Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19209012E78811EEAC80CBC1775412E6.roa
File: 19209012E78811EEAC80CBC1775412E6.roa (raw, json)
Hash identifier: WkvU3UXBDBcdzHLRMxH38hq5QWBi/v/gMh9Qsh3Vygk=
Subject key identifier: 40:BD:2A:CA:42:8F:8F:9B:D8:52:17:6B:87:96:87:30:76:B5:61:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19209012E78811EEAC80CBC1775412E6.roa
Signing time: Thu 21 Mar 2024 13:37:02 +0000
ROA not before: Thu 21 Mar 2024 13:36:58 +0000
ROA not after: Tue 23 Apr 2024 13:36:58 +0000
asID: 44559
IP address blocks: 154.210.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42425 (0xa5b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:36:58 2024 GMT
Not After : Apr 23 13:36:58 2024 GMT
Subject: CN=65fc37fe-4029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:da:65:26:96:f2:96:d2:bb:71:06:7e:20:fd:
60:12:43:07:17:bb:f7:de:c7:fc:8d:19:e8:f2:3c:
34:b6:57:11:57:8e:a6:28:4a:c4:dc:a3:cf:1b:ed:
6d:83:4c:7e:55:e5:2f:49:11:aa:23:ae:59:89:a2:
8a:42:b3:e8:f8:1d:14:17:2b:a0:ab:56:eb:e7:14:
c3:31:2b:f2:5f:57:64:86:9e:47:3a:e3:0f:96:63:
9d:fc:dd:56:84:0d:83:cc:57:4b:af:78:74:10:63:
22:5f:e2:f3:ac:93:de:bc:59:3d:c1:c4:4f:fa:5b:
02:ad:d1:1c:a6:7f:c6:82:fa:93:bb:d7:60:a8:28:
a4:67:a9:9c:9d:e1:ff:a5:b2:73:d1:ed:cb:9b:a3:
ae:1a:8d:d2:60:f6:d3:cf:1e:d4:08:17:8a:99:af:
c9:77:c6:f8:ed:38:59:ce:61:15:d2:74:b2:90:5b:
e0:2d:57:81:35:2e:93:0b:d4:e4:0d:e5:7b:44:c5:
fb:32:0b:b8:51:3c:3f:6a:92:35:5e:ad:91:5c:0b:
be:7b:cf:dc:14:62:5c:21:bf:19:16:b8:bc:ce:ec:
e5:74:09:47:d7:9c:40:7b:84:dd:a6:fc:7c:b2:89:
83:90:37:0e:b8:e4:de:4e:6f:0c:7e:89:2d:29:25:
23:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BD:2A:CA:42:8F:8F:9B:D8:52:17:6B:87:96:87:30:76:B5:61:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19209012E78811EEAC80CBC1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.64.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:10:30:c4:49:ed:69:30:99:08:67:73:3b:d6:c2:d3:a4:1d:
37:2d:3a:20:0f:3f:16:da:c0:86:06:f2:3e:4b:69:e4:24:70:
d3:c5:8f:26:9e:29:a4:69:ed:1b:b4:15:2a:46:85:8d:36:fd:
ea:7f:a2:44:76:9e:e8:d1:ab:e1:7b:34:ed:35:e4:75:62:56:
76:c4:f7:25:3d:9f:36:19:9d:e4:e3:57:0e:ec:fc:13:a5:87:
0e:fd:bf:34:75:6e:96:31:0d:00:68:2a:84:70:da:d3:bf:f9:
60:33:c3:35:c4:10:50:cc:ef:5c:af:4e:38:40:2f:41:24:1c:
70:31:5c:f5:2f:90:09:af:20:6e:b9:de:b2:a4:3e:ba:eb:bb:
14:bc:ba:46:34:5e:b0:4d:7d:04:a1:c2:15:59:b2:c0:d7:c3:
56:31:ec:b9:50:e6:26:61:9d:ec:6a:43:48:4d:7d:6a:a3:e7:
cd:46:93:e1:c8:f9:a9:57:ed:79:7c:56:06:52:f4:fe:4a:59:
2c:ad:cf:86:4e:6e:f1:35:18:60:5f:4c:3f:a1:14:66:3a:e6:
c2:6f:df:10:ef:ee:26:c7:3f:ce:85:aa:65:e7:87:80:c9:e7:
a4:aa:ea:ca:25:2d:b4:cd:4a:58:eb:19:84:54:4e:0c:0a:a1:
31:25:2d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:13 2024 by rpki-client on console-fra.rpki-client.org