Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DA39B34F49111EEA581FE54775412E6.roa
File: 4DA39B34F49111EEA581FE54775412E6.roa (raw, json)
Hash identifier: FCC/xI29t2jfgKKsqDYdV45imtFJDau3nXXg95iJoIc=
Subject key identifier: 23:BF:20:55:5E:F5:29:B0:18:5B:DC:2E:4B:19:26:5A:03:FF:21:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DA39B34F49111EEA581FE54775412E6.roa
Signing time: Sun 07 Apr 2024 03:45:40 +0000
ROA not before: Sun 07 Apr 2024 03:45:37 +0000
ROA not after: Mon 13 May 2024 03:45:37 +0000
asID: 138915
IP address blocks: 154.206.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43450 (0xa9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 03:45:37 2024 GMT
Not After : May 13 03:45:37 2024 GMT
Subject: CN=661216e4-a822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fe:74:ce:e1:d9:fc:86:8b:b4:14:bb:7f:9b:
95:f5:97:aa:5c:15:a6:5d:4e:cc:84:7f:14:98:7d:
a6:03:ae:9c:36:68:4e:63:76:2a:9f:0d:6b:b7:99:
ce:c7:93:08:41:93:7c:b2:ac:18:9f:e0:27:8c:83:
e8:42:ef:b6:8e:b6:d1:9e:72:52:f5:a4:ad:a9:00:
31:71:42:a5:12:dd:e5:63:65:5a:b6:bb:80:15:8f:
0a:ae:4d:2f:8c:55:d5:9e:7f:dc:56:10:99:ff:da:
17:45:6b:8c:9f:fd:24:57:63:1e:ef:ce:2c:20:9d:
36:99:96:4f:2f:f3:e5:37:b4:8e:3e:7b:c2:8c:35:
2c:f2:bd:4b:9d:55:e4:7c:14:00:76:f1:ba:8a:da:
2a:92:ca:c7:5e:b5:e6:17:2a:b1:5a:ec:fb:c8:46:
6d:55:9b:4d:c0:f4:86:d9:e2:49:cf:47:e5:63:1b:
a2:79:08:83:74:41:b3:fb:5c:d8:7a:81:81:ad:4e:
48:87:ee:d6:79:01:fc:ee:7e:97:f5:d2:c2:96:c8:
e5:82:fb:12:d3:ee:51:07:1c:81:70:76:ba:31:65:
15:ef:be:90:92:48:1b:b7:14:74:d7:15:74:31:a1:
49:61:86:f0:ef:30:a2:35:8b:bb:43:15:30:3a:d0:
40:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BF:20:55:5E:F5:29:B0:18:5B:DC:2E:4B:19:26:5A:03:FF:21:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DA39B34F49111EEA581FE54775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ed:09:ad:d1:da:a5:38:72:c2:9c:03:0e:b6:4c:e2:05:45:
97:91:3e:69:c4:d6:81:4f:34:04:d9:35:b1:d7:e8:ae:3e:80:
f1:ac:36:43:f6:b2:a2:cd:fd:b7:49:17:45:cd:9d:01:bd:69:
42:5c:99:7b:ea:6c:21:f6:67:d8:ed:c7:2b:95:93:32:41:60:
ea:24:c5:ad:71:b9:76:0f:51:3b:eb:6c:8c:c2:74:db:c0:db:
15:7b:2b:fc:83:11:58:ee:25:b4:86:62:f4:11:70:c1:49:7a:
42:af:2b:7b:0e:51:76:04:e6:be:a8:29:9d:77:3e:ff:6f:3a:
72:c1:78:01:b8:d7:1b:0c:b6:6d:03:41:80:59:11:84:d1:35:
ce:e2:0b:bb:a8:b3:2e:33:b6:cf:e8:21:08:3b:30:83:12:6f:
cd:98:63:f8:f2:e8:18:b8:0b:b6:1a:88:d4:0b:8d:f4:43:f4:
c3:ee:44:f5:f9:0c:e7:99:6d:a0:2b:d2:6c:0c:7e:f2:76:ff:
35:62:51:9b:a6:ad:27:9b:5d:64:6c:d8:2a:4c:7a:e0:c4:41:
a5:e0:87:56:8e:87:24:3f:38:15:4c:0a:75:1b:f5:02:08:a7:
24:76:92:24:a4:1f:b3:43:1c:7e:4b:6b:df:c5:8b:d4:1a:4f:
85:8d:46:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:08 2024 by rpki-client on console-ams.rpki-client.org