09:1b:ef:35:
65:e9:63:2b:c9:4c:0f:78:c1:27:2c:cd:b9:35:34:
71:a0:b6:c1:c5:b8:9b:27:ab:0b:9c:50:82:8a:62:
53:b3:bb:2c:f6:28:36:46:bc:4d:50:24:92:90:29:
59:54:92:e1:16:f0:fa:51:53:a6:c0:8e:52:64:95:
be:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:79:8E:C8:D0:B2:A0:76:3E:C7:56:2A:7B:E8:E8:2A:B1:B2:08:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17CAB1EAF7C111EEA136712F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.44.0/24
Signature Algorithm: sha256WithRSAEncryption
08:1e:73:fd:5b:a4:5e:13:7d:bf:66:a3:65:a2:ba:13:9d:6b:
cb:82:7d:8a:7a:b4:1f:d2:bb:09:e6:b0:9b:7a:62:b4:59:f4:
8c:84:ba:e4:7a:26:19:ae:f4:fc:2c:79:9a:54:05:38:eb:09:
b1:10:b0:ea:ed:a0:b6:a5:a0:0d:b7:75:7e:78:28:aa:4f:a8:
f0:b0:f4:8e:05:b1:54:94:6c:bf:92:de:1f:d6:3d:16:0d:6d:
d9:51:c9:8b:51:44:18:25:a5:46:54:06:dd:aa:54:ee:02:ef:
b4:fc:c3:f2:d2:b8:f9:47:cf:73:e3:d4:f0:f7:15:5c:9b:4d:
a9:de:79:1c:7f:80:83:c0:4d:54:66:0d:58:50:81:8a:e6:6a:
d4:c5:2a:4b:25:1c:cb:bd:df:a1:76:77:1e:1a:47:ac:e2:92:
2f:b5:7f:6f:26:e4:7c:c8:23:7b:79:9b:5d:ee:9d:63:b2:1b:
f4:64:1a:6f:7e:14:6d:6a:0e:82:87:f6:0b:15:02:53:75:be:
ab:74:86:5a:a7:51:10:c5:e3:28:ee:c3:54:a6:18:1c:21:42:
7f:6d:d2:20:2e:27:66:80:39:45:51:f5:f3:2a:f7:dc:d5:2f:
7d:35:4d:a0:f4:97:2c:57:b7:ba:d1:0e:d4:a7:6a:05:12:c7:
08:13:b4:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:16 2024 by rpki-client on console-fra.rpki-client.org