Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67CF9C321FE511EE85853A534AD9E6FC.roa
File: 67CF9C321FE511EE85853A534AD9E6FC.roa (raw, json)
Hash identifier: nCGNQcNsEs5zRdW1E0A/pz6YWRMT1mFdgMNra+8MQB0=
Subject key identifier: 4D:6D:45:FA:1F:A0:6E:96:F2:EC:31:7C:82:CF:BC:91:BB:83:00:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 31A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67CF9C321FE511EE85853A534AD9E6FC.roa
Signing time: Tue 11 Jul 2023 12:21:04 +0000
ROA not before: Tue 11 Jul 2023 12:21:01 +0000
ROA not after: Thu 13 Jun 2024 12:21:01 +0000
asID: 139811
IP address blocks: 154.205.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12712 (0x31a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 12:21:01 2023 GMT
Not After : Jun 13 12:21:01 2024 GMT
Subject: CN=64ad4930-60e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:13:75:b4:52:04:15:9c:b5:b5:7e:f6:78:50:
67:9c:d2:17:c4:30:24:d5:7b:3c:d1:de:c9:2e:6d:
e7:b4:90:9b:5a:cb:e6:fb:8d:83:0c:cd:e8:d6:54:
bc:bb:e5:13:14:d4:cd:94:db:c2:d3:10:e0:b3:e6:
92:75:ab:3f:50:a9:1a:29:31:93:6a:b6:b6:1b:a8:
c1:54:a8:9a:ec:c7:9a:91:23:5d:c8:51:37:9d:24:
a3:bd:18:42:16:bb:a4:09:98:12:cc:45:4e:ae:34:
0b:a0:e4:78:24:74:89:0e:34:4b:60:a5:c0:ff:0e:
90:7d:60:d8:2c:a7:4c:7a:df:0f:cd:db:a4:14:7c:
bc:f4:fd:4f:78:2b:44:e5:95:21:c0:df:16:4b:ea:
d8:79:14:12:07:1b:05:5e:53:6b:68:99:9d:58:cd:
0f:bd:4b:0a:a5:64:53:9a:d3:b9:34:44:ac:89:ed:
0f:52:8c:c8:80:b2:f6:ba:9d:ad:0d:e0:7f:f6:26:
46:ad:b3:67:10:b8:ba:95:71:94:46:2b:f0:79:e4:
70:13:97:b2:ca:67:0c:be:a2:c7:bf:a0:78:9a:51:
08:7c:cc:e5:19:8c:df:d6:56:b8:d5:d2:35:2e:f9:
24:3c:2e:56:00:80:5e:8f:3f:ce:78:5b:d7:82:b2:
c5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6D:45:FA:1F:A0:6E:96:F2:EC:31:7C:82:CF:BC:91:BB:83:00:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67CF9C321FE511EE85853A534AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.5.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:80:02:c5:66:22:6e:27:01:c6:c4:50:b6:58:aa:f7:82:cd:
18:2e:51:b7:fd:40:59:31:82:07:45:05:cb:73:d9:49:2f:de:
97:4b:b4:4f:b4:1a:12:11:0b:58:3e:82:85:65:1a:71:75:f8:
3e:29:d1:1d:f7:dc:0a:41:c3:a2:f0:93:96:90:31:8e:73:ee:
64:0c:5a:53:c7:36:11:b6:94:b0:a3:84:5c:36:16:46:c2:8b:
32:a3:25:ed:70:85:5f:ab:ec:69:24:45:4d:b9:5e:70:89:26:
72:a9:5e:20:1a:da:2d:e6:20:1b:5c:f4:4a:a0:cd:2b:4b:b2:
78:1c:3a:27:11:34:c4:8e:2b:5b:02:6f:99:42:0e:07:2a:9b:
56:4c:8e:83:70:6b:54:3f:0d:f5:3f:08:24:c4:d2:cb:61:3e:
99:7f:44:2c:d2:61:7d:ae:7a:53:4b:78:30:b4:27:ca:4c:d4:
34:b7:a0:d9:66:35:4c:f2:88:9f:a1:54:36:0c:24:03:74:07:
b9:a2:ef:03:8b:07:23:7a:4e:9c:55:1c:1f:d6:46:f8:aa:b9:
f2:d2:28:79:33:ea:76:d6:0f:97:27:ba:0f:e1:fa:8a:ef:90:
71:5d:05:3d:86:bb:ac:1e:35:be:9c:5d:7e:36:4f:aa:a9:0a:
70:51:7b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:26 2024 by rpki-client on console-fra.rpki-client.org