Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B801C6482B411EEAB56761D4AD9E6FC.roa
File: 4B801C6482B411EEAB56761D4AD9E6FC.roa (raw, json)
Hash identifier: bsKW8Q4FlUKaDqscIwbnPjv2l1SiPI45QzWVf/NgZIg=
Subject key identifier: 6A:7F:C7:61:87:BA:7C:2D:B5:CE:7C:83:DA:75:66:36:8E:10:8C:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4F9C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B801C6482B411EEAB56761D4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:08:57 +0000
ROA not before: Tue 14 Nov 2023 06:08:53 +0000
ROA not after: Tue 12 Nov 2024 06:08:53 +0000
asID: 397630
IP address blocks: 154.202.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20380 (0x4f9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:08:53 2023 GMT
Not After : Nov 12 06:08:53 2024 GMT
Subject: CN=65530ef9-149c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:29:c3:a6:25:0c:1e:8d:78:8c:dc:50:73:16:
22:6a:da:43:dd:59:b7:65:6c:1d:84:df:48:bd:2e:
0a:b2:cb:54:04:5d:a7:53:a4:7b:73:e2:ea:41:df:
8c:4a:63:75:cb:1e:83:f3:09:87:1a:eb:b8:ae:ff:
32:f8:72:51:2c:6b:03:22:03:d7:f6:e4:16:4d:56:
f4:e7:25:86:da:10:3e:ed:4b:ae:0c:ec:3d:80:29:
8e:fb:16:1d:97:12:6b:b9:72:91:82:b2:9e:7a:d0:
ed:bf:8b:67:fc:9a:7f:27:66:8c:1b:35:17:d0:1b:
98:64:78:3a:50:dd:f5:f4:dd:f3:8d:f6:5a:45:99:
3b:47:2d:fe:06:39:f1:04:3f:cf:06:f2:10:0d:ca:
f7:82:3b:84:f5:4f:07:07:29:5c:d6:9e:17:d6:66:
f2:14:58:a3:49:19:91:61:b0:98:bf:5e:c4:03:3a:
c0:00:c0:fa:18:ee:07:59:be:ad:66:fa:bb:b0:f0:
c4:49:f8:f8:9b:cf:d1:52:ff:16:fd:a7:73:de:1d:
db:17:f6:44:ac:0f:1b:f8:65:e6:ca:4c:f8:66:0f:
71:48:91:04:5f:42:a4:86:33:37:cc:12:34:2d:6e:
ea:95:fb:62:ac:a9:3c:1c:7b:2b:d6:5b:70:c1:76:
87:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7F:C7:61:87:BA:7C:2D:B5:CE:7C:83:DA:75:66:36:8E:10:8C:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B801C6482B411EEAB56761D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.105.0/24
Signature Algorithm: sha256WithRSAEncryption
91:da:00:9d:98:65:0a:29:8c:99:1c:ba:b5:c0:a4:1d:3f:52:
86:75:38:de:e0:8a:a4:4b:2e:cd:4f:ed:c2:0d:70:7d:66:2b:
45:1f:e6:2b:61:0e:83:c6:20:3d:dd:5e:89:44:b5:34:37:41:
0a:b9:23:54:cc:38:1d:55:16:ec:0c:fd:42:7c:b9:ce:22:97:
60:0d:98:5d:8d:88:ad:e1:46:75:0e:8b:ff:15:48:1c:3b:25:
70:72:58:b7:78:9d:cc:19:69:fd:ea:09:55:14:31:2a:43:ae:
27:10:1e:a1:74:4f:99:c2:51:f2:8f:c9:1a:c2:d1:c0:ec:a1:
fe:db:57:ee:58:94:e4:6e:ce:8a:55:a1:6a:d4:af:33:ea:ec:
79:f3:db:bc:42:a7:35:d4:59:0a:89:29:73:b9:aa:a4:ea:59:
2c:b7:3a:07:04:62:cf:4d:4a:a7:70:93:7a:80:7b:80:d5:2e:
d4:ab:c0:63:b2:99:f7:7c:dc:ed:94:bb:25:c2:eb:55:7d:cd:
22:5b:2e:1c:07:c6:65:6e:80:a8:f8:61:45:e7:e1:d1:63:c6:
d2:fa:f4:40:1f:fb:05:85:e9:5d:fb:e4:ab:e3:0e:60:4f:18:
d7:44:76:2c:a8:6f:b3:44:7a:6b:17:60:f7:55:43:4d:84:dd:
3c:80:f3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:22 2024 by rpki-client on console-fra.rpki-client.org