Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C0B5EE671C11EEA14F4D784AD9E6FC.roa
File: 54C0B5EE671C11EEA14F4D784AD9E6FC.roa (raw, json)
Hash identifier: eRkanBdFpBKkax96T9OaD3B+AI8mlcpDXYwLiLLtfjw=
Subject key identifier: 6F:ED:3F:A6:44:EA:C6:68:1F:78:9A:9A:04:D9:29:BE:67:FF:30:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 456D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C0B5EE671C11EEA14F4D784AD9E6FC.roa
Signing time: Tue 10 Oct 2023 03:23:07 +0000
ROA not before: Tue 10 Oct 2023 03:23:04 +0000
ROA not after: Wed 28 Aug 2024 03:23:04 +0000
asID: 140227
IP address blocks: 154.197.20.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17773 (0x456d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 03:23:04 2023 GMT
Not After : Aug 28 03:23:04 2024 GMT
Subject: CN=6524c39b-0de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:67:6c:af:99:cb:24:7c:c9:5f:40:e4:19:54:
08:0f:f5:8a:be:f1:e7:1b:a5:d3:90:ca:74:7c:db:
43:22:21:e4:46:d3:ee:6a:a5:60:76:bd:97:9d:fc:
2b:94:73:31:86:3f:1f:77:13:7f:8c:cc:1b:0d:44:
b6:95:c6:54:93:05:01:ef:99:98:08:6a:2d:32:0a:
b1:b8:cb:51:45:6d:0e:41:fd:30:f6:8f:b2:8b:86:
51:ee:38:b7:ce:ff:1f:68:37:e4:4d:6d:53:3f:3f:
bb:ff:ec:fb:b0:3c:88:80:3c:eb:ff:91:e2:04:5b:
dd:4e:16:7f:32:f3:b6:39:16:be:43:83:9f:06:b4:
c8:a3:57:7b:bc:3d:5a:f9:7f:79:24:47:e4:66:62:
d7:93:65:3a:08:07:2f:9b:92:0e:1e:fa:68:91:8d:
ff:97:39:a3:a4:c1:ec:fe:7c:3b:0e:51:73:60:cc:
8e:29:95:40:19:a5:3a:95:f3:98:bd:d1:23:3d:57:
f0:5b:50:c5:ed:bd:f7:65:5d:c0:5b:d4:1b:a0:b7:
35:5e:35:1a:cf:01:00:8f:de:6a:12:7f:2b:e0:28:
77:8d:de:0e:b5:99:49:ca:36:5f:07:3c:63:0d:5b:
8e:b4:5c:06:65:6b:b8:f1:61:6f:e1:2d:d1:78:39:
62:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:ED:3F:A6:44:EA:C6:68:1F:78:9A:9A:04:D9:29:BE:67:FF:30:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C0B5EE671C11EEA14F4D784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.20.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:a5:cf:d8:8c:07:f1:20:d6:0d:c3:bd:d0:e6:b2:fb:c0:df:
48:7e:5e:86:ae:0b:e0:da:2b:28:82:e3:3a:79:94:5f:67:75:
21:1b:39:12:21:58:57:66:c6:7f:e7:bc:f1:87:28:99:5c:7c:
68:a1:93:9d:86:18:ff:22:69:8d:69:b1:e3:04:49:5d:8c:e2:
6a:65:f2:61:e2:15:9d:82:4f:37:66:ad:e2:52:19:4a:58:d1:
84:fd:16:2d:91:a7:6a:62:be:51:eb:75:e5:09:12:60:95:06:
5c:48:35:dc:9a:17:18:4e:7a:96:9e:8a:72:18:e0:78:06:eb:
71:09:c1:da:f8:8b:30:ca:26:05:e5:ca:40:72:b3:75:79:09:
b0:f9:c3:29:70:74:5e:6d:e6:9d:ca:09:cb:74:93:de:02:a0:
d9:39:46:be:96:50:8e:9c:f5:2d:5f:a8:d2:56:a3:f7:1c:a9:
b4:37:25:f7:f4:2c:9f:95:bd:be:40:07:d6:cb:97:15:aa:1f:
5b:d3:58:c6:11:c9:31:5f:62:15:32:7d:e2:59:e4:96:95:bb:
0a:9b:0e:ec:3e:d8:a8:10:6f:35:a3:ac:f0:33:68:f1:e2:35:
ef:52:99:f7:c8:0f:e2:40:98:c8:f5:5f:f1:63:6a:62:2e:23:
a1:73:98:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:09 2024 by rpki-client on console-ams.rpki-client.org