Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D6C34F0B22D11EEBF1AE773775412E6.roa
File: 5D6C34F0B22D11EEBF1AE773775412E6.roa (raw, json)
Hash identifier: wbtedmtxCJApWbv+5MIy8vKw8XQIrkmPZqzYDhCX184=
Subject key identifier: D7:7D:08:3B:75:D8:E1:A5:E5:1C:20:B4:62:C6:86:86:4A:FE:EB:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 74FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D6C34F0B22D11EEBF1AE773775412E6.roa
Signing time: Sat 13 Jan 2024 16:04:01 +0000
ROA not before: Sat 13 Jan 2024 16:03:57 +0000
ROA not after: Fri 13 Dec 2024 16:03:57 +0000
asID: 140227
IP address blocks: 154.205.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29948 (0x74fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 13 16:03:57 2024 GMT
Not After : Dec 13 16:03:57 2024 GMT
Subject: CN=65a2b470-50c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1e:65:d4:a3:b5:0e:ee:d4:f9:8d:7c:24:d1:
85:c6:03:a8:a9:4e:ab:60:a7:09:b5:45:db:75:d5:
19:b7:72:63:7c:0a:ee:0c:5c:ab:53:2c:93:19:7f:
12:c8:b7:0c:41:bd:d9:6f:2b:7d:18:1a:af:06:b2:
16:63:f0:4b:9c:37:d0:ae:27:e1:f4:cc:f5:f2:84:
e5:5c:18:33:bc:c6:17:7d:fe:7b:bb:53:00:08:82:
3d:34:a8:53:b5:af:df:c0:43:69:26:5a:89:8e:60:
92:a3:56:ed:5e:cb:03:c4:d9:ba:d9:ee:f7:f4:18:
71:da:71:c6:e1:e6:d4:47:c4:2d:cc:9e:a7:b1:34:
98:fe:b4:88:0d:99:da:6a:5b:60:05:69:87:61:ca:
6c:7b:95:24:eb:45:6b:e0:68:6f:df:5b:64:fd:27:
40:de:0c:4c:cb:71:78:0a:83:65:ac:b2:f3:fb:f6:
42:93:25:e6:01:f7:ad:24:87:a1:28:43:4b:49:e5:
27:a0:3c:e2:54:f7:75:82:38:cc:37:45:ad:ed:15:
9b:e9:6d:80:35:df:43:ed:f6:32:34:d7:a4:2e:c5:
a3:4e:9c:f0:84:01:d5:7e:d1:c0:ac:40:40:52:2b:
6d:a1:23:46:8e:b5:f4:62:3e:9f:c4:98:79:86:da:
7c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7D:08:3B:75:D8:E1:A5:E5:1C:20:B4:62:C6:86:86:4A:FE:EB:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D6C34F0B22D11EEBF1AE773775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.220.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:70:bf:cb:6a:93:23:3d:ea:13:91:eb:5a:92:6c:a1:77:bd:
95:cf:1e:c0:13:4f:dc:cc:18:4a:18:78:b6:2f:63:a6:39:ca:
76:65:82:b7:d4:23:40:6c:28:66:3f:14:fc:f2:7b:1e:79:5e:
45:96:0b:57:9c:a8:f7:78:56:9e:d8:be:7e:32:7b:1c:eb:b7:
18:d1:7e:0a:77:f2:a6:c4:69:51:3f:28:d1:49:77:ab:f3:94:
fd:af:eb:9c:96:1c:b0:1b:fa:bd:62:a6:50:6b:d9:df:4c:81:
36:12:b7:ab:41:c8:d9:aa:3c:58:c8:61:58:a1:1c:16:97:9a:
9a:67:17:88:bc:8a:25:7b:c9:6b:79:ff:ea:1f:c6:2f:79:35:
51:3d:59:22:2e:07:b0:19:5a:51:d5:2e:83:8a:b4:27:b4:8e:
ba:76:3f:d2:f1:e9:94:74:30:c8:59:12:51:d1:3d:a2:d7:02:
bb:70:5c:ed:e8:f2:f7:1a:66:fa:0b:df:af:3d:74:86:10:bd:
ca:66:30:e2:66:d8:e7:8d:1e:1e:90:3c:ca:ca:35:f8:08:db:
e7:f6:41:b4:73:4b:02:c0:39:97:1e:bf:f1:ae:72:dc:82:65:
6b:f7:c0:90:34:8a:65:ac:d6:0c:9c:7a:9f:b6:18:18:1d:e4:
19:3d:b4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:08 2024 by rpki-client on console-fra.rpki-client.org