Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AE5317A6BEA11EEB8F608474AD9E6FC.roa
File: 5AE5317A6BEA11EEB8F608474AD9E6FC.roa (raw, json)
Hash identifier: oW9ZBWAaaQhrjx8iEAqLvx9h+cjW2B5sWuRsFPxw/I4=
Subject key identifier: 4D:56:66:A9:21:A4:F8:BB:A4:20:5F:51:64:3D:5D:B0:62:2B:44:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4610
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AE5317A6BEA11EEB8F608474AD9E6FC.roa
Signing time: Mon 16 Oct 2023 06:07:59 +0000
ROA not before: Mon 16 Oct 2023 06:07:55 +0000
ROA not after: Mon 15 Jul 2024 06:07:55 +0000
asID: 135423
IP address blocks: 154.205.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17936 (0x4610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 06:07:55 2023 GMT
Not After : Jul 15 06:07:55 2024 GMT
Subject: CN=652cd33f-9714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:42:2e:f8:e8:77:07:fb:62:ba:f6:94:a8:15:
c9:65:fa:1f:1e:c7:33:ae:5b:2b:27:97:b9:71:f8:
69:8e:00:df:77:ae:6d:35:8b:05:92:96:15:a7:a2:
fd:cc:73:b4:2f:f4:f1:a8:dd:a9:69:28:df:4b:01:
e0:63:61:cc:05:0f:ce:50:89:17:c9:be:a6:77:5c:
c2:f9:1a:b2:54:e6:2c:50:25:94:e1:df:8c:17:14:
af:44:fb:31:58:ef:a8:97:69:0c:52:3a:1c:84:c7:
ae:ee:7f:b7:f2:2c:7d:e8:fa:66:f0:b4:b6:f5:ea:
e4:7f:3f:f6:c5:b5:ba:b7:98:89:43:db:31:5e:9e:
0c:28:2e:ba:d7:15:45:b0:9e:b4:34:ed:08:0c:17:
42:00:8d:bc:be:fc:0c:44:04:c1:14:30:f5:8c:d8:
6e:5a:27:5f:f2:42:c8:36:80:88:69:e3:0d:c0:2f:
c4:7a:28:c0:ed:ba:24:b3:7e:71:43:cb:1a:a4:e5:
ed:1c:0f:fd:bd:bf:40:00:43:3b:4d:79:c0:26:4c:
6d:38:a0:8d:04:bf:50:6e:7a:be:48:bc:59:e3:92:
af:91:0c:12:1a:f6:1e:d4:76:83:5a:a5:ff:70:15:
b4:ec:b5:60:9f:cc:91:d3:22:47:d3:3f:f0:82:92:
a0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:56:66:A9:21:A4:F8:BB:A4:20:5F:51:64:3D:5D:B0:62:2B:44:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AE5317A6BEA11EEB8F608474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.20.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:f9:de:e0:08:0c:ab:90:a3:42:ec:ce:83:0b:34:45:da:ea:
52:c1:8b:8d:8e:5e:bf:52:1c:80:23:fd:2a:22:a0:64:5c:78:
bc:6b:6a:38:7b:bf:41:dc:6f:ff:f8:31:68:c3:9f:22:80:61:
3f:b0:9f:88:5a:34:8e:bd:97:d4:3b:b6:31:f8:00:73:6c:d5:
9d:1e:f4:6a:ed:06:b7:55:77:4a:98:ac:8e:d0:1b:1e:8b:55:
be:f7:97:9e:37:a0:40:96:d4:ff:57:b4:16:6c:0f:93:6d:bb:
8f:28:b5:4a:b7:83:90:24:cc:c7:bc:23:35:e8:c6:25:4e:aa:
76:b9:01:7d:10:84:2e:2d:72:c6:2a:95:d0:97:ed:72:3f:83:
dd:2a:6c:82:90:db:01:4a:ed:a9:ed:45:04:c6:a4:8f:a1:e6:
82:c8:99:c5:6d:3b:e5:ad:10:44:d5:b7:1f:e3:7b:31:bf:1a:
e2:a8:b5:b8:19:21:74:6e:72:4a:dc:0d:70:84:4e:02:80:6d:
93:68:40:71:e0:85:10:3b:24:a8:62:7d:fe:dd:a5:65:d6:71:
29:b6:39:1f:2c:19:2d:b2:7e:58:83:55:0b:2c:0c:9c:a0:72:
42:64:96:c4:69:88:b0:5a:50:03:e2:27:bb:ef:5d:a4:13:e8:
17:fa:e2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:25 2024 by rpki-client on console-fra.rpki-client.org