Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/679453BEF86D11EEBF28F624017001B1.roa
File: 679453BEF86D11EEBF28F624017001B1.roa (raw, json)
Hash identifier: nbfa4JImUFDGXIc4j840jOmdbrAPOd4ncgq4A3iBQ4s=
Subject key identifier: 52:C6:C0:22:BB:3A:BA:B4:54:C4:8A:83:25:28:2B:B5:42:F6:C0:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB92
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/679453BEF86D11EEBF28F624017001B1.roa
Signing time: Fri 12 Apr 2024 01:38:47 +0000
ROA not before: Fri 12 Apr 2024 01:38:44 +0000
ROA not after: Sun 19 May 2024 01:38:44 +0000
asID: 138915
IP address blocks: 154.93.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43922 (0xab92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:38:44 2024 GMT
Not After : May 19 01:38:44 2024 GMT
Subject: CN=661890a7-b4fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8b:d0:24:74:df:a3:5c:04:7b:2c:5c:ad:1d:
55:f3:de:f6:f4:f6:7d:37:33:cd:9b:1d:a1:a9:59:
46:26:68:33:40:94:dc:71:79:03:07:bb:e3:e8:44:
a5:21:a6:a8:92:9a:be:f6:cc:e4:9d:77:75:5f:69:
3c:a2:e6:04:4a:de:7e:1b:b2:86:8e:b4:6b:bf:18:
f0:fb:a4:8a:3b:43:5a:69:6c:3c:75:03:20:61:ae:
f2:ae:29:04:04:cc:83:e6:b7:07:d7:3e:33:c1:08:
aa:6d:ce:30:51:af:f0:f7:a2:1f:6f:33:39:38:c2:
9e:ae:3d:10:0f:08:cd:bb:df:66:ba:d3:11:22:56:
cd:b6:d7:3b:d9:24:23:c8:50:f7:87:b4:cd:ea:16:
99:45:2e:24:46:5e:cd:93:6a:8a:bd:f2:29:7c:cc:
6a:55:9e:08:15:38:74:9d:f3:09:8e:64:48:d9:db:
21:59:90:68:06:ae:fc:3d:45:4c:e2:ee:7a:3e:0e:
38:b6:42:4b:f8:12:35:4f:a2:72:e0:f9:cc:0b:19:
f7:f3:ed:0e:20:ca:2c:ea:1d:ec:67:dc:d5:98:34:
38:43:e4:a9:0a:45:9b:a5:f4:5f:4a:0a:f3:84:8f:
67:0c:c2:17:78:92:92:fc:05:68:ce:f0:fc:4b:1f:
da:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C6:C0:22:BB:3A:BA:B4:54:C4:8A:83:25:28:2B:B5:42:F6:C0:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/679453BEF86D11EEBF28F624017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.38.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:bf:4e:b1:74:f1:2b:fc:c7:50:6f:87:0e:6d:df:70:88:83:
df:37:69:ab:be:57:fb:5c:21:26:8d:89:1e:c9:ac:91:f2:a2:
ca:a3:37:a9:a5:dd:26:27:fe:62:43:d4:fa:26:eb:07:19:7c:
14:ce:ef:9c:79:58:e4:7e:a7:ff:a0:50:dc:4a:8b:00:0c:9b:
40:68:fa:fa:71:cc:22:e8:5d:b1:94:d4:7d:9f:7e:da:97:26:
b2:65:53:4e:00:7a:95:bd:e1:26:a9:71:de:17:25:57:59:b9:
8a:2f:aa:6a:08:46:8b:84:6a:29:ce:db:10:bc:f0:d8:35:3e:
43:39:74:49:e1:10:da:35:42:7d:fb:f3:b1:31:cb:f3:5a:e9:
cb:df:76:64:0a:c2:1f:c6:29:58:7c:7b:c4:ff:29:bf:c9:1e:
9e:62:70:4a:7a:4b:9d:0d:35:67:c3:d5:fa:b8:ef:fa:e5:c5:
60:30:4e:b0:51:c9:57:9b:8d:85:46:23:48:79:85:af:9e:72:
a6:3f:5d:64:d2:bb:63:65:d1:ab:d1:64:b1:33:1a:c8:47:1c:
80:da:c6:4c:ba:3e:96:85:ae:fe:4d:de:15:ef:b2:5d:d3:35:
87:66:d9:6b:ac:1e:05:2d:7d:ea:91:bd:c6:78:5f:f8:64:83:
4d:f9:3e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:21 2024 by rpki-client on console-ams.rpki-client.org