Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21B0F3C8E47911EE9B1D1798775412E6.roa
File: 21B0F3C8E47911EE9B1D1798775412E6.roa (raw, json)
Hash identifier: XAMyrpPsCwvGYfUylSJDfzH7qBo1HBmIDR1d3IrPjsE=
Subject key identifier: 16:1A:AE:7B:03:EB:EF:1A:C0:72:96:A3:09:10:80:D5:DB:7F:D9:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A26D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21B0F3C8E47911EE9B1D1798775412E6.roa
Signing time: Sun 17 Mar 2024 16:12:20 +0000
ROA not before: Sun 17 Mar 2024 16:12:17 +0000
ROA not after: Sat 04 May 2024 16:12:17 +0000
asID: 272854
IP address blocks: 154.194.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 16:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41581 (0xa26d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 16:12:17 2024 GMT
Not After : May 4 16:12:17 2024 GMT
Subject: CN=65f71664-68a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9c:2e:00:af:c2:c1:1f:1a:d2:96:03:81:f1:
1f:21:f2:29:3d:92:06:2e:45:14:15:6b:f6:f5:18:
f1:a5:3f:64:ca:c0:43:9f:fc:f1:06:d1:b4:70:18:
a0:3f:f3:8f:9c:bf:01:c1:b7:00:94:7e:25:70:61:
ab:c7:ec:ad:3e:d4:6a:29:54:85:96:41:76:89:ec:
49:17:98:72:00:83:45:83:3d:eb:cd:f7:ce:ad:c7:
96:11:db:7d:bb:27:5a:32:54:2b:68:d2:a0:82:df:
04:3b:f6:26:f4:a0:36:5c:1f:fd:7d:9c:7f:ad:72:
2f:41:9b:e7:cd:a4:65:e2:66:73:31:77:82:9e:fa:
1b:00:73:a1:ec:41:91:69:9e:27:e5:03:52:35:94:
d4:76:49:69:66:37:87:56:c2:7e:72:4e:52:5f:5d:
af:29:34:ed:00:39:99:be:01:40:36:42:e5:1a:e2:
ed:e3:b9:06:58:5d:cb:54:11:b9:a2:cf:d5:88:27:
ad:45:4a:b7:06:92:a9:24:ec:e3:4d:12:6e:fd:22:
69:a6:ab:fd:56:7b:78:b2:75:9c:dc:5e:e2:e5:da:
ab:ed:ec:14:a3:c0:f8:a1:e4:fc:e3:32:4c:7c:70:
7e:3a:61:a1:cc:8f:c7:ab:4e:8b:e0:77:8b:c2:b6:
7b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1A:AE:7B:03:EB:EF:1A:C0:72:96:A3:09:10:80:D5:DB:7F:D9:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/21B0F3C8E47911EE9B1D1798775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.44.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:84:c5:b1:5b:36:41:14:c2:00:e5:bf:27:98:6a:d6:f0:18:
e7:8d:66:4a:1a:a4:4c:3f:54:1e:96:40:e9:31:46:0e:42:27:
db:7f:65:7b:6e:4a:39:2a:62:a8:8d:74:27:8c:3e:2c:b4:b0:
ad:84:4a:e1:4b:4b:22:54:78:4d:25:2a:0c:08:cb:dd:f7:9f:
3c:86:cb:eb:63:2b:e8:1f:1e:b7:e4:04:7e:82:c2:14:ca:be:
7b:f9:b3:73:9c:40:90:d1:51:59:34:05:cb:c4:a4:b6:d0:18:
28:a9:af:5c:f2:09:64:5f:83:b0:d8:72:d1:1a:82:75:7e:87:
3d:56:bb:a7:1e:d1:f3:0c:11:2a:eb:61:1e:0a:e1:77:db:bb:
7a:b7:88:ca:30:c6:d2:66:a1:8f:11:43:df:8f:73:8d:da:fc:
02:9f:a7:1b:ac:03:93:6e:1d:28:1f:d4:e3:fe:3b:f2:ba:c3:
58:5c:a9:c8:54:13:3a:83:53:06:d5:de:73:b5:a0:ae:5b:22:
22:27:93:76:9a:6e:fa:da:fd:f5:6f:bf:15:1d:98:7f:ea:e3:
6d:f2:35:a6:85:3b:d0:27:f5:2d:63:72:f9:e5:3a:07:6f:10:
36:8d:1f:3c:06:ba:c8:98:a6:62:d9:ad:c4:08:16:54:c4:0e:
21:eb:23:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org