Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DD4CCEAF48011EE99DE38C5775412E6.roa
File: 1DD4CCEAF48011EE99DE38C5775412E6.roa (raw, json)
Hash identifier: 1xDzhVZ9/0kh70Mcn72RMi+vpCncbggIJNK4PxUlSno=
Subject key identifier: D6:2C:5A:A3:B6:2D:08:F3:EE:AC:80:65:9D:AF:42:E1:59:0F:31:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DD4CCEAF48011EE99DE38C5775412E6.roa
Signing time: Sun 07 Apr 2024 01:42:39 +0000
ROA not before: Sun 07 Apr 2024 01:42:35 +0000
ROA not after: Mon 13 May 2024 01:42:35 +0000
asID: 138915
IP address blocks: 154.206.102.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43434 (0xa9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:42:35 2024 GMT
Not After : May 13 01:42:35 2024 GMT
Subject: CN=6611fa0f-4c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:22:ea:8b:e3:0b:8f:8d:18:2f:83:60:57:a3:
be:30:f8:c3:3e:a5:9e:24:de:04:5b:9b:8e:15:b6:
2a:15:85:0c:c5:5b:12:6b:87:68:b6:8f:3f:90:59:
cc:85:86:76:65:53:dd:cd:4a:ef:39:5c:fd:4a:d4:
0e:7a:71:e7:18:a3:21:5b:77:04:5e:1d:b3:8e:8a:
f8:10:3a:f6:2e:94:05:e5:f8:7e:22:f6:2d:4e:c4:
fa:ef:53:36:b9:bd:a1:b1:5e:8c:cb:6f:46:f6:9d:
ae:82:13:07:f4:ce:bd:d5:03:92:89:cf:15:2e:04:
b8:c1:79:d5:86:5f:0b:a5:8a:e3:27:98:51:57:ab:
33:70:39:e0:c0:a9:ef:9d:f0:ef:6f:90:79:08:40:
ed:21:a6:5e:2a:47:49:7f:27:f0:10:fb:3e:ba:27:
db:ca:da:a9:57:e4:e4:0c:8a:01:2d:c2:9d:5b:80:
3f:e1:af:fb:24:c8:bc:19:91:56:50:aa:f0:22:c9:
83:ec:52:18:5b:a0:4a:17:88:a1:82:97:19:d1:ec:
88:01:11:32:a4:a8:dd:95:4d:5b:a0:f8:b0:f4:3c:
82:00:80:ed:14:d8:38:9f:66:b8:26:54:34:a8:25:
82:96:36:41:8b:13:ba:1b:50:54:8b:2c:df:ac:2a:
5a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:2C:5A:A3:B6:2D:08:F3:EE:AC:80:65:9D:AF:42:E1:59:0F:31:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DD4CCEAF48011EE99DE38C5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.102.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:e0:c0:1d:e7:43:7f:a0:fb:77:19:15:fa:4f:95:cc:eb:fd:
2b:3c:22:d2:60:35:0c:94:70:c6:d5:fe:86:16:e3:83:9a:24:
33:e8:b0:f0:0d:4b:33:f8:0e:45:60:47:5e:c7:bb:43:92:db:
70:d1:79:4f:e6:a4:01:89:fe:3c:bb:d1:f1:f0:95:ba:87:8c:
5c:24:44:9e:d4:c2:4d:f9:eb:d8:51:51:57:96:3a:c7:ba:09:
0b:f5:44:9d:5b:44:0d:ab:6e:34:74:dc:60:5c:7c:a6:df:8e:
e9:bc:df:c4:54:da:da:08:5a:e1:35:cf:34:85:ce:59:54:27:
4d:3d:8f:e6:94:ec:6c:77:a6:b8:b5:cc:20:02:02:2b:14:5b:
80:4d:fe:11:d2:1c:a3:e6:e9:d7:c4:68:b6:54:20:a8:9c:c6:
3b:87:a7:91:ee:eb:70:02:38:70:f5:10:c6:2f:f9:4f:ef:4f:
3b:40:fd:df:e8:a2:ee:f0:f5:2b:03:c5:44:ab:66:6e:68:52:
24:2e:70:b3:4f:0a:03:fc:8b:a0:51:75:b7:82:3f:9a:a1:2c:
da:d1:50:4c:82:96:8f:11:4f:9b:7d:86:33:db:43:f6:fe:db:
34:76:e1:4a:05:14:8e:5e:96:d1:60:a0:6e:ef:a4:3d:82:7c:
d2:9c:eb:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org