Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20C9AC02FEA111ED863159694AD9E6FC.roa
File: 20C9AC02FEA111ED863159694AD9E6FC.roa (raw, json)
Hash identifier: Yo1MSSFsSaMby4zuNNQtmKMifLCtWIhJc+qAipD/PYE=
Subject key identifier: 33:14:1F:DF:44:48:E3:03:E4:0A:33:D0:4D:CE:B9:6E:95:68:C7:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 285C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20C9AC02FEA111ED863159694AD9E6FC.roa
Signing time: Tue 30 May 2023 04:19:11 +0000
ROA not before: Tue 30 May 2023 04:19:08 +0000
ROA not after: Wed 15 May 2024 04:19:08 +0000
asID: 63888
IP address blocks: 154.207.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10332 (0x285c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 04:19:08 2023 GMT
Not After : May 15 04:19:08 2024 GMT
Subject: CN=6475793f-dc70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:aa:9f:66:17:5c:f6:24:5c:84:e3:d6:42:d0:
bf:e1:0b:02:2d:3b:0c:54:1e:cb:d4:ba:5d:70:d0:
63:31:ee:ce:e2:e5:93:9c:4a:c2:3b:3b:38:b4:52:
e7:d7:7a:fb:ce:bc:2b:c7:51:5d:55:60:1b:db:11:
ed:a9:96:f7:d5:0e:47:b3:05:09:ee:be:b2:01:dd:
d5:50:be:aa:24:e6:0a:33:e6:82:c6:ee:84:15:c9:
38:fc:0c:0a:33:c3:3f:78:e5:dc:5d:97:8f:5c:ef:
53:d6:12:33:fd:36:c6:33:f6:7c:7d:3e:58:0c:aa:
63:f9:7c:8d:82:19:a1:79:73:d0:7d:08:64:0f:d9:
90:da:d5:36:90:73:63:cc:a7:e0:a3:24:57:c3:5b:
1d:9a:28:39:3d:1c:4e:1c:e3:7f:a8:cc:b3:33:7d:
03:d9:0c:04:1c:f6:90:b2:1a:1c:f4:83:16:b4:44:
cc:f9:c4:fb:73:08:48:f9:14:f5:4f:27:c6:72:73:
a0:b7:8b:8e:3d:cd:24:47:27:aa:6f:c8:9d:0e:27:
c3:ff:59:16:da:08:ce:94:bd:da:35:69:aa:ad:a5:
83:2a:98:dd:64:ac:a2:41:e6:07:9f:3d:0e:be:f2:
43:e3:4e:16:bf:76:ff:e7:9a:d7:31:cd:eb:14:dc:
01:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:14:1F:DF:44:48:E3:03:E4:0A:33:D0:4D:CE:B9:6E:95:68:C7:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/20C9AC02FEA111ED863159694AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.68.0/24
Signature Algorithm: sha256WithRSAEncryption
29:b9:5b:6e:71:91:46:84:14:b3:9a:0a:4f:93:17:60:50:d6:
b1:76:2f:ac:02:43:b5:a7:87:29:e7:65:1b:6d:f5:23:c6:57:
61:27:89:a0:d4:d2:ea:34:21:cf:6c:61:3f:e6:09:26:da:44:
92:ec:fc:db:5a:e6:66:d6:69:15:ec:02:94:77:ad:02:ca:df:
26:16:80:b4:cd:5a:90:bd:dc:e4:ca:c1:4d:e1:a9:29:fd:41:
36:9a:91:7d:4d:d2:8e:e0:90:10:2f:16:0a:e7:cb:24:92:74:
ea:91:d9:d0:e7:63:d2:23:4d:f8:71:cd:c1:55:97:a6:17:eb:
90:72:c8:20:12:ec:be:dd:ce:82:42:9f:6e:5d:7a:24:f4:ee:
d8:0a:5d:62:33:7d:93:28:e9:18:d0:39:1f:b9:c3:de:9c:18:
08:5c:be:a5:aa:ca:51:d1:7a:a5:3d:82:1a:99:c4:e9:50:71:
bc:de:2f:19:ef:4a:8e:0c:2a:1c:f2:1d:a7:c3:9e:34:a3:97:
ec:82:4c:22:cb:42:42:f5:ab:67:36:65:f4:bf:62:78:f5:92:
ee:fd:3b:cd:67:5b:6e:31:2d:4c:db:2c:fd:e8:32:f1:41:4a:
94:81:99:4c:cf:ff:ac:22:ec:cc:3f:7c:a7:41:1a:f3:52:ec:
66:92:09:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org