Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72A894B2F70111EEBE78FA6B775412E6.roa
File: 72A894B2F70111EEBE78FA6B775412E6.roa (raw, json)
Hash identifier: wW/MTe9b2z6b4rSNkmjhw0q6dMG/XyygPWhtivvFx68=
Subject key identifier: F8:71:15:B9:8C:CD:00:38:8F:19:04:03:C8:20:58:59:BF:DB:69:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAAC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72A894B2F70111EEBE78FA6B775412E6.roa
Signing time: Wed 10 Apr 2024 06:13:29 +0000
ROA not before: Wed 10 Apr 2024 06:13:25 +0000
ROA not after: Tue 30 Apr 2024 06:13:25 +0000
asID: 142062
IP address blocks: 154.196.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 06:13:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43692 (0xaaac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:13:25 2024 GMT
Not After : Apr 30 06:13:25 2024 GMT
Subject: CN=66162e09-85aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2a:8a:ff:86:fe:0c:ce:f4:24:77:0a:fb:c9:
3f:65:33:b9:71:d2:ed:70:90:9d:a6:7e:b5:2f:cf:
40:df:7c:44:7d:75:42:f3:96:c0:62:96:f5:1e:db:
4d:11:d3:8b:47:a2:0c:fd:98:15:2c:d2:ec:4a:f2:
bc:45:d6:38:5d:f2:03:70:9f:c5:53:ab:62:df:7e:
d4:e5:4d:cf:41:0c:27:de:de:ba:14:47:02:a0:5f:
18:1b:16:17:7f:fd:3b:50:14:c8:18:9d:35:18:80:
01:df:20:4e:18:86:0f:6c:c3:7e:22:6f:c3:9a:1c:
41:e3:be:df:d3:80:1c:9a:3b:95:4c:43:c4:98:0e:
fa:0b:1f:b8:52:3d:f6:a0:ae:95:ad:56:cd:02:20:
ca:36:71:4e:0b:f1:a4:0a:85:e1:1f:51:f6:7c:25:
0d:54:58:e6:ca:5c:0f:6d:92:7e:b8:93:c8:64:33:
e0:6d:b2:76:78:90:8b:8c:9f:fa:5b:79:8a:95:5b:
9a:16:d9:1e:72:16:fd:57:c0:ad:8a:d3:12:80:9f:
40:43:4b:92:a4:d6:61:0f:06:9b:56:f6:1f:3c:71:
7f:68:0c:68:15:62:75:07:35:65:f6:54:b5:56:50:
f0:84:f1:48:4f:38:55:db:86:31:bb:1a:e2:b5:91:
4c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:71:15:B9:8C:CD:00:38:8F:19:04:03:C8:20:58:59:BF:DB:69:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72A894B2F70111EEBE78FA6B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.96.0/19
Signature Algorithm: sha256WithRSAEncryption
06:45:27:56:2e:b9:64:84:df:6e:5b:6d:29:94:ad:41:95:0d:
10:ab:4c:12:65:10:78:9b:57:40:80:78:fb:24:94:f0:f7:14:
55:b5:88:e0:b3:5d:b5:81:22:64:ed:72:8c:45:05:bc:dd:7d:
19:92:9e:75:47:a1:8e:53:ae:27:24:45:d1:e8:06:6f:fb:57:
ea:26:ea:8b:dd:1b:ab:24:32:82:7c:36:7c:09:d7:e3:03:6d:
98:f8:31:30:f1:36:f2:34:2f:24:9e:1c:a1:99:e6:77:91:af:
ff:77:a8:08:7b:68:15:a2:40:8c:20:b2:92:fa:f1:de:2f:06:
e2:92:e4:5b:1e:4b:37:35:f6:a5:00:7d:03:2d:f1:b1:12:52:
22:a6:ca:55:24:d3:d4:a6:c5:9a:88:c2:ff:4c:42:91:6b:3d:
b7:75:9f:54:b2:05:83:cd:f3:86:70:03:50:55:8d:8d:62:f0:
28:8b:ef:8b:38:f6:31:98:ca:66:0d:71:2e:2f:00:af:80:e0:
54:2d:1d:ae:67:cb:55:cd:c6:d7:63:37:31:d2:b7:f6:53:df:
be:8a:9a:fa:02:3a:0a:58:14:97:39:bd:64:10:79:cd:c6:2e:
43:25:c4:81:85:2c:c1:00:20:4f:d0:67:f4:f8:07:96:d4:5d:
9b:52:bb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 12:50:09 2024 by rpki-client on console-ams.rpki-client.org