Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B600B98014B11EF91074E6D017001B1.roa
File: 4B600B98014B11EF91074E6D017001B1.roa (raw, json)
Hash identifier: SWk37O66uoswbAvA5Z0cQ8XGiXrghG9HiU4dRULtPHw=
Subject key identifier: 0B:94:2D:98:0F:51:0B:9F:E9:9C:5E:A8:48:51:2B:9B:A9:D3:E3:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B600B98014B11EF91074E6D017001B1.roa
Signing time: Tue 23 Apr 2024 08:27:17 +0000
ROA not before: Tue 23 Apr 2024 08:27:13 +0000
ROA not after: Sat 11 May 2024 08:27:13 +0000
asID: 9009
IP address blocks: 154.95.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44803 (0xaf03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:27:13 2024 GMT
Not After : May 11 08:27:13 2024 GMT
Subject: CN=662770e5-94e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2b:df:95:27:03:67:b6:b0:d4:29:91:0c:47:
12:59:b2:49:e2:5c:d0:8b:1c:b3:08:b6:d7:41:da:
24:8f:40:ca:6c:26:d8:b1:43:c5:a3:e3:41:70:1b:
5b:ee:98:c7:ca:b1:12:1e:69:7b:93:de:c5:30:30:
30:a1:ff:d2:db:f4:28:9d:29:f6:c2:b5:5d:67:75:
ea:17:24:61:f9:79:f9:ea:d1:4f:c6:71:f6:16:33:
7b:b3:09:28:7a:7c:dc:33:39:6b:b5:fd:1d:38:84:
9b:81:62:a2:04:ff:3a:b9:53:13:7e:48:73:8f:87:
af:9d:0b:c2:00:15:42:a4:03:41:a3:7e:e6:cf:27:
51:1f:52:30:03:2d:85:1f:f1:0b:a6:e6:66:7d:fb:
b0:bf:2d:ca:72:70:e6:27:e6:b5:e4:9c:60:e2:ad:
05:db:e7:af:91:26:13:37:fb:47:75:a0:b1:8c:66:
ee:ff:d3:79:4e:27:92:74:a4:7c:2b:15:f5:dc:c6:
c0:1b:dc:6e:7a:9b:61:8b:ce:95:d7:a6:c8:90:73:
c0:f4:c2:52:0e:d9:86:4e:d1:de:fe:cb:ae:f7:e3:
ad:56:d9:f9:fc:85:b4:41:51:89:d7:5c:dc:bd:8a:
5b:a6:58:4a:30:cc:7d:b3:50:72:c8:dd:ae:48:1c:
93:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:94:2D:98:0F:51:0B:9F:E9:9C:5E:A8:48:51:2B:9B:A9:D3:E3:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B600B98014B11EF91074E6D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.0.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:d3:e1:84:5a:8a:17:cd:09:2a:f9:73:26:9c:47:a2:01:ea:
74:85:b5:c5:72:96:6a:38:72:dd:0a:c3:a9:c9:00:35:80:ea:
b4:a5:cf:da:5b:6d:2a:f8:fb:09:48:6f:d3:fb:53:08:e5:47:
ef:10:94:dd:ad:12:e3:ed:01:48:87:b6:78:80:59:2e:b3:14:
12:8a:64:76:10:b1:32:b8:1d:f0:13:04:d1:df:87:91:24:de:
2e:33:1b:74:8c:eb:55:38:ee:4e:86:1a:ce:84:5f:65:bd:08:
6d:b5:34:29:c7:bd:03:0c:e5:d2:87:2a:63:4c:fd:d0:b9:2d:
92:48:3a:00:dd:67:4f:d8:29:34:8d:55:1e:6a:90:03:9f:61:
20:40:e0:11:f0:7b:56:b1:13:49:8a:6b:de:83:90:f7:cd:94:
da:18:f0:69:3f:a0:ad:57:68:f1:86:0b:f5:0b:9c:0a:91:9b:
10:78:f9:d5:14:83:b2:8a:9c:b1:50:e3:dc:1b:12:45:29:20:
21:ad:c1:11:8c:ba:37:2d:2b:cc:0c:6a:a8:00:e4:c0:88:08:
38:5b:1c:76:6d:e2:55:13:ce:6c:bb:a6:32:4c:5e:f3:38:55:
cc:30:35:05:05:58:3a:0b:91:51:13:da:b8:25:d1:92:5d:f7:
33:2a:a5:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:31 2024 by rpki-client on console-ams.rpki-client.org