Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6529172EF47E11EE8B6B7AB3775412E6.roa
File: 6529172EF47E11EE8B6B7AB3775412E6.roa (raw, json)
Hash identifier: Uaz6DxH9q/z3hXfeA024pPveoaIFdohteOV+tHQaOhM=
Subject key identifier: C4:34:F2:BD:33:B2:65:7F:58:3C:8C:22:CC:28:F5:47:95:36:90:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A998
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6529172EF47E11EE8B6B7AB3775412E6.roa
Signing time: Sun 07 Apr 2024 01:30:19 +0000
ROA not before: Sun 07 Apr 2024 01:30:15 +0000
ROA not after: Mon 13 May 2024 01:30:15 +0000
asID: 138915
IP address blocks: 154.206.58.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43416 (0xa998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:30:15 2024 GMT
Not After : May 13 01:30:15 2024 GMT
Subject: CN=6611f72b-d622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:e7:fd:7d:6b:9d:38:63:02:30:d6:fd:85:
2b:1d:20:da:fb:99:01:de:0c:97:dc:0d:27:ba:98:
04:cd:e3:99:85:08:ae:74:5b:07:97:bd:11:c6:04:
93:d0:e2:27:be:d6:c1:33:18:65:7c:78:16:bd:c6:
00:3e:4b:73:8c:25:fc:c3:e8:33:15:2f:d8:32:9c:
a9:7c:86:84:06:45:3a:15:a3:3f:74:91:98:e0:21:
b0:8d:bb:b5:a4:97:32:c1:27:94:cc:de:12:27:25:
01:03:e5:74:39:a4:39:21:e7:42:2c:b9:7e:8e:1c:
8a:1b:8f:63:df:bd:b9:2d:41:3c:39:7c:20:33:93:
6d:b4:4a:12:36:e3:6e:bb:5b:df:11:b2:e9:54:89:
4d:81:0b:f4:b9:a9:56:21:1a:f0:a1:9f:40:a3:f4:
a9:7e:8c:eb:02:3a:02:c8:4e:71:22:80:0e:ec:9c:
f8:04:a0:26:b5:85:24:21:d5:f0:ee:e6:b3:3b:57:
ab:21:bb:6c:f5:32:fe:1c:78:26:aa:ac:8d:2f:f7:
06:79:e6:da:6a:28:9e:e3:0f:06:32:cd:1c:28:88:
72:ed:6a:ef:5f:a0:bf:13:a3:56:f0:38:25:e9:8a:
cb:b3:0f:27:0f:53:b8:52:07:79:cb:0f:b7:e8:a5:
89:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:34:F2:BD:33:B2:65:7F:58:3C:8C:22:CC:28:F5:47:95:36:90:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6529172EF47E11EE8B6B7AB3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.58.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:25:51:6f:27:d2:13:f1:f1:f7:46:b2:ce:b8:87:ae:00:6f:
df:32:6b:a0:45:13:e8:48:d1:a6:93:a7:c7:8f:83:ba:fc:d5:
3f:d8:52:44:4f:32:f1:55:4c:77:6a:a0:42:c6:da:97:11:de:
6d:c5:af:d7:57:38:2c:cd:a6:15:63:27:84:36:f5:54:ec:72:
b1:8d:31:5a:c6:14:e5:22:82:b6:07:d3:75:91:a5:5d:9b:43:
a5:ae:51:c9:02:de:8c:d7:2b:d3:59:0f:fa:cf:be:ec:5e:46:
ad:2a:a5:80:1b:8c:65:89:bd:7b:10:ec:b3:65:2f:02:57:a3:
d3:74:50:de:ac:c3:57:07:c4:98:66:ed:04:d7:24:b9:d3:aa:
62:fc:eb:b6:8f:66:e5:62:06:1a:31:68:06:f6:c2:0e:0c:ec:
d8:c3:d3:1e:bd:74:c4:02:2a:c9:02:4e:5d:fd:f7:81:8e:bb:
78:d9:ab:6b:97:cc:60:ae:d3:59:0b:41:84:d4:7e:69:fa:34:
97:75:59:fc:82:54:ff:01:e1:1c:e2:f8:e7:13:80:19:c7:36:
18:06:b7:2d:4d:0b:ec:9c:68:08:c0:8a:d9:15:96:ab:0a:1b:
b8:43:c9:82:9d:da:ad:67:75:a0:f6:3b:fd:5e:81:cc:b9:b8:
09:8c:be:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:11 2024 by rpki-client on console-ams.rpki-client.org