Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54A8622AF86A11EEA4602E06017001B1.roa
File: 54A8622AF86A11EEA4602E06017001B1.roa (raw, json)
Hash identifier: 6kRhIjUO6honJfzg3hRwkDbOGDJqMTSLNqXfcP3PsRs=
Subject key identifier: 88:5E:B4:41:BA:45:51:44:85:B6:23:17:FE:6B:62:AC:95:28:C1:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB6E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54A8622AF86A11EEA4602E06017001B1.roa
Signing time: Fri 12 Apr 2024 01:16:47 +0000
ROA not before: Fri 12 Apr 2024 01:16:43 +0000
ROA not after: Sun 19 May 2024 01:16:43 +0000
asID: 138915
IP address blocks: 154.93.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43886 (0xab6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:16:43 2024 GMT
Not After : May 19 01:16:43 2024 GMT
Subject: CN=66188b7e-6f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c1:27:9e:44:39:27:99:b8:e4:7d:02:f1:7b:
9b:ce:17:bf:6d:42:57:6a:1e:40:78:8c:f4:05:86:
7c:28:7b:b8:45:c6:35:01:63:dd:d1:70:0d:38:d2:
a9:c3:a3:e4:80:67:36:95:2b:4a:1e:a4:57:09:c9:
e5:bb:b6:8c:fb:a0:28:ea:cd:eb:8b:a3:63:c1:4b:
90:02:9f:a1:a1:d1:a5:78:29:77:da:17:db:3d:15:
6b:c9:da:85:48:4c:7c:f0:36:45:54:e4:da:3e:79:
12:eb:2d:4b:14:b3:8d:e6:89:db:b2:86:1d:9b:8f:
ca:a5:24:40:1e:74:12:62:24:77:01:26:7f:4d:62:
6a:c5:f4:80:2e:2c:31:81:0f:a5:10:a8:a1:16:c0:
b8:17:44:e9:27:06:82:12:f9:4d:43:00:d2:6a:48:
50:4b:be:9c:bb:ec:45:48:f1:56:da:2f:7f:71:b1:
13:04:b1:8e:11:76:b6:3d:18:83:85:41:1b:3c:ff:
c7:73:96:59:f1:30:95:8e:f5:0d:cf:1d:62:cb:ce:
40:f6:02:2b:cd:2f:59:fb:29:64:4b:4e:c9:cd:60:
d8:de:1e:66:63:d7:85:47:02:ce:0e:13:2c:71:a9:
5d:47:b5:37:33:17:44:e1:39:f7:50:19:c8:79:d1:
10:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5E:B4:41:BA:45:51:44:85:B6:23:17:FE:6B:62:AC:95:28:C1:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54A8622AF86A11EEA4602E06017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.58.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:04:83:e3:48:e6:ab:10:e1:94:30:e5:96:72:9f:05:2f:ab:
2a:d4:05:cc:31:14:c9:7c:4a:02:2a:4c:19:d7:c5:6f:a0:3c:
6d:6e:ce:7d:88:14:17:ad:c3:3e:7d:b2:b9:5a:ff:3f:24:42:
31:d6:8a:81:96:bd:3d:36:38:52:d0:6d:8b:0e:b8:84:2d:3f:
88:96:c2:c7:fd:5e:0a:d8:9d:1a:b3:3c:65:69:80:43:56:11:
00:45:f4:36:fe:5f:2a:be:30:4a:92:e7:8c:31:5e:b9:5f:0b:
96:37:e8:24:6f:e0:5a:8a:4e:bb:e2:76:8e:b0:26:6b:dd:75:
55:18:c5:a8:e4:38:f0:2c:66:df:ec:30:8e:17:c6:2d:e7:7a:
3c:57:84:77:b6:97:ae:73:59:fd:9c:dc:6f:31:45:ce:72:e0:
33:30:de:71:c8:6c:32:a0:2c:33:72:08:9d:eb:6c:a5:aa:be:
fe:59:8c:17:a0:6c:00:11:09:a5:93:a9:56:d9:a3:35:70:fb:
87:28:31:9d:11:7a:a0:94:6c:df:18:cb:02:96:ab:e3:30:99:
f8:0b:dc:09:05:ff:37:b5:9a:88:b7:b1:ed:7c:6d:29:b5:f7:
7c:35:dd:af:1b:c9:80:a5:c0:db:fe:d6:4f:64:28:6e:68:51:
2b:87:ec:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org