Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72C5BF20F65111EE9EF14186775412E6.roa
File: 72C5BF20F65111EE9EF14186775412E6.roa (raw, json)
Hash identifier: ilor21VyB1CA2/DohAxG4zfDD/0Kde0PlWLqsV2bdb0=
Subject key identifier: 89:F0:43:4B:07:D9:1D:9D:3D:5F:05:21:6B:FC:3A:46:99:49:98:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA5F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72C5BF20F65111EE9EF14186775412E6.roa
Signing time: Tue 09 Apr 2024 09:13:37 +0000
ROA not before: Tue 09 Apr 2024 09:13:34 +0000
ROA not after: Sat 11 May 2024 09:13:34 +0000
asID: 138915
IP address blocks: 154.203.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43615 (0xaa5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 09:13:34 2024 GMT
Not After : May 11 09:13:34 2024 GMT
Subject: CN=661506c1-0d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d2:65:ad:8a:a8:ba:37:fd:14:51:fb:1a:90:
ea:71:d0:09:a5:ad:b1:17:98:12:a0:a9:d5:3f:fe:
8e:1c:a5:85:88:48:72:ec:c5:e6:38:54:1b:46:0c:
5a:3d:75:42:21:28:a7:a9:e3:28:13:1a:02:a1:39:
2f:75:d2:b4:34:78:82:b4:e8:91:f6:e7:27:c1:95:
43:8d:cf:13:98:8b:c0:f0:91:0b:64:a5:a5:99:d5:
21:6b:e0:19:d3:01:f3:83:bb:2d:b9:62:d8:e4:72:
14:38:9a:c0:46:4f:8c:ae:ed:a3:29:89:11:2f:cc:
62:d9:4b:ce:71:a3:46:3c:bd:d9:14:4b:95:aa:95:
b3:c6:af:b5:2c:97:76:5e:66:9c:6a:a0:60:3b:5a:
b3:c9:db:bd:fe:30:5b:10:a5:5c:cb:5e:50:4d:3d:
3e:96:f7:00:f3:35:d9:d0:59:2d:5f:d2:73:1c:3d:
57:50:d2:a2:aa:0b:7c:68:3c:75:c0:ea:92:c0:c5:
cb:01:dc:37:dc:6f:f4:94:24:cc:a6:74:f4:fa:80:
91:12:72:21:26:b4:77:f7:30:cd:cd:1e:f8:5c:48:
f7:e2:d2:25:6f:4d:ac:f7:52:30:fa:1d:77:3a:44:
37:51:76:0d:ac:32:0d:f5:ad:cb:41:2d:47:27:71:
b3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F0:43:4B:07:D9:1D:9D:3D:5F:05:21:6B:FC:3A:46:99:49:98:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72C5BF20F65111EE9EF14186775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.150.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:67:b4:50:d9:bc:05:6f:6f:c2:47:eb:52:5a:f5:fe:57:47:
ee:fd:6f:61:eb:32:a4:ee:45:af:2c:ad:b4:68:d2:59:72:bc:
16:a7:49:b9:72:a3:6f:64:b2:22:c0:76:bf:c4:47:ec:fe:40:
d3:70:67:f4:12:41:59:38:e6:8f:c1:0e:ea:53:5a:ac:28:41:
02:4f:f2:66:fc:c4:13:d9:52:6a:89:8d:6b:e1:d0:34:5b:3d:
86:ee:0a:3a:0e:e1:f9:a9:df:21:2f:02:3a:74:55:6e:97:fb:
c3:50:62:74:3b:53:50:16:ce:cd:da:53:b6:ec:50:4d:95:9d:
02:8a:45:dd:da:ae:16:be:c2:ee:4f:56:e6:26:07:42:80:89:
55:a9:bb:f2:40:85:ba:33:00:f0:d5:c4:1c:a8:07:11:fa:cf:
85:9c:d5:a4:43:3f:68:0d:c3:15:94:f9:09:0f:74:54:e0:d2:
fe:19:01:36:cb:c9:1c:bb:66:24:ca:2e:7d:ea:21:20:f2:85:
f8:e6:fc:44:3f:bb:a1:61:e2:6a:c7:af:c9:3e:39:03:36:9c:
ce:87:ec:73:1b:8c:4c:1a:eb:1f:21:5d:3c:02:2c:9f:06:7e:
d9:dc:c6:c2:f8:b5:c3:1c:46:67:be:29:66:1d:a4:68:4b:c3:
65:64:7c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:27 2024 by rpki-client on console-fra.rpki-client.org