Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F48173C82C011EE859A1F434AD9E6FC.roa
File: 4F48173C82C011EE859A1F434AD9E6FC.roa (raw, json)
Hash identifier: IPuV4jzyetnANEAeiIVkk2H1dn5ZOpXMq3VQpZ6aIKs=
Subject key identifier: 46:8A:56:1F:69:EA:9F:56:17:53:E0:7D:86:DD:16:26:AB:22:DB:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5018
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F48173C82C011EE859A1F434AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:34:57 +0000
ROA not before: Tue 14 Nov 2023 07:34:54 +0000
ROA not after: Tue 12 Nov 2024 07:34:54 +0000
asID: 397630
IP address blocks: 154.83.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20504 (0x5018)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 07:34:54 2023 GMT
Not After : Nov 12 07:34:54 2024 GMT
Subject: CN=65532321-cfaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:00:18:fa:7a:e4:09:51:05:1d:3f:d8:62:
dd:ca:9c:e8:9e:8f:f9:5c:3f:35:f1:f5:56:70:1d:
c3:a8:12:12:2c:6e:86:d3:57:86:6f:89:62:44:7c:
45:00:f1:01:4b:93:3f:6d:5a:ae:d1:00:b3:9d:0d:
ee:67:c6:22:0c:51:44:0f:83:a5:b4:cd:a4:89:84:
e2:e3:8e:a6:5e:1c:0b:0c:dd:f1:29:33:23:27:94:
b8:57:94:b8:63:7b:b7:ab:e8:5a:7a:bf:07:96:69:
97:c0:cd:51:52:d8:af:21:77:86:f9:c6:84:a9:8f:
cb:ba:60:eb:f8:db:ba:fe:5f:3f:eb:b4:59:70:5d:
04:ca:38:b2:14:5e:77:ec:d9:16:f0:6c:e2:c8:59:
f5:c6:f6:11:f2:7a:bf:fb:83:5d:65:27:3a:3e:7c:
86:9a:e7:27:9a:75:87:3d:05:d9:3a:6a:76:f5:5a:
53:65:b9:c5:98:c9:bf:3b:ed:5b:23:5c:8c:5b:e4:
b1:31:4a:a1:66:08:bb:2e:97:51:a1:27:d4:59:37:
8e:b2:1a:13:e5:b6:76:2b:c6:2e:a0:41:f9:85:93:
f0:8b:8b:c7:78:d9:eb:34:a7:63:4f:cb:1c:bd:56:
29:76:6b:8f:ea:02:ef:7d:8d:55:b3:43:1c:0a:1a:
57:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8A:56:1F:69:EA:9F:56:17:53:E0:7D:86:DD:16:26:AB:22:DB:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F48173C82C011EE859A1F434AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.43.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:ad:08:cb:e1:f3:f5:0f:95:39:38:28:42:dd:4f:bf:e1:84:
d4:f7:47:65:04:ff:1d:fe:16:96:38:83:ae:97:a0:1e:0b:4f:
ca:49:18:a3:a8:7e:ad:f6:6c:55:f9:9c:93:e2:2c:5b:97:e9:
35:c6:6a:68:c2:b3:68:73:7a:b2:58:b2:78:86:3f:12:db:81:
10:9b:27:7a:13:00:05:28:60:b7:33:1c:12:ca:eb:b3:8d:8a:
b9:fd:d6:b2:9a:6b:70:3d:87:bd:98:62:ea:c6:94:e6:4c:e2:
d5:3a:ff:14:18:c5:d2:e7:9e:2e:bf:d2:08:5f:8f:82:d5:39:
6d:49:78:46:57:4b:d7:4c:94:50:d1:74:ea:5e:ba:40:83:14:
66:98:cf:d7:28:21:62:2c:0e:f3:3f:a0:67:f6:ef:a5:ef:3c:
ee:be:ba:ad:08:3a:49:58:ce:26:7e:c4:46:12:40:8e:10:1e:
fa:18:06:2d:07:db:bb:51:33:0b:56:e3:38:aa:ec:2b:27:12:
fc:a9:e4:33:6a:3b:a1:6e:bd:38:5c:01:1e:cd:93:b0:6e:c6:
4a:8d:2f:8a:e7:41:25:ce:6e:12:4d:cc:c2:6b:8c:d7:d2:42:
78:cd:77:eb:63:8b:2c:0b:6c:ac:cd:a6:54:41:92:2c:d5:d0:
7a:88:2d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:23 2024 by rpki-client on console-fra.rpki-client.org