Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/532A9952727511EEBE5033334AD9E6FC.roa
File: 532A9952727511EEBE5033334AD9E6FC.roa (raw, json)
Hash identifier: nVG0fDQEy8i/6LdOEUIgxBwewoa4dISS+1azMSeOX7c=
Subject key identifier: 0B:4C:FA:34:C6:CE:F1:01:5F:14:65:92:75:8F:F7:74:CC:E8:21:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4767
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/532A9952727511EEBE5033334AD9E6FC.roa
Signing time: Tue 24 Oct 2023 13:57:53 +0000
ROA not before: Tue 24 Oct 2023 13:57:49 +0000
ROA not after: Thu 17 Oct 2024 13:57:49 +0000
asID: 58879
IP address blocks: 154.91.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18279 (0x4767)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 24 13:57:49 2023 GMT
Not After : Oct 17 13:57:49 2024 GMT
Subject: CN=6537cd61-52ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:10:68:47:3f:dc:14:37:d1:53:51:db:53:88:
74:eb:2e:ea:43:95:00:ca:b3:3a:eb:06:5c:e8:f3:
1d:c7:a1:5d:26:bb:f7:82:ad:cc:7c:3a:fd:3a:ac:
63:04:4b:d9:f3:18:6f:d1:72:ae:11:01:83:22:45:
dd:5e:b9:51:5a:f5:59:5f:0c:63:5c:6c:12:02:cd:
41:0f:53:f8:40:6a:41:8c:fb:77:65:94:6b:76:ed:
d6:28:66:30:b1:41:90:ad:ec:bd:bc:71:f9:96:83:
61:94:00:16:32:f6:54:11:b6:86:f5:54:1e:e4:49:
c4:f2:26:79:3a:e9:3a:0e:70:4a:bc:c0:d2:e0:69:
79:27:c7:c3:29:14:d9:ba:c9:ed:1d:d0:67:00:35:
9f:ff:72:8b:40:04:80:4b:db:79:5a:58:f0:30:39:
5b:f1:5d:49:08:06:2d:f6:b8:87:bc:97:42:ec:da:
92:a1:9e:2e:aa:8a:52:84:1c:19:ef:a3:81:53:a4:
3e:4f:98:04:fa:ae:78:c2:1b:a8:d1:36:b1:e4:09:
2f:f1:d4:6e:09:e2:1a:4e:35:fa:92:74:12:24:15:
6c:b8:9d:2c:b2:a9:42:2a:1e:45:5c:d3:e1:4a:4f:
69:80:00:7c:ba:ba:57:6a:02:1a:63:e5:79:a0:50:
f5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4C:FA:34:C6:CE:F1:01:5F:14:65:92:75:8F:F7:74:CC:E8:21:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/532A9952727511EEBE5033334AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.34.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:8a:83:48:38:ef:c7:be:9a:80:36:8f:6f:cf:69:a4:3d:c4:
88:a9:6a:a9:c1:bc:2a:e9:b2:15:7a:85:3e:32:d4:74:1b:6c:
f4:fc:a6:af:98:30:1c:4b:5e:86:83:fb:8b:f8:0e:c1:17:8f:
d9:7c:aa:8e:c1:15:55:98:8a:a2:a0:7f:55:0e:86:1e:eb:9b:
96:ab:33:0e:91:4e:5f:be:ff:06:47:ee:99:a7:2c:f3:e8:74:
0d:db:ce:5d:be:24:c3:45:e0:a1:59:28:c2:14:a1:ea:b8:46:
50:69:7b:3e:6a:fb:7a:47:4e:47:7a:d0:a5:e6:83:a7:ba:81:
31:0a:8b:82:6c:f5:14:0f:33:92:84:74:29:61:65:02:09:16:
18:92:ad:f8:16:8d:e9:d3:ba:50:bc:24:72:65:65:79:2d:fd:
fb:6c:72:9a:c9:f9:17:01:3e:c9:f8:d7:16:e1:8a:f2:18:02:
33:0b:b9:76:13:94:49:4d:3d:7a:1e:22:31:20:c3:f2:ae:1f:
09:16:94:8b:d9:c2:86:e2:b7:b4:32:d0:0b:02:ae:fe:1f:a7:
51:fc:0c:2d:13:06:3b:a9:f5:d0:7a:ac:ca:fc:85:0e:1b:e8:
a0:a0:7e:6e:a1:f3:d9:1a:d2:6f:16:93:d5:6a:60:ec:1c:22:
1a:51:d9:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org