Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50E68310EDBB11EEB667694E775412E6.roa
File: 50E68310EDBB11EEB667694E775412E6.roa (raw, json)
Hash identifier: ZMsnGIj5o73fajuTNwclomyPvdV76t90RsbTonJkGZo=
Subject key identifier: F1:2F:27:F2:61:62:19:EB:45:9C:C8:B8:A5:A2:CC:51:25:E0:BF:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A74F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50E68310EDBB11EEB667694E775412E6.roa
Signing time: Fri 29 Mar 2024 10:58:47 +0000
ROA not before: Fri 29 Mar 2024 10:58:43 +0000
ROA not after: Sat 04 May 2024 10:58:43 +0000
asID: 142062
IP address blocks: 154.86.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 10:58:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42831 (0xa74f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 10:58:43 2024 GMT
Not After : May 4 10:58:43 2024 GMT
Subject: CN=66069ee7-c918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2e:8d:0f:f6:98:95:5f:11:90:8d:b5:09:d5:
04:1f:14:b0:ce:52:0e:33:2d:ae:57:b5:21:0e:73:
9e:c5:17:65:26:c5:e4:42:97:09:15:97:da:18:e3:
bc:24:d9:5d:4b:3f:8c:11:b2:36:3d:8b:9a:77:77:
4b:1a:78:a0:30:4f:65:2d:d7:22:8c:8f:f5:76:fd:
80:c5:d8:25:42:f2:97:a3:f2:28:76:6d:6c:22:2b:
2e:84:13:94:5a:6e:0d:6c:cd:33:1b:f2:c4:9f:25:
80:09:d9:2d:16:6c:30:f4:69:29:08:62:3c:5f:d0:
24:e2:5a:d5:5a:43:c6:c5:b9:55:78:46:b9:ae:89:
cd:13:37:9f:20:7d:4c:47:98:14:72:c8:94:a4:cf:
f3:4f:29:82:e1:9b:35:03:29:57:51:08:b9:64:b4:
17:75:93:c0:e4:7e:3d:78:76:be:7d:9b:c8:76:8c:
ab:4a:25:e6:2d:bb:3a:18:83:9b:2d:95:11:3c:de:
a2:10:f5:10:f4:56:18:13:73:a1:1a:9e:20:28:29:
d2:41:28:a6:7b:e0:8b:2b:e6:87:8c:bb:12:35:2e:
b3:d2:ba:9e:fd:19:43:89:c7:e1:5a:52:a3:7f:dd:
63:c7:fe:e0:81:60:6c:e1:b0:e1:1e:ed:60:4e:4d:
f3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2F:27:F2:61:62:19:EB:45:9C:C8:B8:A5:A2:CC:51:25:E0:BF:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/50E68310EDBB11EEB667694E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.68.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:af:51:e4:e0:4f:07:83:e6:f8:2c:b9:db:b8:87:ca:fb:27:
de:f6:29:78:0a:18:db:aa:d0:f5:64:1e:07:d4:ff:ff:8f:f9:
b9:96:42:00:df:6c:a3:ea:b4:69:91:28:c0:1f:92:39:ec:4c:
d0:78:7f:05:88:dc:fb:f5:61:73:41:a1:ba:cb:ee:42:ef:7f:
5d:be:23:39:2b:ba:45:89:57:45:c9:8b:43:43:90:cb:f8:3a:
41:c5:ea:dc:aa:17:1f:30:e7:84:7b:ec:5d:18:f4:c4:b6:7c:
97:00:e5:32:50:d9:47:8a:ac:a4:1c:27:93:05:28:cb:55:50:
ce:d6:64:cb:17:10:4c:68:3a:05:fd:43:80:4c:a9:36:c1:61:
d9:ca:a5:40:6c:b2:06:cf:8b:73:2f:55:5b:c6:ed:a6:58:ea:
e1:b0:6c:3f:d1:12:22:2b:6d:29:66:7f:e2:28:8e:6b:fb:0a:
62:7d:f7:24:3b:51:7e:9f:6e:85:00:71:44:b4:db:8d:81:c5:
cc:0e:d8:a5:64:7c:6b:7c:91:fc:dd:9e:ba:a2:05:d8:a6:59:
da:50:48:d5:30:68:06:80:99:59:86:c0:2a:1e:b7:10:09:3e:
b1:8b:ce:1e:50:a3:dc:77:97:ca:10:7c:80:fd:cd:3e:3c:16:
7b:ea:eb:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:23 2024 by rpki-client on console-fra.rpki-client.org