Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1EFE32FEF7BF11EE8EFF091E017001B1.roa
File: 1EFE32FEF7BF11EE8EFF091E017001B1.roa (raw, json)
Hash identifier: bM8NpQf2cHP3ugYEmvPiqFyhJIDOIfBN7Wt01gT/ySc=
Subject key identifier: B1:E3:B0:FD:42:8C:F1:A9:43:33:22:1B:FB:42:21:EA:A7:49:7B:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1EFE32FEF7BF11EE8EFF091E017001B1.roa
Signing time: Thu 11 Apr 2024 04:51:13 +0000
ROA not before: Thu 11 Apr 2024 04:51:09 +0000
ROA not after: Sun 19 May 2024 04:51:09 +0000
asID: 138915
IP address blocks: 154.93.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43801 (0xab19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:51:09 2024 GMT
Not After : May 19 04:51:09 2024 GMT
Subject: CN=66176c41-5854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c2:82:06:1c:2c:fa:11:d0:aa:05:8d:af:2c:
6b:f0:ae:2e:61:d7:03:7f:1e:1a:d5:9e:da:62:b6:
04:29:0c:0b:79:86:97:7b:7b:99:da:22:54:7d:90:
93:33:3d:78:6f:4f:0d:6b:cc:4f:9a:72:ef:8e:ef:
4f:92:6d:fe:50:fe:43:93:3f:a3:d0:06:76:58:44:
ad:8a:a4:8d:45:88:95:d6:d8:4b:f1:e4:10:ad:e0:
21:49:d0:1b:6a:de:2f:9a:9a:c6:c5:e7:33:be:1c:
7c:b6:eb:16:83:bf:06:ef:e5:9d:4b:96:de:d4:2c:
32:3b:e7:e0:91:ca:00:07:eb:25:60:f0:69:84:e2:
10:96:1b:27:77:ba:0e:e9:8d:55:a3:74:55:a6:13:
6a:41:a3:f6:97:b5:22:19:87:4e:b6:c3:61:41:fb:
dc:cf:7c:50:0b:84:a3:73:7e:a5:43:f9:09:87:0f:
71:91:fc:9e:54:34:ea:4c:59:0b:68:44:88:7b:35:
53:68:80:a9:6c:54:e0:85:b3:3f:7d:6c:d0:3f:a9:
88:20:03:ec:0c:ee:7f:c9:b1:6d:1e:e3:a5:48:12:
17:5c:95:f6:9d:4c:36:f6:fc:6f:e8:86:c7:61:b7:
c8:1a:ed:b6:fc:f9:e8:fe:b6:25:a3:2f:3a:6c:3e:
ae:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E3:B0:FD:42:8C:F1:A9:43:33:22:1B:FB:42:21:EA:A7:49:7B:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1EFE32FEF7BF11EE8EFF091E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.51.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:26:29:6d:17:c9:38:69:60:bc:f4:80:f5:6f:35:18:0e:79:
8c:b1:a9:ca:bc:61:dd:d6:5f:af:f8:8b:8b:99:43:5a:bb:6b:
ea:81:fb:88:76:34:80:eb:51:f2:8b:03:02:3d:62:d5:b6:eb:
7b:be:d6:22:6a:1c:af:99:93:c5:ee:bd:aa:5f:4e:15:f2:a3:
f7:12:4a:03:6b:5c:de:b7:7b:35:7a:81:2c:b4:2e:1a:ca:cd:
42:bf:73:f6:6f:d0:4f:b5:f2:58:bd:e7:e4:59:49:31:39:82:
25:52:b6:0e:c8:ea:f1:5a:e6:e0:b7:7b:a9:50:1b:70:56:21:
e0:c1:17:dc:9a:a3:67:49:e5:b5:06:0d:b5:0b:39:16:cf:63:
e1:10:e3:b8:50:e6:b4:42:d2:0f:64:00:5c:44:7d:5d:1a:9a:
c1:75:ef:83:b6:98:88:8d:f8:62:b0:7a:0d:79:ec:99:6a:33:
8c:be:b2:29:90:8c:26:b6:6c:e5:ac:da:ee:97:11:9f:63:db:
cd:0a:43:af:44:86:8d:9e:63:55:81:93:6a:77:4a:70:86:8f:
7c:73:ea:3e:ea:1b:da:ba:6d:b0:90:c3:f7:ed:16:83:33:b8:
60:d8:ad:87:39:d2:d5:c6:81:1d:7b:05:d5:b7:08:2d:0c:10:
f2:31:8a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:03 2024 by rpki-client on console-ams.rpki-client.org