Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37F4905CEDB311EEA01EC08C775412E6.roa
File: 37F4905CEDB311EEA01EC08C775412E6.roa (raw, json)
Hash identifier: Yaf4lWauyRu219lQzZyOafRjYUd5exkE5fM8gsZCSo4=
Subject key identifier: 22:BD:56:92:C1:D1:9E:01:4C:62:A7:34:C4:20:00:06:8C:4A:77:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A70B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37F4905CEDB311EEA01EC08C775412E6.roa
Signing time: Fri 29 Mar 2024 10:00:49 +0000
ROA not before: Fri 29 Mar 2024 10:00:46 +0000
ROA not after: Fri 26 Apr 2024 10:00:46 +0000
asID: 62240
IP address blocks: 154.196.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42763 (0xa70b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:00:46 2024 GMT
Not After : Apr 26 10:00:46 2024 GMT
Subject: CN=66069151-89ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:93:7d:6e:74:2a:51:fc:38:1b:c5:cc:97:
8e:40:26:74:8d:fd:a9:f3:d2:b8:66:c2:c2:e8:d6:
91:7e:a3:49:24:13:91:12:75:11:41:c9:55:72:06:
f9:ab:ad:35:52:61:92:c0:c3:2a:a6:36:54:47:0e:
38:7b:4f:42:75:eb:d8:6a:3c:fe:fb:2d:45:28:87:
af:69:ef:93:07:c0:f0:1b:f3:4e:00:01:2c:72:37:
2f:5e:46:fd:b4:ce:a1:be:8c:5b:18:d2:d8:41:e3:
84:ce:cc:bb:be:a7:eb:f4:7e:63:11:b2:50:ca:b8:
b0:92:36:60:58:6c:37:10:2d:31:9c:80:06:e3:fc:
4e:0f:ba:72:bd:a6:b7:ce:4d:0e:0b:8a:ec:b7:d8:
77:1d:b5:c3:41:c8:c4:70:90:9b:4c:b0:da:7d:bd:
40:58:f7:b0:f7:17:30:94:27:12:17:af:c8:fa:ea:
e5:f1:f7:bc:2c:fd:8a:64:ea:2a:11:5e:dc:ad:5d:
70:b1:97:bd:bb:15:b5:6c:8b:23:e0:81:a8:16:dc:
c1:64:6d:c5:24:aa:19:49:14:1a:6b:14:3e:94:1f:
0c:1e:bd:c9:84:a0:58:02:a4:27:48:ab:5c:3d:52:
45:b3:78:7c:2e:1b:b9:a7:41:d9:9c:75:64:a3:9e:
08:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BD:56:92:C1:D1:9E:01:4C:62:A7:34:C4:20:00:06:8C:4A:77:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37F4905CEDB311EEA01EC08C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.88.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:0e:31:6d:05:83:c1:2a:02:80:45:a5:aa:05:38:2f:01:60:
ec:89:d4:48:3c:1c:71:f8:7f:59:e4:b9:eb:04:dd:a0:01:1d:
14:00:65:e9:c2:1d:68:b9:ef:fc:2e:34:76:47:80:21:8a:e6:
c3:0d:c2:87:d1:75:d0:cd:3b:7d:0e:d7:4d:84:f7:f0:27:f3:
0d:d4:78:ef:83:db:c2:db:e6:44:64:55:ae:c8:76:0c:39:c3:
96:3a:81:b9:f2:77:60:fe:95:73:25:3d:7e:3b:0b:9c:67:02:
72:7d:e4:e5:ee:e9:89:ac:f8:d2:37:14:78:07:fc:66:aa:ab:
27:f3:62:e2:5b:e4:17:01:a0:e5:1d:c8:38:9e:fd:5a:13:ec:
8f:ba:cc:75:d9:80:10:ed:27:ea:e3:cf:07:81:3e:a1:40:70:
1a:4e:fc:2b:0c:ef:3c:71:76:a3:0c:52:53:b8:d4:db:1e:7d:
1e:49:fa:fb:a7:32:47:29:98:96:dd:63:77:8b:f0:06:e9:03:
ed:d4:e2:8a:09:9a:60:04:49:96:1d:91:28:2a:cb:44:8a:2d:
1d:68:76:69:f9:09:b2:f9:a3:fb:bf:94:20:da:01:d7:6d:88:
93:b1:28:2e:d7:de:da:df:95:1e:a1:36:f7:7a:ef:9c:5c:2f:
5c:bd:15:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:29 2024 by rpki-client on console-fra.rpki-client.org