Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6952DAD8017111EFB79ECC22017001B1.roa
File: 6952DAD8017111EFB79ECC22017001B1.roa (raw, json)
Hash identifier: a8j64J5jNYsesMoY/s9I3w8YnG/KBwaX3Q+ZgWnpdRE=
Subject key identifier: 5D:EB:05:C3:D9:49:48:A3:D9:FE:14:62:55:D2:3C:6C:71:E7:26:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF3E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6952DAD8017111EFB79ECC22017001B1.roa
Signing time: Tue 23 Apr 2024 13:00:08 +0000
ROA not before: Tue 23 Apr 2024 13:00:05 +0000
ROA not after: Sat 11 May 2024 13:00:05 +0000
asID: 9009
IP address blocks: 154.92.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44862 (0xaf3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 13:00:05 2024 GMT
Not After : May 11 13:00:05 2024 GMT
Subject: CN=6627b0d8-1c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:89:4a:c2:e7:b0:ec:3e:4f:57:4c:1f:50:40:
02:0a:64:61:cc:53:89:e3:fa:a3:de:1e:33:26:d9:
5c:76:8f:cd:cc:54:25:60:38:73:fd:f7:14:22:48:
5c:48:8c:33:90:c4:08:ce:17:4e:b4:7a:fa:43:9d:
72:22:a0:bf:de:bc:b7:c9:e2:09:a4:de:1c:fe:7d:
88:77:50:63:44:85:14:30:bb:8a:a6:64:89:10:a5:
68:f7:59:00:20:8e:5b:99:c5:bb:ee:5f:d6:bb:b2:
32:73:20:aa:33:14:72:9d:b8:d4:c8:60:2f:18:4e:
ad:d9:10:19:c3:12:31:9c:d8:97:db:6b:31:a3:06:
c8:0d:04:6d:25:01:83:2e:fb:22:5e:bf:1c:e2:01:
f0:d7:44:5c:af:73:07:5f:d8:21:0a:91:4c:56:70:
51:27:34:34:39:50:d4:dd:6c:fa:3e:57:f5:52:b5:
03:2f:40:1a:b6:7b:eb:03:5a:b8:a1:72:b3:18:0c:
96:89:08:0c:d8:50:23:8b:af:32:46:27:27:6d:01:
e8:30:90:5d:fd:96:fa:8a:5c:8b:1a:d5:4f:f1:5f:
e1:12:25:65:07:12:90:79:c1:c4:19:e1:96:0a:2d:
31:b9:33:fd:56:cb:7b:c7:75:78:fc:57:36:c2:86:
2f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EB:05:C3:D9:49:48:A3:D9:FE:14:62:55:D2:3C:6C:71:E7:26:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6952DAD8017111EFB79ECC22017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.120.0/24
Signature Algorithm: sha256WithRSAEncryption
98:44:80:70:a7:47:2c:4f:b7:c3:e3:48:af:45:c4:e2:aa:6a:
e1:63:bc:14:cd:e1:8b:a9:b3:b1:79:0c:11:dd:be:a3:ce:3a:
ee:e9:27:76:8a:78:25:40:e0:8a:f2:6f:be:bc:15:1a:15:e8:
7a:ef:73:1e:6f:0e:56:c7:f9:89:e8:af:ae:1a:b8:3c:37:ea:
88:7c:f8:c7:fa:bb:5d:fa:56:2f:71:30:5e:a1:3a:b1:df:a5:
f6:05:0f:a1:50:34:31:bf:4f:ec:cb:a8:37:8d:cb:cb:41:f3:
f0:1a:20:fe:bd:1d:6c:ff:ed:cc:38:60:a1:00:f2:3b:9b:ec:
c1:0d:43:22:a3:ef:3b:15:76:fc:cd:2c:fd:8c:fc:85:b4:8a:
bb:7f:08:48:5a:7a:73:e7:c8:7e:03:e6:05:98:2d:82:b6:02:
8b:89:04:05:7a:0c:d9:d2:88:49:f9:c2:e0:c4:42:71:80:f8:
6f:e8:3b:81:14:35:ab:b0:de:35:70:c7:fd:20:de:0c:5e:93:
a5:86:c6:ae:dd:f8:96:41:19:ce:82:b3:93:92:b1:94:ca:11:
f9:72:44:5b:1e:fb:44:0c:d5:62:9c:c1:da:31:f1:46:24:0d:
28:98:1a:10:61:fb:c4:d8:07:0c:de:aa:27:84:f5:d7:9c:a4:
1b:9c:b2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:04:35 2024 by rpki-client on console-ams.rpki-client.org