Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C65E278F7C211EE920E193A017001B1.roa
File: 6C65E278F7C211EE920E193A017001B1.roa (raw, json)
Hash identifier: OEshV5p/Y1TLJvG4vROyXBTRG2IjRfTUdRlNAb7wWQQ=
Subject key identifier: 30:88:66:62:12:9F:CD:33:61:AB:3D:50:E5:97:70:A7:BE:32:53:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB3B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C65E278F7C211EE920E193A017001B1.roa
Signing time: Thu 11 Apr 2024 05:14:51 +0000
ROA not before: Thu 11 Apr 2024 05:14:47 +0000
ROA not after: Sun 19 May 2024 05:14:47 +0000
asID: 138915
IP address blocks: 154.93.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43835 (0xab3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:14:47 2024 GMT
Not After : May 19 05:14:47 2024 GMT
Subject: CN=661771cb-e16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bd:55:e0:dc:41:a3:69:7c:25:d6:bd:5a:7a:
61:97:cd:7d:6f:69:a0:72:85:31:d7:55:36:7c:b3:
5b:75:bc:0c:8b:77:4a:c8:a6:1a:85:30:b1:86:c3:
c8:a8:0a:a5:41:78:ff:88:c0:85:fa:b3:6b:6c:f2:
23:2d:8a:b2:77:b9:de:fd:52:7e:40:de:7d:91:33:
63:39:06:61:28:18:3b:2a:98:04:9b:a3:54:64:9b:
d8:25:d1:1d:8a:25:1e:ea:1d:45:6a:eb:78:06:e0:
93:e1:54:66:b9:ad:e8:93:f2:95:85:2d:86:84:39:
95:f9:a4:b1:ac:bf:6c:85:01:2d:7d:55:d5:26:c4:
5f:67:f1:13:33:cb:12:15:ba:b3:53:0c:12:22:99:
01:ef:25:ff:e5:e1:c7:00:6e:ca:f7:af:be:64:91:
88:86:46:a0:b0:5b:6f:2b:4b:8c:2a:32:ca:fa:84:
a7:71:d8:2f:48:d0:e0:e6:5e:c4:93:15:e9:d1:dd:
6f:a5:d8:b1:a9:7d:26:cb:50:08:c5:b6:a6:a9:f3:
7c:1c:fa:31:5d:88:f3:8a:18:03:5a:e5:42:7a:85:
8b:77:76:1b:c4:b2:24:a9:0d:5b:9b:13:93:80:03:
97:d5:36:80:51:e2:bb:fb:63:7f:68:13:09:87:1b:
09:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:88:66:62:12:9F:CD:33:61:AB:3D:50:E5:97:70:A7:BE:32:53:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C65E278F7C211EE920E193A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.38.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:a8:5e:f8:f3:87:5b:06:04:73:99:81:fc:68:8e:30:c6:7c:
79:50:9a:2e:43:70:43:d2:53:00:da:f9:57:a5:50:95:cb:c3:
b2:dc:2f:e4:2f:3a:a1:b4:fc:53:78:f0:02:8d:58:00:02:62:
23:39:c5:b8:5d:1a:1c:eb:28:fc:23:f2:8a:2f:bb:0e:3a:ee:
d6:59:34:97:10:11:47:92:19:c8:04:9f:69:04:b3:5c:69:49:
54:2a:18:83:a1:b3:38:77:6b:09:3e:40:65:17:8c:8a:c5:1d:
2c:dc:bb:17:12:20:3e:5d:17:22:2d:f9:a7:45:79:dc:30:ac:
3a:38:b5:16:c4:79:2f:e2:c6:bc:2c:e0:66:ae:67:c8:d4:e5:
09:10:81:09:9b:48:21:8b:d6:2d:91:bd:6f:54:6e:7e:69:d4:
85:fe:39:30:6d:10:e4:e4:09:cf:33:17:c2:02:e0:4c:67:e7:
f6:f5:8f:48:19:fa:63:3e:b3:14:79:76:69:1c:ec:ce:02:56:
0b:95:56:71:c6:a8:be:07:06:3e:08:66:7e:ef:33:b9:24:9d:
7b:fd:1e:c1:2b:a4:11:ee:77:e6:78:3d:15:2c:12:91:7a:6d:
01:3f:f2:29:3d:f8:39:6d:a3:42:a0:b8:83:34:70:ce:ec:d7:
ab:dd:13:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org