Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C930B24150111EE82F5072C4AD9E6FC.roa
File: 3C930B24150111EE82F5072C4AD9E6FC.roa (raw, json)
Hash identifier: s90bfATFJItblZZlpOtCYGLaJFwthUn2D4OnjduDYJI=
Subject key identifier: E5:F0:8C:26:85:78:2C:60:F6:0D:1E:61:98:1A:43:7E:7E:0F:74:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2E18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C930B24150111EE82F5072C4AD9E6FC.roa
Signing time: Tue 27 Jun 2023 15:42:35 +0000
ROA not before: Tue 27 Jun 2023 15:42:31 +0000
ROA not after: Sun 23 Jun 2024 15:42:31 +0000
asID: 201411
IP address blocks: 154.84.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11800 (0x2e18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 15:42:31 2023 GMT
Not After : Jun 23 15:42:31 2024 GMT
Subject: CN=649b036b-4bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:35:23:dd:2e:81:f7:77:7c:7f:68:4a:01:58:
1a:07:a7:7a:90:3b:39:fb:e1:0d:6a:c9:98:70:1d:
d9:2f:5f:b7:2b:ae:bb:54:cb:62:60:3f:00:49:16:
0c:bb:f0:d0:ce:98:36:1f:87:98:26:95:9d:08:bf:
26:56:cb:be:14:68:67:11:34:d5:a8:09:b9:ec:bf:
39:8e:01:de:01:96:cc:3f:a0:3f:5a:27:80:d5:b0:
49:38:7e:c1:b8:26:9f:56:78:4c:be:d3:8c:a6:fb:
09:a8:bd:8f:a0:68:a7:32:50:42:69:36:ff:c8:57:
31:36:94:fa:ba:ec:d4:93:35:1a:46:01:c8:8c:71:
4b:4e:92:78:7c:3d:66:8c:a9:82:9c:14:0a:4f:b5:
54:34:72:0e:44:ee:a8:b7:34:1a:fc:d8:43:20:c3:
db:ca:be:8c:08:c2:a5:19:d1:85:4d:ed:67:45:82:
40:6a:20:e1:af:c3:ef:2b:1a:0b:c0:d8:1e:26:8e:
52:49:c3:f4:71:b8:9a:a2:05:8c:52:bc:5b:11:30:
38:a7:56:82:df:27:9d:a6:0d:dc:82:cb:79:0e:3e:
b3:54:c4:cb:fe:87:d2:a8:c1:a0:e5:8e:e7:2f:0a:
23:70:a0:df:3f:68:cb:1f:27:43:b6:cf:68:3e:06:
ca:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F0:8C:26:85:78:2C:60:F6:0D:1E:61:98:1A:43:7E:7E:0F:74:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C930B24150111EE82F5072C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.159.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:89:af:c2:82:d2:ac:af:a2:ef:97:74:2c:cf:fd:5f:02:c4:
7f:1d:1c:b4:41:2e:eb:f0:90:b1:6b:26:c3:cb:7f:1c:fc:45:
35:3b:90:e5:cb:9f:da:f9:fd:fd:a0:97:e9:93:65:28:c5:91:
a4:ad:79:0f:c0:34:ab:ca:df:1d:93:78:b2:f1:d4:f4:95:56:
a8:20:d7:70:3a:5b:fe:af:57:f8:04:0d:01:04:5f:b1:d5:d2:
fc:7d:34:d9:27:b5:f1:8d:4c:93:ae:52:dc:29:53:7f:2a:82:
d1:ed:d3:c1:78:ae:93:36:5f:ad:56:e8:d1:31:93:d8:e7:ea:
57:ad:45:67:a3:92:1b:2d:03:50:cd:f9:f5:63:e4:33:01:29:
aa:65:cb:a0:b2:9b:90:a9:d0:d0:4a:9e:d5:ab:b6:fb:05:11:
1b:72:11:37:f4:1b:a5:a7:aa:42:0f:7f:6d:9b:35:46:66:d4:
b9:cc:cc:3b:e2:14:1f:f8:4b:fe:be:b8:de:ad:df:b4:09:ed:
08:71:f0:b3:a3:1c:58:09:b4:dc:67:23:11:d9:4c:ac:68:d8:
84:67:a7:f1:5b:56:0e:3f:a3:74:f7:8d:87:71:1b:af:df:71:
50:da:e9:16:a7:09:09:b1:eb:df:58:71:df:ef:51:57:92:62:
c0:2e:6c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:06 2024 by rpki-client on console-ams.rpki-client.org