Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/219EE200E9A611EE8D6C645D775412E6.roa
File: 219EE200E9A611EE8D6C645D775412E6.roa (raw, json)
Hash identifier: 9VVhcu4wx7JPkUEJRzxljAU6YZaOErSpyKVf05B/7/E=
Subject key identifier: D1:D0:94:BE:5C:29:DA:62:B1:FB:63:EB:12:BA:86:65:B8:25:50:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A64C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/219EE200E9A611EE8D6C645D775412E6.roa
Signing time: Sun 24 Mar 2024 06:17:03 +0000
ROA not before: Sun 24 Mar 2024 06:17:00 +0000
ROA not after: Fri 26 Apr 2024 06:17:00 +0000
asID: 149513
IP address blocks: 154.201.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42572 (0xa64c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:17:00 2024 GMT
Not After : Apr 26 06:17:00 2024 GMT
Subject: CN=65ffc55f-b46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f6:5e:24:eb:b3:1a:c1:ad:48:56:f0:e6:6f:
6c:0d:ce:e4:b6:cb:bb:ec:d4:ee:fb:fb:28:1f:a6:
72:a5:a6:d7:b5:86:f9:0a:f0:24:bb:2a:28:6a:51:
2c:f1:d7:69:b6:78:66:65:4f:af:7d:9a:e2:0f:55:
4f:18:e0:3f:0e:6f:db:0e:51:76:41:ad:ef:0a:45:
29:b0:1d:b9:a4:8c:8c:5e:4e:be:d5:c9:e8:f9:ef:
1d:0f:e1:db:49:ee:7a:dc:f0:28:66:3d:04:92:09:
56:91:8c:fb:03:42:e2:fd:5a:47:6e:8a:6d:6a:2f:
12:61:90:9c:54:0e:cf:de:19:f5:5d:d8:7d:8b:dc:
80:3c:21:b1:ad:0a:10:0a:2f:c3:2c:e8:b0:ab:e9:
50:62:1b:d0:b9:d7:cf:89:09:36:54:bf:12:90:0c:
2e:e4:43:92:79:cb:92:92:51:71:72:d8:5f:6e:81:
97:06:cf:9b:a9:8a:92:a6:ed:3f:5a:d7:88:90:83:
1f:4b:f3:b6:29:0c:17:1b:69:44:27:60:2e:7a:ce:
6c:7c:87:ae:f4:49:3c:ca:2b:66:e6:f8:8c:af:e0:
3d:4c:31:37:65:af:9f:2f:5d:00:07:66:5e:89:f9:
5c:db:ec:a7:72:fa:39:f3:9d:a8:1d:98:19:68:40:
e7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D0:94:BE:5C:29:DA:62:B1:FB:63:EB:12:BA:86:65:B8:25:50:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/219EE200E9A611EE8D6C645D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.93.0/24
Signature Algorithm: sha256WithRSAEncryption
44:d4:67:76:ef:e5:c9:36:3f:74:06:40:1a:b3:24:c5:9d:e4:
3e:0c:1e:3d:e8:2e:1b:75:ca:f4:40:f3:67:f2:73:20:be:b8:
22:b5:67:69:47:b6:04:7d:f9:b1:26:42:34:bd:78:89:cb:e0:
e0:41:4a:f4:52:b0:8a:f5:da:7a:e9:fd:5e:42:1f:f0:14:e3:
ea:17:90:be:19:d4:58:e4:17:55:0b:fe:1b:5b:60:6b:28:bc:
cb:0a:a6:d8:c6:1b:f8:5d:8c:a7:11:f7:da:4f:a0:a6:ea:02:
62:97:f0:72:5b:d8:e8:4e:77:de:4e:38:3e:ef:8e:4e:86:b9:
8f:2b:5d:86:14:12:30:53:b3:f1:34:1f:ba:40:8e:af:f6:36:
d0:74:a3:0d:a0:b9:c3:da:3f:60:96:5c:21:eb:6f:13:eb:86:
e9:24:37:ec:a2:8b:16:7c:58:1c:d6:f7:72:13:b6:a1:43:69:
89:91:e2:26:2c:9e:f4:c6:e6:a8:a1:08:53:02:ca:b3:4d:d8:
ee:78:b7:d8:4f:14:92:da:85:32:0e:4c:d6:27:e7:dc:ec:1e:
5c:69:4b:78:55:4f:c0:db:e1:c2:6c:43:28:c7:13:2d:e9:80:
35:85:35:9f:b3:fd:66:f8:b4:f5:12:08:99:e4:7f:3f:5b:dc:
5b:1f:a5:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:27 2024 by rpki-client on console-fra.rpki-client.org