Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A5C9E2AECAB11EEBEB34180775412E6.roa
File: 2A5C9E2AECAB11EEBEB34180775412E6.roa (raw, json)
Hash identifier: EyL5StionL25i1G7mTsAI0awGh1ZUkGGgl73EktNIDc=
Subject key identifier: 90:2F:41:21:DC:2F:02:39:36:63:AC:1C:D4:3C:86:1F:2E:47:3E:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A5C9E2AECAB11EEBEB34180775412E6.roa
Signing time: Thu 28 Mar 2024 02:30:39 +0000
ROA not before: Thu 28 Mar 2024 02:30:35 +0000
ROA not after: Sat 22 Feb 2025 02:30:35 +0000
asID: 45669
IP address blocks: 154.198.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42708 (0xa6d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 02:30:35 2024 GMT
Not After : Feb 22 02:30:35 2025 GMT
Subject: CN=6604d64f-1ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5d:7b:b7:5a:e2:10:b5:fe:79:0a:1a:27:62:
d9:f2:ba:bb:a7:a6:47:9c:f0:4d:d5:26:3f:7a:5a:
bc:8e:ea:83:6d:16:0a:cd:70:50:76:b6:92:bf:eb:
25:2a:36:11:8b:92:e3:c3:3a:a4:29:ab:e1:e2:06:
40:18:8e:b4:41:1e:0b:24:78:2d:71:f5:68:e1:a0:
03:c3:27:92:07:ec:3a:31:af:88:86:e3:55:60:41:
ba:03:14:60:95:0f:00:ed:21:73:fa:d8:c0:83:7c:
00:b7:89:c5:0c:b3:d9:c8:bc:fa:19:2b:eb:aa:32:
80:6f:db:b5:e4:b3:6c:1c:e7:65:54:98:50:ce:79:
ef:b4:3c:ed:d7:63:56:2c:c0:00:f7:6c:c9:a7:01:
80:70:d0:ab:af:15:6d:c4:58:1d:64:e1:53:80:d8:
93:b9:52:51:73:54:3a:71:ff:ef:be:33:5a:16:30:
d2:75:85:b0:3c:3e:8f:19:a7:cf:05:1f:da:0c:72:
09:d6:78:e8:d2:92:df:68:db:a7:d1:19:0c:b6:c8:
87:1b:4e:7d:3d:d2:51:bd:d3:34:ac:7a:81:25:b5:
d6:3b:7b:68:2b:8a:f0:01:ea:2d:5b:7e:5e:7b:a7:
c1:04:b8:9f:66:57:04:08:07:50:ab:25:38:56:92:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2F:41:21:DC:2F:02:39:36:63:AC:1C:D4:3C:86:1F:2E:47:3E:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A5C9E2AECAB11EEBEB34180775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a2:2d:5f:71:62:7f:69:0f:e6:c6:98:d8:6d:4a:47:30:ac:f1:
b1:e9:f0:6c:4b:f5:ba:3a:c4:89:0c:7c:33:ac:8a:90:7a:7d:
0c:4d:9c:f3:91:bb:ab:5d:d6:cf:43:6c:b4:76:ab:e7:b1:9a:
8a:67:10:7a:22:90:32:96:f4:07:18:72:90:d9:35:00:d5:b5:
8e:53:64:de:54:8b:31:77:e6:77:ce:3a:af:ff:e8:43:b0:34:
89:c6:7e:a5:0a:a6:42:b4:94:c4:7b:71:95:4c:e2:f9:e4:68:
46:c1:f6:33:a6:6d:16:21:97:96:19:4d:95:32:44:68:96:d7:
1a:90:8e:49:c1:98:5a:ee:8c:0a:3c:da:41:9d:d5:1f:d7:60:
9d:3c:bf:54:2f:46:fe:3a:3f:2f:3b:f5:6c:55:6b:0e:9d:00:
f5:66:af:33:51:68:9c:e9:1d:3d:77:ec:00:ae:13:b5:09:fe:
66:06:ca:75:82:e4:27:fd:02:a7:3a:2c:09:a9:25:60:6d:7e:
33:96:e6:07:30:5b:68:35:c6:c6:26:db:3f:72:98:49:4f:b1:
7b:b4:7a:58:58:d0:6b:52:c5:07:43:81:52:07:e9:0b:4a:96:
ac:84:c8:54:70:35:f3:6e:af:e1:08:15:c5:48:05:f1:23:11:
64:01:42:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:25 2024 by rpki-client on console-fra.rpki-client.org