Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17FAB26AEF9711EDA88105874AD9E6FC.roa
File: 17FAB26AEF9711EDA88105874AD9E6FC.roa (raw, json)
Hash identifier: CsnSJKie0NJMYMLqJolrRt53eToO3B+O8NHDZDmBuGE=
Subject key identifier: 2E:24:16:EC:3B:EB:E7:84:53:8C:A2:16:E6:DA:D7:FC:C5:5C:67:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 20DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17FAB26AEF9711EDA88105874AD9E6FC.roa
Signing time: Thu 11 May 2023 00:59:34 +0000
ROA not before: Thu 11 May 2023 00:00:31 +0000
ROA not after: Thu 25 Apr 2024 00:00:31 +0000
asID: 26617
IP address blocks: 154.202.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Apr 2024 00:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8412 (0x20dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 00:00:31 2023 GMT
Not After : Apr 25 00:00:31 2024 GMT
Subject: CN=645c3df6-866a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:11:2e:d8:3c:12:02:0b:62:f1:f2:1f:18:0e:
3a:b6:6f:b0:a3:41:5a:e2:f3:c2:18:8c:6a:8f:11:
f1:d6:06:ae:08:3a:57:99:12:ba:3a:25:3d:04:11:
76:3d:fa:4f:4f:1d:ba:7a:b4:61:22:c1:c6:ea:97:
52:45:80:65:d7:75:80:a3:b2:5f:e4:73:a1:83:d3:
f4:af:89:43:f3:8a:44:90:53:40:bf:00:1d:f3:0f:
1c:8c:c3:84:3c:7e:22:dc:9a:47:91:e2:fb:d1:e8:
bf:1b:7a:f3:5f:cf:64:00:7d:1e:7d:41:2b:f6:4f:
e3:77:32:c5:99:69:eb:3c:f6:f3:70:b6:44:34:0d:
6e:8d:3f:58:e6:f3:c9:18:22:95:91:6f:45:e0:06:
1d:dc:fd:16:83:09:d2:e3:c0:ad:6c:7d:e3:2b:c9:
26:be:09:94:aa:d2:fe:70:34:b4:3e:4b:9c:b1:52:
3c:65:1e:ed:d1:28:2e:96:13:12:eb:a3:4b:46:23:
da:e4:b2:70:77:81:a9:91:fb:a2:97:0b:35:ca:1f:
1c:cb:b6:8b:90:1e:30:cc:9e:88:cc:66:03:a2:b5:
36:d6:3a:a7:07:45:94:40:7e:65:ed:bb:8e:af:f8:
6c:73:e6:35:26:d4:3f:90:e7:68:3a:d4:9f:a1:85:
87:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:24:16:EC:3B:EB:E7:84:53:8C:A2:16:E6:DA:D7:FC:C5:5C:67:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/17FAB26AEF9711EDA88105874AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.7.0/24
Signature Algorithm: sha256WithRSAEncryption
74:93:28:a2:8f:d1:ef:82:36:4f:15:49:e8:e5:18:ce:5c:3c:
98:4f:30:34:24:d4:ef:2b:e8:d4:98:1a:5e:d4:20:aa:03:79:
39:2b:41:e0:2f:f1:ce:8b:28:eb:dd:91:be:9b:cb:9d:5b:72:
67:14:a2:67:0b:3f:13:73:3a:fc:35:85:30:56:d3:3e:57:3f:
bd:bd:5d:09:a8:44:d8:7c:a7:62:a4:e4:12:da:5b:8b:07:60:
3c:eb:16:0e:66:47:ee:dd:9a:52:3e:72:38:63:0a:b9:d2:7b:
05:28:ea:9d:1a:74:ba:ea:e5:ed:f4:44:0c:12:d1:10:3d:03:
6d:17:e9:c0:fd:f6:e7:c2:1e:93:d6:08:89:35:12:b2:49:0e:
8b:7f:31:af:48:97:17:e2:11:89:e3:40:72:a9:ac:2c:43:ad:
d3:64:03:da:9b:05:a1:f5:7d:34:d1:27:71:90:4b:7f:4d:0c:
85:7d:31:06:03:23:5f:ec:e6:a4:4e:e5:c8:b6:3c:47:d2:fb:
f0:08:93:b2:a2:51:b9:f9:38:ba:ce:ca:59:0c:af:a3:8f:8d:
c1:93:03:c6:86:9a:3a:e0:91:ad:88:5f:62:81:c3:bd:37:0e:
49:44:bf:a0:77:8c:97:24:ab:77:8e:40:d1:7e:92:f3:c3:fe:
3d:9c:7c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 02:54:49 2024 by rpki-client on console-fra.rpki-client.org