Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5601FD44E9A511EEAB19D257775412E6.roa
File: 5601FD44E9A511EEAB19D257775412E6.roa (raw, json)
Hash identifier: VaTrptkeqKuzD+oVKOTcb/M7sXeLhvqOGaYphWf8pus=
Subject key identifier: B0:78:D6:9A:36:04:2B:00:D1:93:E1:27:79:24:17:CE:FD:42:6D:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A646
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5601FD44E9A511EEAB19D257775412E6.roa
Signing time: Sun 24 Mar 2024 06:11:22 +0000
ROA not before: Sun 24 Mar 2024 06:11:18 +0000
ROA not after: Fri 26 Apr 2024 06:11:18 +0000
asID: 395886
IP address blocks: 154.201.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:11:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42566 (0xa646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:11:18 2024 GMT
Not After : Apr 26 06:11:18 2024 GMT
Subject: CN=65ffc40a-1139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:cf:49:d8:c0:88:bc:bd:3b:af:53:e1:0f:
3f:91:ec:3e:ee:61:f3:44:56:ff:e9:d3:ad:be:67:
5a:1a:3b:86:46:e0:cd:f1:33:d2:42:a7:49:71:97:
08:8e:1f:1e:5b:c8:db:6d:0e:54:e3:02:eb:af:3a:
12:36:2d:e3:63:75:01:8c:e1:0f:96:4c:45:12:57:
ea:56:fe:00:46:c2:b3:cf:ec:3a:91:dd:a5:ff:5e:
21:17:8b:4a:e1:6f:62:51:26:19:66:82:5e:f9:5f:
d0:5f:b1:a0:e8:d0:14:b7:7f:22:50:f9:d1:23:be:
5a:2b:e2:88:ef:d2:05:a2:5d:9d:9d:81:3c:99:e3:
d6:69:3d:cc:49:a7:11:a7:27:ac:2e:dc:cc:c2:81:
c3:36:d5:77:d1:f6:ab:ab:c7:69:f9:dd:9f:ec:a6:
57:cd:0a:42:cd:ba:10:33:a6:79:ca:ba:8e:5d:81:
ba:84:6c:0a:4f:28:f0:b6:74:7e:b4:fc:73:7a:cb:
70:e2:b0:23:00:cb:6d:84:f9:1a:2b:e3:3f:70:fa:
95:a0:69:51:ac:e2:6f:1a:f6:ec:9a:88:48:55:1c:
df:43:49:ee:db:0a:04:1f:b0:7e:ee:aa:30:6f:77:
71:69:eb:ed:ca:ad:74:49:4c:d0:60:f1:93:46:77:
f1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:78:D6:9A:36:04:2B:00:D1:93:E1:27:79:24:17:CE:FD:42:6D:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5601FD44E9A511EEAB19D257775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:96:fb:d8:eb:e8:9a:c1:bc:f6:b2:70:bc:df:61:dc:3d:90:
ff:0d:85:76:4c:88:fa:f6:2f:54:eb:83:25:68:95:3f:3d:48:
65:2b:fe:b8:b0:b8:a6:73:12:e8:1e:dc:0a:fe:d7:e7:8a:9c:
55:ce:21:6c:78:45:66:98:34:e3:65:85:d2:d4:dd:aa:a3:3b:
30:44:1f:ae:97:27:e4:fd:6d:96:77:98:46:7a:51:60:d7:1e:
c0:d7:9f:bf:70:3b:1c:c6:af:60:01:0d:39:26:04:fc:08:91:
b1:4e:72:53:79:9b:49:a9:a4:88:60:af:24:83:20:70:39:69:
86:0b:e2:44:61:e1:00:9e:e0:52:25:97:8e:25:b3:0e:ad:c4:
f9:ba:7f:57:5b:6e:9a:27:1c:7e:82:f9:24:85:18:b8:d7:2f:
87:d7:3a:0e:02:f1:ed:c4:a8:fc:cb:cf:a4:44:15:83:6e:20:
d5:1a:50:73:67:41:6d:b5:4f:49:d2:d9:5c:8f:e8:83:73:7d:
a6:10:4f:0d:b1:fb:de:80:2c:87:74:d5:f3:62:df:1d:1d:f7:
cc:49:90:3c:89:ef:28:17:ce:a2:75:a4:12:3c:ea:67:4e:04:
ae:ae:b9:60:79:f0:9b:ff:54:6a:bc:da:f8:01:3b:ec:97:6f:
6f:22:e9:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:08:41 2024 by rpki-client on console-ams.rpki-client.org