Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26C0FE28F00C11EE92126268775412E6.roa
File: 26C0FE28F00C11EE92126268775412E6.roa (raw, json)
Hash identifier: 2AICve0Nvz6n1j2gTdNcvBppmBViwujVO6KtcEfXuhI=
Subject key identifier: BD:D2:7E:E9:F1:EC:D6:A4:01:3D:39:B4:D2:00:3F:F5:9A:92:E7:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A850
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26C0FE28F00C11EE92126268775412E6.roa
Signing time: Mon 01 Apr 2024 09:42:27 +0000
ROA not before: Mon 01 Apr 2024 09:42:24 +0000
ROA not after: Sat 11 May 2024 09:42:24 +0000
asID: 138915
IP address blocks: 154.203.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43088 (0xa850)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:42:24 2024 GMT
Not After : May 11 09:42:24 2024 GMT
Subject: CN=660a8183-ee85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:d4:23:b8:67:8b:93:72:ec:81:0c:fb:c7:
0c:63:62:45:db:80:2a:90:03:77:c5:f5:90:0d:48:
d7:41:9b:97:27:fa:3a:a1:ef:b7:50:49:6e:02:9e:
3e:c6:67:50:41:73:2d:1d:ba:07:35:b0:01:d0:1e:
3c:93:bb:52:1d:4e:7f:e3:20:8e:40:bf:e3:5d:57:
d2:20:f2:0d:0f:a2:2c:89:19:69:55:3d:8f:44:63:
67:d3:a4:02:cd:63:b2:90:3f:66:3d:b6:4b:50:7d:
26:fc:e9:5f:65:9b:c1:61:4b:e2:aa:ae:ce:1e:b0:
9d:32:54:4e:71:0a:5b:5b:e0:3a:77:cd:61:18:84:
14:2f:32:93:1b:d2:72:3b:03:c1:2d:6a:9b:6c:d7:
e9:b6:1b:2c:48:cb:4b:07:bc:50:f4:73:6f:0e:1d:
8e:f5:91:ab:e0:bf:d4:e2:f8:a8:a2:3d:61:67:d0:
10:dc:44:c1:01:14:54:90:dc:2e:c0:87:fa:19:56:
da:7e:db:4d:58:b7:20:94:2a:23:c7:ef:4e:6d:c2:
4a:48:3d:e4:3a:00:60:e9:72:7e:a8:3c:56:aa:e4:
df:61:38:15:c0:ab:09:49:e7:51:50:ae:8f:ea:f0:
4b:a2:b3:61:5c:39:18:f2:29:74:b5:72:f4:7d:1e:
21:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D2:7E:E9:F1:EC:D6:A4:01:3D:39:B4:D2:00:3F:F5:9A:92:E7:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26C0FE28F00C11EE92126268775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.136.0/24
Signature Algorithm: sha256WithRSAEncryption
16:01:4d:17:30:a8:86:44:40:97:36:c3:28:b7:3f:0a:c4:9d:
3f:c8:f9:6b:88:21:ae:80:a8:db:b2:3e:0b:18:60:5c:a1:da:
2e:62:53:6b:4a:cd:a3:4d:d6:4c:eb:90:46:77:86:6a:ed:0b:
8b:cf:39:fc:16:a4:2e:48:65:3f:bb:a7:39:92:e2:01:05:c7:
b9:f9:bf:9b:fd:b4:dd:83:59:f2:13:db:fc:03:2a:7b:d5:18:
2e:14:dd:29:fa:d9:cd:33:f5:6e:ac:8b:49:97:ab:1d:97:17:
f8:3c:54:76:81:e4:7a:0c:bc:fa:c2:e4:52:91:79:ae:8a:92:
f4:af:d2:3f:b8:68:7d:5e:19:d2:ab:70:75:57:86:66:44:8d:
a0:af:97:4e:0c:65:85:b0:0b:65:23:6d:0a:05:2d:46:87:67:
c7:8d:75:c4:84:0c:e3:c3:87:6c:c3:56:b2:98:ed:2d:e2:22:
d8:ef:03:b7:48:c8:0d:d8:07:51:c8:b4:20:b3:d8:3e:bc:b6:
16:32:a1:95:2c:db:4b:a1:62:ce:a8:fd:92:d7:16:8c:b3:f8:
a4:eb:a5:48:73:8a:9c:19:75:1c:3a:a8:f2:c3:47:87:46:e0:
c5:1f:72:f3:8d:97:90:3f:13:df:16:70:b5:cb:ae:ca:13:f4:
02:71:fa:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:04 2024 by rpki-client on console-ams.rpki-client.org