Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77FB202AF48011EEAC67E3C6775412E6.roa
File: 77FB202AF48011EEAC67E3C6775412E6.roa (raw, json)
Hash identifier: 512uNCuMS/1H4LP8NB5hj4ikKF10w+FptOqpAJK/gEg=
Subject key identifier: 50:FB:5D:18:2C:64:62:1A:DF:7A:F7:62:75:F1:59:52:E6:3C:64:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A9AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77FB202AF48011EEAC67E3C6775412E6.roa
Signing time: Sun 07 Apr 2024 01:45:10 +0000
ROA not before: Sun 07 Apr 2024 01:45:06 +0000
ROA not after: Mon 13 May 2024 01:45:06 +0000
asID: 138915
IP address blocks: 154.206.98.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43438 (0xa9ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:45:06 2024 GMT
Not After : May 13 01:45:06 2024 GMT
Subject: CN=6611faa6-1c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:33:7d:19:e7:2a:f1:cc:b1:78:ca:ce:93:60:
65:b8:b9:c0:d8:fa:e4:b1:d9:a0:41:ec:fc:ee:c0:
c4:3d:23:2b:6d:73:fe:b8:a9:8d:23:b9:06:c8:a8:
fa:b9:89:40:ee:65:b2:be:86:f3:73:73:95:ae:d8:
b0:b6:2d:ff:76:4c:d9:17:51:92:af:7b:0e:59:66:
69:e6:f9:5f:d0:cf:56:83:eb:d7:58:3d:87:e4:9b:
de:80:f1:55:2e:0c:26:0b:c2:53:fc:29:e0:11:12:
9b:bc:cd:32:87:33:cb:2b:0c:83:85:73:28:02:dc:
61:96:6e:96:88:f7:48:e1:ac:1f:c1:9f:1d:e4:a0:
61:b0:fa:a6:51:ef:83:35:a3:84:ba:7f:1f:7a:83:
fa:74:45:fb:eb:28:e8:8c:f7:33:ff:b1:3c:17:77:
96:5b:e6:c0:29:04:e6:73:68:1c:65:38:ca:34:fc:
43:7b:fa:77:82:77:d4:f9:23:41:76:3c:57:57:fc:
0c:22:97:66:10:00:91:27:2d:60:1b:87:82:6e:c0:
28:35:be:36:31:a3:a0:16:aa:7c:0c:60:37:7e:77:
28:9c:23:47:36:ee:60:5b:3e:82:b6:f1:59:80:55:
b9:7b:ba:9b:78:d0:11:4d:5d:21:e4:18:cc:19:7b:
2d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FB:5D:18:2C:64:62:1A:DF:7A:F7:62:75:F1:59:52:E6:3C:64:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77FB202AF48011EEAC67E3C6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.98.0/23
Signature Algorithm: sha256WithRSAEncryption
70:19:7a:6f:07:a7:78:d9:6e:61:f8:ca:77:46:da:b3:0a:34:
1f:a9:62:2d:3e:e3:8b:8e:3b:e2:8b:1e:3f:fb:fe:33:77:c5:
e9:23:b4:6f:e0:91:6e:94:a2:a8:05:92:f7:06:8a:00:28:5d:
6d:c2:75:d3:7d:b4:9b:62:b2:d8:97:9b:19:c3:34:99:32:e0:
74:af:d7:db:e8:15:5f:2a:04:9c:15:97:ed:95:ba:da:dd:0c:
b3:d6:99:90:1d:54:7b:8a:5f:a2:ed:d3:f7:ae:90:e6:98:1a:
8b:94:b8:39:83:6b:31:1d:77:e7:4d:8a:d6:dc:c3:1f:90:9b:
93:1e:eb:ba:b4:23:1a:8e:8d:43:e9:a0:37:04:d8:40:49:79:
72:66:8a:09:dc:ce:38:d8:ee:f2:03:33:40:af:e7:ab:cf:19:
0b:fa:6d:2c:1b:6e:61:ce:91:cf:cb:5b:53:7f:8e:b4:b8:b4:
11:b1:54:fa:b5:08:48:d3:2f:1e:35:ed:10:ff:87:1c:a7:47:
cd:24:14:4f:3c:df:a0:e6:07:a0:81:4c:75:15:5b:00:99:ad:
97:b7:0d:26:a6:25:c3:bb:84:ee:33:e0:42:03:65:c5:6b:c8:
d0:1e:4f:98:57:10:84:73:57:43:27:87:5d:f4:b1:2d:8a:f1:
6d:d4:78:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:12 2024 by rpki-client on console-ams.rpki-client.org