Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57BBFFD87FD611EE8878EA6B4AD9E6FC.roa
File: 57BBFFD87FD611EE8878EA6B4AD9E6FC.roa (raw, json)
Hash identifier: 31MvVX+vlE1Hkm+1ZnbZZ8kUb2Qulcfn+sGgM1bG1+I=
Subject key identifier: 97:B7:86:E7:6C:DF:A3:4C:C4:29:E1:9D:EF:CE:F5:3C:94:C6:FD:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4E56
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57BBFFD87FD611EE8878EA6B4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 14:35:07 +0000
ROA not before: Fri 10 Nov 2023 14:35:03 +0000
ROA not after: Tue 12 Nov 2024 14:35:03 +0000
asID: 397630
IP address blocks: 154.84.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20054 (0x4e56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 14:35:03 2023 GMT
Not After : Nov 12 14:35:03 2024 GMT
Subject: CN=654e3f9b-840b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7a:19:7d:d8:3a:4c:4c:e7:f1:d6:69:29:10:
1c:08:b8:d1:50:1a:ae:d1:67:61:9c:26:38:8c:10:
9e:41:7e:a9:0d:89:c3:cb:91:3f:be:34:16:fd:7d:
31:c2:d4:df:3a:4f:75:16:69:9d:b0:8a:0c:e1:d1:
a2:c9:df:0c:f2:62:39:57:9c:e2:00:6d:ca:cf:de:
28:f3:ef:51:0e:73:af:b7:bb:95:2e:84:86:14:5c:
9b:7e:4c:d8:11:b1:02:28:4f:a0:26:ea:90:81:01:
71:11:d8:e0:99:72:86:72:04:af:c0:87:55:f4:c8:
d1:57:20:f7:84:18:82:8d:40:90:e9:47:f3:88:35:
99:4d:52:81:49:d1:1a:68:75:94:68:26:7c:25:92:
4b:c4:3b:13:f1:d8:16:1d:7a:67:3c:b0:0b:a6:f0:
9a:4e:d6:a7:af:51:68:c4:56:79:99:53:58:6c:e8:
4f:d2:0f:bd:ff:ad:9d:26:dd:da:6e:12:f9:28:03:
77:b3:d7:d4:7e:5e:51:56:d4:00:b0:a1:85:d9:75:
f4:29:64:b9:58:0b:8a:7a:14:61:12:8a:fb:03:cf:
c4:4c:5b:c0:59:4c:8f:78:d5:7f:8d:5e:91:cd:f7:
f9:1b:6d:2e:5c:dd:47:a9:93:82:ec:2d:db:71:e4:
88:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B7:86:E7:6C:DF:A3:4C:C4:29:E1:9D:EF:CE:F5:3C:94:C6:FD:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57BBFFD87FD611EE8878EA6B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.137.0/24
Signature Algorithm: sha256WithRSAEncryption
23:72:cd:e8:f9:50:ce:03:d7:30:72:02:b6:3a:08:53:a7:48:
6a:04:46:a8:08:5e:ca:39:88:c0:6e:89:9c:ce:12:79:6b:37:
65:2f:05:ea:0f:d7:43:15:76:5d:1e:b0:d6:e1:3c:4a:25:72:
ad:13:01:d2:25:91:9d:f8:94:b4:ce:07:1d:8e:2f:58:e9:a3:
d4:04:43:23:d7:50:95:13:02:e2:a2:c8:77:64:09:8a:09:eb:
3f:f9:53:85:92:b6:a3:bb:27:e7:9b:d6:98:f4:c9:19:b5:ce:
8f:08:ec:17:4e:50:c2:7f:8b:f3:26:e6:46:3d:c8:15:fd:d5:
52:fa:91:ec:72:e1:0c:91:50:a7:54:3d:bc:fa:02:0c:f6:67:
9d:79:49:e4:5a:48:6a:2e:81:9b:b3:ad:3b:cc:5f:7f:f2:aa:
bf:2c:b6:e4:1a:aa:3b:77:60:c1:87:0c:84:ae:18:b4:78:cb:
70:40:10:16:10:2a:e7:b5:93:3b:55:e1:2b:60:98:c3:db:c3:
8c:fc:38:14:6e:12:22:e4:56:de:6f:fe:14:58:5d:81:e2:44:
62:fa:2b:3f:9e:90:88:ea:b5:12:23:d9:ab:f1:d1:7f:dc:b6:
1a:01:22:80:f4:cf:7f:d5:20:8a:da:a4:55:69:4d:7b:c0:ec:
57:d7:f4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:29:56 2024 by rpki-client on console-fra.rpki-client.org