Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BCAA8A0018511EFA883B844017001B1.roa
File: 5BCAA8A0018511EFA883B844017001B1.roa (raw, json)
Hash identifier: yf5oFzhwv04kwrc6HrLBUcHBLPgLm1Fe4g7C1wtqpWM=
Subject key identifier: D0:5D:E3:6E:06:FA:83:D8:83:7B:B6:BD:35:75:AB:2A:50:9A:FB:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF67
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BCAA8A0018511EFA883B844017001B1.roa
Signing time: Tue 23 Apr 2024 15:22:55 +0000
ROA not before: Tue 23 Apr 2024 15:22:52 +0000
ROA not after: Mon 03 Jun 2024 15:22:52 +0000
asID: 135097
IP address blocks: 154.89.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44903 (0xaf67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:22:52 2024 GMT
Not After : Jun 3 15:22:52 2024 GMT
Subject: CN=6627d24f-37c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0b:83:b7:fc:3c:5a:70:62:22:21:7b:37:a9:
8e:ae:e8:49:74:65:8b:a0:5e:11:77:9c:eb:da:00:
ab:a6:db:97:00:29:13:b6:d0:1c:0d:c9:c1:9c:c2:
fd:41:9f:da:38:2f:6b:cf:2c:bd:a8:d5:2a:e4:00:
42:a5:48:38:d2:57:9e:fc:a7:6e:17:85:06:2d:db:
e8:ac:d9:c7:0c:88:f6:33:c2:c9:3b:2f:e3:2a:00:
cd:9d:38:4e:20:c5:3b:d2:6b:a2:d3:b7:52:ce:f7:
b0:9c:49:07:2e:94:62:20:fc:80:96:c9:1e:31:d6:
b3:35:86:25:a1:c5:65:db:3f:a0:8c:38:61:85:e1:
2f:3c:93:6f:64:42:a8:12:bd:86:8e:ad:32:00:2b:
a6:54:d7:62:e9:05:41:05:5a:df:ad:93:b4:7f:92:
7e:73:b8:26:a6:75:da:68:29:a6:9a:bc:73:42:bb:
27:a1:16:e2:c4:78:1f:e2:89:7a:c0:94:65:0a:74:
ba:b9:b4:25:9a:3f:56:b0:60:3e:cf:3f:77:73:dd:
41:4d:e7:27:2a:26:ab:47:78:2e:d6:4e:48:92:55:
3d:6c:2b:cd:a2:36:09:86:a5:f0:9c:00:b9:14:57:
5a:1a:5c:07:08:dc:12:5e:7b:a1:10:bf:fc:e4:d1:
49:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5D:E3:6E:06:FA:83:D8:83:7B:B6:BD:35:75:AB:2A:50:9A:FB:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BCAA8A0018511EFA883B844017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
99:fb:a4:65:ee:8b:33:04:8c:02:da:94:ab:1b:80:60:a1:a6:
ca:70:2d:ff:d4:01:88:24:ff:87:31:5b:8e:ac:b4:79:77:2e:
ac:09:bc:09:c1:b1:f2:ad:f5:5c:53:79:84:7a:16:9b:93:15:
02:29:38:b9:09:79:9e:a0:5d:83:a4:e7:1b:99:f3:37:ab:d4:
36:ae:19:4b:1f:09:fd:86:75:8b:8f:7e:56:9b:92:45:a1:da:
76:96:3f:cc:8a:de:4d:b1:fa:72:c0:01:44:c1:3f:8a:d3:90:
e7:ec:8d:d9:82:d6:f7:75:3f:86:e7:56:26:c1:27:c3:94:76:
61:84:62:bb:a3:74:23:5c:0c:5a:45:fa:e0:56:4f:fe:49:62:
32:50:a8:05:b5:02:e8:ba:59:d5:e0:93:0f:19:76:b4:db:cc:
4b:68:27:d1:f5:01:e2:76:e8:0c:66:b3:c0:50:93:6f:6a:bb:
bc:aa:19:c9:e8:67:ba:e1:fc:47:1b:08:51:fc:d3:46:c4:5c:
7a:2b:61:44:26:f2:f6:0f:b2:44:9f:45:0e:dd:cf:0c:5b:e8:
6e:ee:c2:80:23:f8:cd:74:26:bb:0f:2f:02:ad:2b:2f:63:5d:
f6:ff:16:6b:de:3d:ce:b5:b3:a5:a3:3e:3b:67:99:33:bf:7b:
43:74:02:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 02:12:29 2024 by rpki-client on console-ams.rpki-client.org