Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/287F9146F00911EE97CD7652775412E6.roa
File: 287F9146F00911EE97CD7652775412E6.roa (raw, json)
Hash identifier: 7DvwvFHLTJAhQGB8gMJScnGihXEIS8wtMFOcQZtqcmA=
Subject key identifier: 54:89:50:64:54:AC:88:E1:63:84:20:98:40:32:14:31:8F:BD:A4:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A82C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/287F9146F00911EE97CD7652775412E6.roa
Signing time: Mon 01 Apr 2024 09:21:02 +0000
ROA not before: Mon 01 Apr 2024 09:20:59 +0000
ROA not after: Sat 11 May 2024 09:20:59 +0000
asID: 138915
IP address blocks: 154.205.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43052 (0xa82c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:20:59 2024 GMT
Not After : May 11 09:20:59 2024 GMT
Subject: CN=660a7c7e-0c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7d:1c:f2:99:68:a8:28:c2:5a:bb:cc:a7:cb:
b2:db:33:80:85:33:00:f5:ff:af:d0:07:f4:35:a3:
ac:1e:83:ae:c9:f6:af:7c:4a:b5:7a:bd:95:a6:8b:
90:36:12:72:06:61:67:59:8e:15:5c:e6:1e:79:39:
f7:ca:03:0a:c5:88:91:cb:6a:5c:3d:24:de:24:15:
bc:7d:e9:89:e8:d4:ce:17:e3:d7:2c:3a:20:98:b5:
66:99:e0:11:64:f0:08:07:c7:7f:11:b4:6f:df:f5:
d8:6d:11:4b:19:98:3b:0a:91:42:25:e6:be:4a:a3:
c2:ff:a2:d6:f8:9b:8b:42:ef:50:09:87:ce:4f:57:
25:06:6f:5d:32:85:28:cc:1d:f3:c5:7c:d4:62:69:
af:73:ce:51:b6:50:e9:f2:ab:27:c5:68:90:d7:97:
c1:01:e8:a9:15:76:e2:93:f6:fd:18:9d:25:56:94:
bb:8a:ae:93:83:c6:0a:9d:c8:f7:de:03:14:5c:5d:
f2:14:45:10:fe:2d:51:c6:ce:86:99:01:7d:c8:5d:
b1:c6:bd:ee:f9:9b:f1:8a:1f:0b:19:46:14:93:45:
58:10:1f:64:32:a3:be:4a:a4:e9:ea:7f:8d:bc:26:
d8:d2:85:1b:f2:ec:ee:1c:ed:b6:3b:13:3e:aa:00:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:89:50:64:54:AC:88:E1:63:84:20:98:40:32:14:31:8F:BD:A4:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/287F9146F00911EE97CD7652775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.147.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:d3:f3:a1:3c:72:f8:92:ee:fc:52:7d:93:45:91:84:fb:df:
18:49:76:e2:80:66:9e:0c:40:c9:58:aa:dd:a0:3d:e2:08:8e:
3f:c4:8e:3b:80:01:db:40:26:47:3b:13:66:cf:64:62:8b:ed:
66:73:5a:03:e1:a6:b0:85:ef:0f:88:b8:9c:24:77:eb:ff:10:
28:ba:45:26:bd:43:70:89:39:24:04:59:bd:52:bc:3e:16:28:
d7:7a:07:b0:ad:3a:a0:f1:1f:0f:99:f0:76:56:e1:99:b7:eb:
3e:f4:49:50:6a:a0:b7:27:87:20:d6:54:26:83:0e:f9:18:6d:
d0:96:55:8f:99:0a:80:33:63:54:6c:8b:27:c6:0f:0e:af:64:
39:96:21:53:a1:91:70:fa:a5:66:18:c0:19:8c:72:9a:f0:c0:
31:54:48:ce:2e:a7:0e:e6:c6:1f:a9:77:09:e3:19:45:31:0b:
40:66:ef:ca:ff:5b:3c:b0:ea:8c:67:ef:49:58:10:93:b6:20:
5c:07:af:57:59:4f:41:7b:ca:81:2e:ce:a3:77:c5:e0:5b:1e:
e4:66:a5:f5:6d:6f:a3:a9:fc:30:b3:79:fd:1c:ad:9c:5b:cb:
9f:49:ac:bc:5e:3d:78:16:e5:6e:4b:c2:ac:6a:08:8e:da:9e:
10:a8:66:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:18 2024 by rpki-client on console-fra.rpki-client.org