Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7633C210F70511EE9D003B89775412E6.roa
File: 7633C210F70511EE9D003B89775412E6.roa (raw, json)
Hash identifier: qUxlHYzYD9e48bVYK706tMXz1h4EIEFm4wyIsrqKCv0=
Subject key identifier: 06:1C:35:B6:32:5F:58:72:3C:F3:04:1E:36:62:33:1F:0C:62:75:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AAC8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7633C210F70511EE9D003B89775412E6.roa
Signing time: Wed 10 Apr 2024 06:42:13 +0000
ROA not before: Wed 10 Apr 2024 06:42:09 +0000
ROA not after: Sat 20 Apr 2024 06:42:09 +0000
asID: 139646
IP address blocks: 154.216.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 06:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43720 (0xaac8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:42:09 2024 GMT
Not After : Apr 20 06:42:09 2024 GMT
Subject: CN=661634c5-38c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:a8:92:6a:18:5d:59:1f:b4:84:84:67:89:
a6:50:bd:30:56:f5:4d:fe:59:b1:23:22:4b:9b:b5:
9e:ec:96:71:15:30:bf:29:d3:b3:ab:08:06:49:7e:
93:0e:7b:2e:40:35:d2:a0:fe:42:f3:65:c7:ca:0b:
06:e5:51:a0:f0:7e:2c:d8:a0:34:14:05:89:f8:d5:
e2:ef:a0:21:d2:19:f1:4b:78:80:98:2a:fe:8c:bd:
5c:6d:62:3e:ad:52:51:5a:b3:5a:2e:89:d3:9f:27:
a4:56:7b:78:77:27:8e:48:9c:e0:b1:d5:0f:e1:c6:
ea:0e:4c:e0:94:cb:c3:94:76:87:99:85:f3:91:14:
57:f8:f4:a8:f1:bc:be:ba:14:29:c7:cb:f2:36:ff:
a8:92:85:24:72:c6:ec:45:b9:58:c1:9e:c6:2b:e5:
c8:90:3d:5f:c3:2e:46:38:02:7d:c8:48:02:c4:90:
44:19:c9:ac:38:40:5c:3f:63:7f:c2:a9:f2:55:04:
e7:d7:6b:6a:43:21:fb:74:7d:5e:75:05:80:52:4d:
56:ad:e7:9e:5d:44:3c:62:11:64:6b:a4:95:f0:7b:
86:bc:49:d7:dd:ea:f5:a6:4d:1e:07:46:94:b9:72:
3a:9b:72:d8:1f:91:70:71:46:c1:25:10:b0:6b:8e:
17:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1C:35:B6:32:5F:58:72:3C:F3:04:1E:36:62:33:1F:0C:62:75:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7633C210F70511EE9D003B89775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.128.0/18
Signature Algorithm: sha256WithRSAEncryption
c9:5c:a9:8d:b2:14:a8:d2:dc:57:2d:0f:9c:d0:1d:18:43:76:
fc:0d:c6:02:22:42:8f:35:99:c1:28:92:a6:ee:b2:18:90:0a:
09:a6:b9:b4:58:c9:d3:c4:9f:ee:7f:d1:a6:33:20:13:50:84:
91:b3:96:4e:6c:c9:18:a9:bd:eb:b4:0c:24:80:3b:1f:28:b1:
b5:c3:4c:08:ad:20:c6:93:73:96:ee:2a:36:8e:38:9b:96:53:
fa:3d:24:c0:a2:df:75:a0:6b:cd:d9:5a:b9:0c:8c:69:83:4d:
78:e5:b7:c4:2c:4f:73:00:9d:64:65:7f:85:8f:b2:e6:45:5f:
7d:4c:b1:a0:fc:c1:a3:37:47:da:da:04:e4:7f:d3:dd:d3:03:
09:fa:ef:97:d9:1f:19:46:ae:b7:61:1a:0d:f5:19:4d:db:36:
89:10:c4:fb:34:4a:dc:75:73:0d:11:df:56:ca:24:ba:be:b4:
43:68:89:62:8f:47:e2:f1:ab:9c:5b:c8:1f:17:38:3f:d6:7b:
4e:76:95:89:ce:52:a9:3c:4e:20:05:e0:bd:e8:17:d1:b2:a3:
63:0a:c9:ca:66:a9:f8:bc:c2:c6:07:b7:16:99:d0:a6:83:bb:
d1:0f:ba:29:29:5d:a8:97:d3:04:3b:1a:7e:79:bb:74:04:9e:
2d:af:5f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:39:07 2024 by rpki-client on console-ams.rpki-client.org