Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69F2E0388CE011EEBADEB36D4AD9E6FC.roa
File: 69F2E0388CE011EEBADEB36D4AD9E6FC.roa (raw, json)
Hash identifier: tX7+zuycTDOISaONQAzt5Yf9HXRYpIrr1/HencAaBVg=
Subject key identifier: 1F:16:E2:AD:20:1D:A2:28:7E:D6:34:F2:F9:F4:7F:D8:C2:03:D6:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5537
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69F2E0388CE011EEBADEB36D4AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:49:57 +0000
ROA not before: Mon 27 Nov 2023 04:49:54 +0000
ROA not after: Fri 29 Nov 2024 04:49:54 +0000
asID: 55720
IP address blocks: 154.91.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21815 (0x5537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 27 04:49:54 2023 GMT
Not After : Nov 29 04:49:54 2024 GMT
Subject: CN=65641ff5-3352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:88:83:10:5b:0c:f2:b4:6d:c5:cb:4e:76:57:
62:fe:92:4c:86:31:84:a4:28:36:d6:f0:79:ca:86:
1c:5f:19:f4:f4:e0:f4:5b:f6:5a:d4:6d:45:67:58:
49:e2:91:23:d4:92:7e:2d:c7:f4:1d:6e:91:f1:84:
1d:e4:4e:c1:3e:05:cb:4a:d0:f0:0d:ad:6d:5b:0c:
89:9d:50:67:a0:1b:40:51:12:09:b8:70:1f:28:1c:
4c:65:a8:28:b5:96:df:e8:94:ab:62:c3:9b:f5:54:
2d:ec:24:a7:47:56:16:40:f5:bd:e6:f3:74:c3:07:
cc:0c:ae:44:2a:7a:61:1d:43:f3:1e:d5:b9:eb:bf:
f9:c2:2a:5b:30:ba:4b:5b:f8:1b:a6:6b:09:a7:98:
d6:84:15:aa:26:69:1c:a8:04:74:ad:53:86:90:f0:
05:97:0d:91:ab:78:76:8c:b1:5a:dc:6f:76:ad:5a:
68:55:1c:9b:70:98:7d:c7:91:02:67:e3:c3:0f:b6:
bc:02:88:2e:28:55:db:13:6c:87:24:cd:0c:4d:4e:
7b:f9:4d:f5:a2:12:31:d0:50:9d:2b:21:32:55:b2:
c1:01:dd:79:d3:9f:ef:97:b9:9a:46:77:57:35:e3:
3d:8b:4f:a4:a4:da:d6:1f:58:98:b7:5a:d7:95:c1:
fa:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:16:E2:AD:20:1D:A2:28:7E:D6:34:F2:F9:F4:7F:D8:C2:03:D6:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69F2E0388CE011EEBADEB36D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.146.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:dd:b2:6d:28:c2:87:f8:12:22:24:f9:91:2e:bf:21:d5:95:
a5:bf:7d:6b:7d:5c:b0:57:53:40:6f:7e:67:ec:16:b1:e9:33:
6c:bd:81:8f:a3:9b:56:38:6a:17:ca:7f:01:54:53:ce:33:07:
5b:21:09:7c:73:50:a7:b5:d6:c8:f7:01:1a:d1:fa:96:da:4f:
1a:59:bf:fe:7c:52:08:a5:66:0f:18:df:e2:9d:38:6f:9a:4e:
7e:3e:45:f6:8c:19:45:b2:20:d6:bf:d6:31:26:8f:2e:18:1d:
1c:f1:0a:5e:4f:32:24:86:86:4b:55:30:31:13:eb:59:e8:a5:
d5:4c:37:65:8e:f6:cf:d7:00:d3:7a:97:20:f0:c8:c6:02:50:
1c:3c:7a:4c:69:d8:af:a9:b9:65:63:14:a1:e4:0b:08:33:aa:
c1:14:4a:8f:2e:fb:38:1f:0b:c8:ab:ce:b1:6e:04:20:5f:ff:
e8:29:c0:fe:1d:c7:87:cd:4a:cc:36:a9:8b:c5:0f:e8:75:b4:
ab:e0:39:c2:b8:7a:49:b6:92:59:47:4e:7d:73:63:d1:93:16:
0f:1f:76:f9:ed:74:6d:58:1c:01:9c:f4:03:f7:1a:35:a9:c9:
f7:45:24:f4:47:38:93:5a:24:43:0b:72:b6:1b:bf:eb:0b:e8:
fb:ed:6c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org