Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60EFA76E062A11EF83642629017001B1.roa
File: 60EFA76E062A11EF83642629017001B1.roa (raw, json)
Hash identifier: BfIj4tC0iZAc6Dt+plyCYQtE0IvPs23jgAhhciKlG9E=
Subject key identifier: CD:74:A7:8B:B7:8B:8A:80:52:19:E3:BE:DE:3D:56:B3:69:8F:FD:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B258
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60EFA76E062A11EF83642629017001B1.roa
Signing time: Mon 29 Apr 2024 13:14:16 +0000
ROA not before: Mon 29 Apr 2024 13:14:12 +0000
ROA not after: Fri 07 Jun 2024 13:14:12 +0000
asID: 138915
IP address blocks: 154.223.68.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45656 (0xb258)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 13:14:12 2024 GMT
Not After : Jun 7 13:14:12 2024 GMT
Subject: CN=662f9d28-54dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3e:4e:16:2b:1d:fe:ba:25:ef:d2:62:36:33:
e7:70:e3:51:58:64:38:9b:ce:47:ea:d2:0d:c3:31:
a5:47:57:b6:1f:4f:03:58:dc:40:8e:18:7b:68:43:
8d:f5:e5:b8:37:4e:a9:2d:0a:db:7f:91:54:e8:3f:
d9:ae:f7:cb:6a:b3:4d:e3:9b:10:96:55:ed:c3:78:
06:f2:29:af:c4:1f:0b:28:ff:9e:83:52:f5:0a:0e:
0a:96:8a:7c:93:b4:60:03:b3:13:26:53:27:e3:73:
31:97:9a:f0:a5:25:ef:fc:81:5d:84:ea:ad:d5:c1:
3e:eb:eb:57:d9:bd:2d:2c:d9:42:40:42:27:ea:e5:
1f:f9:c2:47:3c:a2:b1:22:e9:af:b0:ca:c5:88:c9:
7d:e7:03:03:87:ff:67:89:e0:26:02:dc:e9:c2:f7:
35:cc:46:ef:b7:9c:32:45:45:81:a5:f4:37:9e:2d:
5b:72:9b:77:76:f9:67:d1:0a:e4:1f:47:e2:b9:cb:
74:7d:84:f2:c2:07:a5:b7:01:73:63:46:17:35:06:
60:89:e3:11:05:a3:f0:ea:4c:75:38:3b:d9:31:76:
42:57:bc:4d:29:b4:1d:9f:9b:40:6c:39:77:d4:d3:
db:92:ee:a5:3b:a1:a9:b6:17:11:44:87:f2:1d:57:
06:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:74:A7:8B:B7:8B:8A:80:52:19:E3:BE:DE:3D:56:B3:69:8F:FD:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60EFA76E062A11EF83642629017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.68.0/23
Signature Algorithm: sha256WithRSAEncryption
49:82:78:a9:ae:05:a4:be:f1:f7:b4:1b:d9:ae:6c:fa:7e:2b:
f6:7c:33:3c:50:ed:d7:02:5d:1c:f5:65:45:f4:7d:10:01:70:
90:20:66:f2:81:32:03:bf:d5:6b:e2:59:49:aa:4d:75:c9:51:
82:d2:ef:09:03:f7:8b:13:0e:8a:5f:94:75:e3:59:cf:e8:32:
81:b8:2e:fd:63:5e:c0:be:b5:69:31:8e:e4:0b:d7:dd:36:64:
19:26:94:db:94:e1:11:48:c0:6d:58:27:ca:8f:ca:53:10:c6:
b2:a9:d9:37:66:c6:dd:2c:f8:2f:da:2f:0f:3e:76:a5:bc:2c:
79:cb:f5:c6:ad:da:1c:5e:33:a2:03:fa:0f:fe:82:1f:09:a0:
35:13:8c:ed:02:4f:be:fa:ee:d9:58:d6:b0:b7:40:26:7b:0d:
2a:63:0c:02:bd:ba:c4:ef:e3:92:f1:4a:88:a3:95:8c:16:9b:
81:8b:bb:78:87:9b:8d:94:c9:6f:a4:d7:75:a7:da:b3:ab:c7:
88:6b:b5:f3:36:42:37:c1:85:6f:63:61:46:c2:c1:c5:1f:f9:
04:bd:34:af:8b:3b:d3:a6:6d:38:0f:a5:da:56:7b:90:80:20:
2d:b1:68:fd:b3:36:11:42:b0:bf:2d:0e:21:be:a0:38:45:1b:
86:d8:99:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 03:48:58 2024 by rpki-client on console-fra.rpki-client.org