Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD8A95CE75E11EE97BC0C7C775412E6.roa
File: 2CD8A95CE75E11EE97BC0C7C775412E6.roa (raw, json)
Hash identifier: LBsNc8Qfdy6LWMlUxorv/m+icvY9ZXnQWV9c6Rp5MYI=
Subject key identifier: 54:3B:96:B0:C3:51:13:C2:47:B3:DF:4A:81:13:D5:2F:FA:0F:E9:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A4EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD8A95CE75E11EE97BC0C7C775412E6.roa
Signing time: Thu 21 Mar 2024 08:36:56 +0000
ROA not before: Thu 21 Mar 2024 08:36:53 +0000
ROA not after: Tue 23 Apr 2024 08:36:53 +0000
asID: 44559
IP address blocks: 154.211.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42223 (0xa4ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 08:36:53 2024 GMT
Not After : Apr 23 08:36:53 2024 GMT
Subject: CN=65fbf1a8-39ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d0:21:e7:cf:a1:86:c9:20:4a:2d:ad:8c:e8:
e6:62:db:fe:4d:df:0c:cd:fd:0c:68:07:75:b1:21:
5c:47:7d:59:dc:85:38:63:4a:b0:12:7d:e2:4d:cf:
d4:93:0f:bb:8c:73:27:f8:08:0c:e4:fe:11:62:6b:
a4:43:5b:55:b8:e4:f4:ca:48:6d:c3:f2:06:b7:14:
80:81:31:29:69:b9:1b:cd:b2:7f:8e:ce:33:c2:6c:
ab:84:42:e2:f3:19:27:83:ff:0e:14:77:33:27:8b:
b7:ef:15:d6:0e:5e:9e:42:6f:ca:74:59:9b:3e:87:
29:ba:9e:be:44:0a:ba:d6:15:58:4c:2b:8c:77:70:
81:7d:9d:31:53:61:78:0c:b8:62:dc:97:ce:5a:b5:
40:63:5d:91:66:67:88:54:59:c3:2c:ad:6f:4e:dc:
b1:c0:97:f9:29:d3:25:6a:29:c6:50:eb:4a:ba:23:
85:12:b5:23:d7:e5:4b:c9:1d:49:78:70:77:de:3b:
f0:f3:72:47:ae:88:ff:cd:19:76:3a:28:47:71:c0:
0f:c8:a9:bb:50:4b:6e:3e:3d:63:a6:12:07:8b:84:
d6:86:56:34:89:67:bb:e9:49:8b:82:da:97:7f:f1:
ba:8a:2d:d4:7a:2f:10:71:38:eb:fe:40:5f:a6:e3:
f9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3B:96:B0:C3:51:13:C2:47:B3:DF:4A:81:13:D5:2F:FA:0F:E9:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD8A95CE75E11EE97BC0C7C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.33.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:7a:97:4c:8e:b6:5c:d2:b5:88:dc:0e:67:96:25:08:86:18:
bd:00:63:b6:0f:24:a3:08:1e:a1:89:4a:37:68:c9:8c:4f:03:
d7:c5:a5:a0:5b:b6:34:c8:b5:d9:da:6c:c1:6b:b6:45:0d:86:
a6:8e:9e:6d:98:f2:04:a5:93:82:6e:ea:1f:08:3d:62:bb:03:
07:c8:48:75:53:c2:dc:af:20:98:a2:21:a1:6a:7e:a0:e3:c9:
e9:97:90:61:be:09:d2:18:d7:0d:b0:2b:85:df:ed:af:e1:af:
18:89:73:37:c4:5e:65:92:1a:fa:b0:a9:0d:fd:bf:38:fc:89:
36:86:32:62:41:b3:d5:cb:1a:17:d2:65:6b:f3:96:d1:02:4f:
37:1c:65:55:e0:9b:7b:8b:1f:a3:75:2c:ce:ea:a3:67:1b:97:
21:1c:42:0b:42:77:4d:54:24:25:6f:3e:c1:4d:63:ff:ec:ab:
87:0d:6e:d4:d3:e7:85:3b:2d:4d:c7:3c:e8:03:be:06:b7:9f:
cb:0f:53:71:94:40:48:85:3b:fb:cb:51:70:d9:e9:ba:d2:05:
de:37:77:34:3b:75:36:2c:5b:42:e0:2f:dd:8b:b3:cc:42:37:
d7:c5:b1:3f:94:28:cf:01:fb:fe:a2:b2:b2:41:71:35:57:d9:
94:ef:a6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:16 2024 by rpki-client on console-ams.rpki-client.org