Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B343B6AFB9711EE93FBB46F017001B1.roa
File: 1B343B6AFB9711EE93FBB46F017001B1.roa (raw, json)
Hash identifier: 6Eg+ctXiMyluf4GaKxzmg79pBwDTygAX2RyjWcwGJFg=
Subject key identifier: 71:A7:3D:68:88:EF:DC:19:35:B3:1B:0B:0F:3F:E5:95:CD:74:FE:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B343B6AFB9711EE93FBB46F017001B1.roa
Signing time: Tue 16 Apr 2024 02:14:51 +0000
ROA not before: Tue 16 Apr 2024 02:14:48 +0000
ROA not after: Tue 07 Jan 2025 02:14:48 +0000
asID: 139057
IP address blocks: 154.85.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44291 (0xad03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 02:14:48 2024 GMT
Not After : Jan 7 02:14:48 2025 GMT
Subject: CN=661ddf1b-3565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0a:4a:7d:5e:9d:31:27:52:a6:45:cc:90:6d:
35:a4:1b:6c:b9:ce:f5:7e:e5:61:df:a5:66:16:c2:
8a:d5:fc:bc:1f:c1:6d:ac:f5:25:dc:aa:13:1f:4e:
4b:6b:06:db:04:9e:49:d7:77:32:b6:cb:4f:30:80:
48:71:ca:6e:b4:91:5d:aa:38:b6:e5:5b:98:bd:f1:
86:36:dc:4b:ac:41:2c:fa:ab:b8:7c:27:73:35:e7:
dc:45:c9:c3:0d:4b:79:ac:c1:f1:98:69:b3:9b:8a:
b0:7c:6d:27:8f:40:1a:4c:25:5a:36:99:ed:69:c5:
cf:54:11:3b:c2:c3:4b:39:8d:fd:48:6a:38:90:ff:
20:5a:01:bd:aa:a4:dd:e8:07:cb:01:1f:9e:10:6d:
4e:c8:58:99:a6:f9:99:e5:8a:cd:72:92:af:23:12:
22:87:e6:af:55:f3:a2:32:73:f9:63:a6:ca:8e:68:
0a:17:9f:fb:9d:42:da:73:52:3c:f5:2d:72:11:5d:
6c:4c:5c:e4:a6:78:a7:b7:c3:7d:90:2b:25:96:ba:
75:1a:6d:13:94:76:a2:50:f9:d0:35:bf:f1:ac:ce:
13:20:a2:a6:2a:ae:05:a0:43:0a:94:21:61:68:88:
96:ab:13:d6:2e:b9:18:57:2c:5d:b3:17:2b:5d:63:
cf:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A7:3D:68:88:EF:DC:19:35:B3:1B:0B:0F:3F:E5:95:CD:74:FE:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B343B6AFB9711EE93FBB46F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.95.0/24
Signature Algorithm: sha256WithRSAEncryption
11:9c:92:95:14:b6:db:fe:4b:9e:92:e4:a2:2b:d3:49:50:0f:
e2:c2:db:fa:80:6d:e2:69:f1:bb:e1:3e:31:8d:ca:e3:ee:ec:
37:a3:11:e7:3e:d4:f9:77:95:4a:cc:81:10:d2:61:1d:ee:da:
eb:69:b7:55:5a:f6:43:ec:03:2f:f9:4c:cf:fc:67:35:a1:6d:
9f:c1:8a:20:54:9f:bb:48:9e:f6:02:c2:34:6f:b2:fa:e5:c6:
57:d4:63:80:7e:3f:a2:2c:5f:16:bd:69:a3:ab:00:28:6c:46:
69:83:52:d0:bc:b2:4f:0c:3e:78:4e:9a:44:69:c9:e4:c9:d5:
76:5f:49:db:8a:49:5d:c8:d0:58:c9:ae:f6:4d:24:46:19:d3:
28:fb:98:d7:d0:08:fc:a1:b1:bf:f1:f4:81:d6:97:1d:bb:f9:
ea:91:23:56:95:26:6c:df:07:11:c1:2d:35:3d:aa:9f:83:66:
4e:da:d3:ae:3b:ca:ea:1e:a8:5e:04:6b:b1:4e:a8:22:b7:81:
72:7b:1b:c0:f7:ec:3c:d8:01:68:de:0e:e9:e9:49:f8:6f:e1:
0e:3a:60:48:51:7b:58:f9:11:7c:3b:44:7a:00:58:af:dd:b6:
b0:a8:31:38:72:51:2c:39:d7:79:85:4a:3e:12:95:62:e1:ff:
61:db:1a:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org