Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5553AF3C86F311EF9D6E0781762E951A.roa
File: 5553AF3C86F311EF9D6E0781762E951A.roa (raw, json)
Hash identifier: MDunNwijG6Ar/sVfCRewf5w9kx46AIUge/LmjlPPgro=
Subject key identifier: 4F:BE:9A:87:7F:FF:94:F1:AB:E6:38:E6:5C:E9:65:84:56:C5:40:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FCB6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5553AF3C86F311EF9D6E0781762E951A.roa
Signing time: Thu 10 Oct 2024 10:35:14 +0000
ROA not before: Thu 10 Oct 2024 10:35:10 +0000
ROA not after: Fri 25 Jul 2025 10:35:10 +0000
asID: 13335
IP address blocks: 154.223.134.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64694 (0xfcb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 10:35:10 2024 GMT
Not After : Jul 25 10:35:10 2025 GMT
Subject: CN=6707ade2-9f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:47:86:03:2f:74:b0:24:be:75:c2:97:cf:
71:9d:dd:6f:87:5c:b8:39:c9:8d:5f:39:80:aa:54:
7d:f2:64:3f:a7:1d:cc:11:4c:c3:a7:06:6c:31:99:
d1:93:14:45:cf:54:14:bd:ba:9c:d7:83:d2:64:f5:
1f:31:34:af:6d:7b:e3:84:dd:24:59:32:fb:ee:b2:
24:df:cd:5d:3f:71:39:c4:1f:ab:c8:74:d2:3d:f3:
3a:50:6f:30:68:ff:05:cb:40:dc:e3:1a:e0:00:ba:
85:d5:50:69:2b:53:55:fa:cc:84:59:7c:1e:cd:d0:
b7:64:c2:53:1f:92:6f:43:fc:5e:e7:a6:e3:21:54:
57:a0:da:06:f1:67:09:0f:f7:1d:a9:8f:db:c0:3e:
80:28:d2:95:29:45:34:e8:13:19:c3:56:8c:85:12:
49:79:4a:ff:30:36:3f:26:54:0d:a7:2b:8b:a2:d6:
7a:72:53:eb:5a:1a:f7:ed:d0:e7:e1:98:61:09:40:
6d:17:06:a0:94:31:58:f1:79:c9:9c:28:b1:3a:53:
61:8e:3a:5b:7c:08:fa:eb:56:0c:36:65:a2:be:4c:
b1:8b:d7:87:e6:ee:32:f5:8b:8a:57:a2:6c:56:87:
b4:1f:e1:87:51:99:ff:25:dd:66:b3:6d:c7:51:7b:
74:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BE:9A:87:7F:FF:94:F1:AB:E6:38:E6:5C:E9:65:84:56:C5:40:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5553AF3C86F311EF9D6E0781762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.134.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:5c:71:85:96:5d:c2:10:0f:d0:3d:dc:06:e4:82:fb:5d:42:
be:f1:70:af:6f:96:20:a0:00:18:2d:9a:5d:48:9d:94:90:42:
b0:7f:82:3a:a8:75:1f:72:9f:87:4b:ab:4d:7b:d6:0b:b5:0f:
74:fc:20:09:c7:a0:e5:0b:a5:22:6f:cb:d8:88:3e:9e:b7:8c:
7c:e6:55:3a:53:0d:82:ae:24:2f:f3:64:72:21:58:21:3f:ee:
fa:90:ee:a7:06:77:8a:eb:ff:a2:e6:77:83:e4:36:6d:58:b4:
cb:02:16:9c:fb:c5:8a:59:7e:62:7b:bf:ef:45:3b:49:a7:89:
cf:c5:02:60:64:72:13:7a:ed:dd:14:64:99:c5:a0:21:8d:d6:
84:6c:17:2b:7d:81:00:8d:37:d3:5a:d8:a3:e7:3b:b8:0e:74:
ed:41:e9:d5:49:25:70:aa:a3:d5:55:05:ef:9a:86:a4:3a:1e:
3e:ee:ed:11:8b:8c:77:72:52:0c:c9:06:0f:f2:c9:90:bb:ec:
e4:03:5d:03:fe:0b:ad:f7:33:f6:a1:b6:f4:ba:c8:91:eb:57:
42:e5:4b:1c:6c:28:d4:98:e7:e0:e7:c7:29:26:b7:bf:44:7f:
dc:ea:f3:48:46:59:91:c2:6a:57:dc:b2:99:5f:a9:0e:a3:77:
c6:ed:6f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:11 2024 by rpki-client on console-ams.rpki-client.org