Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38E7794CB34411EEA9828069775412E6.roa
File: 38E7794CB34411EEA9828069775412E6.roa (raw, json)
Hash identifier: z3o0qHicokRMUl0g+DG8TuemlO9KSCqTrbTW5C8mUSs=
Subject key identifier: 9E:39:24:2E:AE:D2:96:39:5A:7A:D4:B1:FD:D5:08:1B:0E:6F:44:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7522
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38E7794CB34411EEA9828069775412E6.roa
Signing time: Mon 15 Jan 2024 01:20:09 +0000
ROA not before: Mon 15 Jan 2024 01:20:06 +0000
ROA not after: Fri 13 Dec 2024 01:20:06 +0000
asID: 8796
IP address blocks: 154.205.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29986 (0x7522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:20:06 2024 GMT
Not After : Dec 13 01:20:06 2024 GMT
Subject: CN=65a48849-27f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:b4:16:47:1b:30:a8:38:e7:4f:1e:4e:bc:
5a:01:6d:d3:b5:67:0b:a7:75:7f:ea:ce:07:87:05:
a6:e4:9a:8a:38:c8:20:00:ff:fc:38:3d:f9:42:b9:
2b:12:2d:96:8e:3d:a1:09:8e:f4:df:be:30:8f:8b:
c2:24:a8:a3:5d:58:6d:dc:00:ac:8e:2d:8e:94:f5:
6c:81:5d:cf:18:df:9e:e6:51:0f:f0:65:c6:d7:95:
fe:2f:07:a1:ef:a3:f3:05:3c:17:3b:8f:ea:8e:33:
7b:3e:9c:1d:f7:51:d9:ae:bd:9a:aa:64:28:56:cd:
1b:f9:d8:b8:0e:01:fc:3c:7a:7b:45:59:15:72:22:
6f:ac:19:f9:28:8a:af:32:4b:50:73:e7:fe:33:3c:
bb:da:ab:6c:ca:1d:b1:04:00:28:3f:5c:48:77:23:
3c:f3:63:09:24:1d:77:0f:0b:73:5b:43:be:1a:8a:
ca:ca:ef:8e:c8:9d:26:5a:f1:e0:90:8d:d5:d3:33:
ff:19:e0:20:48:97:0f:77:d9:a8:4d:8a:30:d0:b9:
30:06:12:72:cc:c7:a0:df:81:c8:13:2e:54:23:63:
3d:ae:8c:d5:04:df:11:e7:a4:41:c6:7a:4f:af:5e:
fb:8a:22:d2:f2:44:de:a6:bf:e6:13:87:5c:d9:aa:
89:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:39:24:2E:AE:D2:96:39:5A:7A:D4:B1:FD:D5:08:1B:0E:6F:44:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38E7794CB34411EEA9828069775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.220.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d4:1f:ba:e4:a9:39:8e:fc:c1:4e:69:bb:07:30:1b:3c:67:
c2:54:06:27:7f:93:0c:b9:28:94:a9:56:9c:c0:ff:55:ed:59:
09:82:fb:ea:af:c8:42:41:ee:96:c9:18:4a:8a:da:b3:ed:9e:
ac:a8:d4:8a:58:9b:92:5b:1e:9f:f5:3d:a1:d6:3d:76:78:e5:
83:0e:03:ef:c4:37:d7:f8:05:ab:5c:73:08:0c:a7:70:74:32:
8a:95:23:4f:c8:7f:32:3b:2e:57:b0:58:21:21:65:e6:40:94:
6f:e9:d4:8e:c4:bf:f3:1b:5d:bd:5f:c4:7d:93:22:8e:5b:19:
5d:ba:0d:63:bd:38:c0:72:5c:f5:8b:6f:96:49:e1:78:60:94:
96:27:55:52:b1:2a:a8:f7:33:2a:79:90:60:7a:56:b2:73:b6:
43:a7:c8:82:ae:15:15:62:d3:87:de:21:b2:5f:ef:33:11:cb:
3f:01:1a:dc:30:85:ab:05:3a:0b:4c:01:d1:cc:1e:84:87:ad:
c7:f9:d7:55:a2:fc:0b:62:93:ea:44:bb:c1:5c:83:bf:53:e0:
7d:5a:72:2f:5d:64:19:2d:d7:f1:23:8d:4d:c7:f0:a7:ce:ad:
ac:83:76:14:bb:01:e8:eb:09:db:37:0d:51:53:60:07:f8:9d:
c2:70:88:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:20 2024 by rpki-client on console-fra.rpki-client.org