Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3530F9ACFB8611EDA05D767E4AD9E6FC.roa
File: 3530F9ACFB8611EDA05D767E4AD9E6FC.roa (raw, json)
Hash identifier: z+i0oslWNKQjp+Ld8N4fyJHKNXKI4VKHdJE1NMHKeg8=
Subject key identifier: 1E:D7:CE:36:0C:F8:95:B7:2F:A0:AB:E0:3F:55:29:EA:10:6F:5E:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 27EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3530F9ACFB8611EDA05D767E4AD9E6FC.roa
Signing time: Fri 26 May 2023 05:28:55 +0000
ROA not before: Fri 26 May 2023 05:28:52 +0000
ROA not after: Sun 30 Jun 2024 05:28:52 +0000
asID: 984
IP address blocks: 154.199.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10219 (0x27eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 26 05:28:52 2023 GMT
Not After : Jun 30 05:28:52 2024 GMT
Subject: CN=64704397-06fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b6:a4:74:80:b5:46:0d:2e:d3:52:af:17:93:
bb:f0:d9:dd:fb:60:81:cf:f6:e8:14:c1:31:f7:bd:
23:db:89:d4:ac:de:25:90:e0:ee:f6:99:71:9d:66:
80:e6:dd:da:e2:bd:bc:43:28:17:4d:a8:b9:f0:d0:
05:f6:5b:4f:21:72:47:bd:13:b3:ad:d7:31:5b:a8:
2a:39:0d:8a:be:d1:05:32:1d:27:c0:df:f6:85:f6:
4a:76:e1:5f:cd:47:3e:29:64:66:45:20:b4:68:89:
10:48:b6:49:36:09:75:ad:71:09:49:1a:8e:fd:be:
c9:06:cb:e4:19:fb:01:a1:c8:cc:30:22:1c:a0:dd:
73:63:25:c3:7c:ab:4c:bb:ff:b6:ca:f6:88:0b:b3:
31:12:07:64:48:31:20:c8:ed:29:d3:14:03:4c:93:
ca:c9:de:f4:0e:af:be:09:4b:8c:e0:6d:39:18:3a:
3d:59:95:0f:9f:be:e7:0f:ee:29:8b:6d:05:a4:22:
1b:86:86:23:29:5c:a3:80:68:b8:9b:3b:30:6c:99:
ec:1e:13:5b:07:50:bc:6b:44:68:c0:eb:c6:b7:1b:
e9:73:c5:97:15:3a:60:8a:da:44:50:42:ba:ce:e0:
59:bc:99:7e:03:b7:4a:46:ec:2f:9b:0d:a2:ba:58:
a4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D7:CE:36:0C:F8:95:B7:2F:A0:AB:E0:3F:55:29:EA:10:6F:5E:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3530F9ACFB8611EDA05D767E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4b:f3:3f:06:d4:d3:e2:ee:90:7f:79:e2:91:12:79:19:2a:90:
c1:25:53:b9:df:e5:5d:41:e5:9e:a6:51:07:47:e3:20:36:ac:
1c:0a:26:65:d3:1a:bd:17:12:7b:a5:96:9c:63:02:cc:12:16:
d3:77:21:78:84:e9:ae:eb:b8:78:08:5e:8b:30:77:17:46:96:
eb:1c:91:13:fc:9f:e7:b0:b3:1f:05:77:3d:5b:f6:1c:a5:26:
35:6e:bd:ee:da:92:a9:f0:03:f6:f7:6b:91:b7:24:b3:60:94:
d5:d6:c1:39:3c:51:ac:ed:4d:29:d2:ee:f2:51:26:ea:e3:67:
18:ce:e9:77:7d:04:97:2f:eb:9b:b3:25:00:6e:53:be:b4:23:
94:fb:ab:8f:9d:34:6e:74:14:f2:82:67:80:cc:45:0e:63:46:
bf:e8:91:ea:7e:48:d1:fc:54:36:a9:77:5a:82:76:f7:9e:69:
54:c4:9d:3e:0c:83:29:05:da:8a:26:41:2e:d4:57:ca:98:89:
26:f2:b5:d2:68:37:30:7c:86:be:07:9c:88:a1:a8:e6:37:15:
9c:82:74:21:08:c2:27:ca:21:81:40:ae:b2:85:a8:46:b5:93:
1f:9f:82:0b:b8:05:53:2d:48:7e:0e:c5:c4:35:b5:47:32:43:
4f:9d:01:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:20 2024 by rpki-client on console-fra.rpki-client.org