Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CBD77BC53A311EEA85FBC6A4AD9E6FC.roa
File: 2CBD77BC53A311EEA85FBC6A4AD9E6FC.roa (raw, json)
Hash identifier: Hg/LmdnUX3f3CABxERMKngMgDdhMHgfg7sOh4+ZWcJE=
Subject key identifier: 91:75:33:42:3A:B7:B8:2F:7D:97:27:04:52:AA:F5:99:C1:DD:B3:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3DA9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CBD77BC53A311EEA85FBC6A4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:37:59 +0000
ROA not before: Fri 15 Sep 2023 08:37:56 +0000
ROA not after: Sat 08 Jun 2024 08:37:56 +0000
asID: 136970
IP address blocks: 154.209.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15785 (0x3da9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:37:56 2023 GMT
Not After : Jun 8 08:37:56 2024 GMT
Subject: CN=650417e7-7439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3c:14:15:a8:8b:d0:31:4f:3f:31:2b:10:31:
f3:49:48:27:3d:f9:42:95:51:39:50:b0:a4:be:4a:
b9:dd:3b:41:ce:9c:74:b1:10:95:e2:bb:f1:89:6d:
9e:11:a4:f8:cb:69:e2:a5:c6:8e:c1:74:10:fc:2e:
93:98:54:0d:00:c7:1d:68:a8:32:3e:1f:ec:8d:98:
2b:65:0a:41:64:0f:f5:cc:d2:7c:bd:8e:fa:99:ad:
f7:df:c1:ba:64:7e:52:d6:2d:7e:df:ac:ae:c6:fe:
ee:69:e4:b0:ba:ee:aa:e1:99:8a:ce:f6:eb:54:d9:
9d:ff:71:66:36:91:b2:8c:ba:a9:59:21:c5:39:f7:
52:5b:25:69:05:43:10:e9:e0:b1:74:91:f1:34:d7:
a5:a4:07:fe:f7:88:cd:e6:9c:02:28:d1:09:b8:0a:
66:44:a2:94:fa:e6:0b:62:d0:f8:ee:12:e5:c1:4a:
fb:2c:93:96:ed:9b:e2:b8:13:cc:4f:64:75:7f:5d:
72:45:64:af:6c:a3:8a:76:91:19:e6:6a:ff:45:d3:
6a:3d:26:79:c0:64:cf:05:3b:c5:da:5d:9a:1a:9f:
c8:6d:9d:a4:06:c7:03:88:ad:13:18:34:00:24:e8:
b4:86:9d:4f:d4:6f:0c:f6:18:5c:30:d7:80:8d:1d:
a4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:75:33:42:3A:B7:B8:2F:7D:97:27:04:52:AA:F5:99:C1:DD:B3:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CBD77BC53A311EEA85FBC6A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.6.0/24
Signature Algorithm: sha256WithRSAEncryption
06:04:55:9e:b1:d1:b0:c8:d8:05:b6:99:f6:26:d1:17:54:1f:
8a:d0:21:a9:5e:7f:2f:a7:76:37:94:e4:5e:ed:eb:a0:43:98:
3d:82:d8:2c:8a:54:ac:79:a8:b9:cf:28:67:50:37:66:4c:34:
81:91:8f:88:e0:36:c6:64:4f:4a:84:1d:ce:22:7a:c1:ba:59:
f7:5e:c0:09:b8:57:c5:e1:09:56:41:cd:ec:65:de:0f:c4:6e:
ff:8f:fd:d4:06:0f:2b:37:df:a6:83:c0:4d:8c:77:08:fe:55:
ed:7a:cd:81:17:12:5d:3f:d1:21:ba:45:91:a7:44:03:36:08:
e3:02:54:de:72:1f:73:2f:78:b4:0e:97:da:0d:c7:cc:d8:22:
96:51:39:78:64:66:c7:86:f7:64:b4:2d:fb:88:af:29:5e:fd:
95:35:35:ca:4e:5f:e5:16:73:15:80:88:57:3f:63:5c:d2:67:
81:98:12:52:d0:86:99:64:5e:5b:40:bc:4c:3d:8a:ff:80:07:
28:f2:fc:91:2b:bc:8b:09:e9:4b:47:2a:7c:03:64:8d:48:05:
f7:1f:bd:59:94:6f:c1:75:51:ff:f9:c2:2d:88:b7:42:2e:7a:
49:77:27:42:65:56:6b:2c:36:7d:4f:58:3a:db:0d:c5:07:e8:
9c:93:20:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:19 2024 by rpki-client on console-fra.rpki-client.org