Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/46A47B02F70511EEA66AB488775412E6.roa
File: 46A47B02F70511EEA66AB488775412E6.roa (raw, json)
Hash identifier: 7fd/IICHyyBxaxvFfYcFje6zfORiYcmqCNUHwLapXpo=
Subject key identifier: 35:CF:E2:23:C2:A2:42:FB:8E:CC:A7:BC:D1:12:ED:B6:F9:5E:23:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAC6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/46A47B02F70511EEA66AB488775412E6.roa
Signing time: Wed 10 Apr 2024 06:40:53 +0000
ROA not before: Wed 10 Apr 2024 06:40:49 +0000
ROA not after: Sat 20 Apr 2024 06:40:49 +0000
asID: 139646
IP address blocks: 154.91.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 06:40:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43718 (0xaac6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:40:49 2024 GMT
Not After : Apr 20 06:40:49 2024 GMT
Subject: CN=66163475-5c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2e:bf:20:71:a3:44:b8:5d:be:e2:a8:0d:15:
fb:14:09:17:ea:a9:02:88:83:8f:92:74:97:24:dd:
dc:5b:fd:e6:17:11:31:d1:1e:90:fb:d6:1f:94:0f:
02:de:b6:a3:f4:8c:db:75:30:d8:01:18:1d:80:aa:
ca:08:bf:03:47:07:e0:bb:31:48:eb:b3:db:04:17:
f2:b8:03:62:88:82:21:47:de:d0:1e:bc:5f:34:63:
b9:5f:ee:08:e4:3a:5c:9a:36:81:10:91:71:7c:54:
78:c6:11:f8:c8:6d:49:6d:1b:3b:0c:d4:c7:46:8d:
53:b5:0d:a9:ee:f4:c8:73:6c:22:3e:40:04:90:e5:
84:d9:61:83:84:95:25:e9:9b:86:9d:3d:ba:6a:ff:
0a:0b:f8:90:97:5c:2a:f0:03:4c:85:5d:96:68:e3:
d3:15:fc:ef:29:7a:a8:42:02:8a:30:b9:0c:3a:e4:
07:70:2e:16:47:13:ea:cc:65:00:b3:dd:9d:2a:52:
65:b7:99:43:f5:ae:dd:16:c6:bf:53:14:e3:21:80:
35:8b:62:ca:90:8c:84:27:ec:08:81:b3:ea:80:5f:
2c:f4:84:5c:64:a6:24:b5:99:24:75:1f:a8:47:97:
16:f5:6d:ed:06:30:63:60:7f:50:4a:b1:96:be:d5:
e4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:CF:E2:23:C2:A2:42:FB:8E:CC:A7:BC:D1:12:ED:B6:F9:5E:23:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/46A47B02F70511EEA66AB488775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
83:4c:38:2e:d9:79:01:e4:85:9a:51:09:7e:6e:b8:30:1d:62:
7f:15:c7:c9:91:84:6b:55:7d:9c:cb:03:4e:93:59:8c:96:05:
aa:7c:08:ac:d6:f9:73:96:d7:05:6f:15:2d:a3:e0:01:f5:9f:
38:32:fe:12:18:fd:8d:d2:a4:b6:cf:83:3c:4c:00:a4:f1:7e:
89:aa:03:77:1c:42:e9:53:2a:ab:63:04:eb:92:1c:5b:5d:c6:
db:56:f0:67:aa:7f:be:bf:3a:cf:7e:20:54:95:9f:28:73:b6:
0a:c2:06:48:ff:69:7c:be:ac:c3:d4:24:b5:96:f2:77:5d:7e:
e8:87:3d:82:20:a3:6b:9f:da:c0:81:b2:5c:8f:87:1a:b8:42:
ab:0d:d1:a7:dc:55:55:44:5f:08:96:63:6a:5e:76:38:1e:02:
6b:a6:9d:f5:dc:d6:be:64:0e:af:8f:07:f7:d5:d9:25:40:fb:
fc:40:bf:2c:dd:29:b3:a7:c3:2b:ee:e1:ab:ce:12:78:47:ba:
5e:52:77:8c:f1:6a:71:9b:8a:fd:90:d3:56:49:da:6a:4e:3b:
f2:f6:8d:5c:54:90:c4:76:76:36:d9:99:d4:b4:26:27:92:51:
13:1d:15:93:41:ee:0d:0f:1e:10:8e:8d:2d:7d:af:97:54:9f:
55:0d:96:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:39:01 2024 by rpki-client on console-ams.rpki-client.org