Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3F3EF4ED0111EE8C26029E775412E6.roa
File: 7C3F3EF4ED0111EE8C26029E775412E6.roa (raw, json)
Hash identifier: UOHluEe5qkXnUOaok4uxZUHH3oWTYb1HIue52e8u7lk=
Subject key identifier: 51:CC:80:D0:5A:D9:78:08:D9:7A:B5:95:8C:FA:3F:EF:BA:5F:72:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3F3EF4ED0111EE8C26029E775412E6.roa
Signing time: Thu 28 Mar 2024 12:48:33 +0000
ROA not before: Thu 28 Mar 2024 12:48:28 +0000
ROA not after: Sat 15 Mar 2025 12:48:28 +0000
asID: 133448
IP address blocks: 154.89.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42720 (0xa6e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 12:48:28 2024 GMT
Not After : Mar 15 12:48:28 2025 GMT
Subject: CN=66056721-7128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:29:22:b5:ea:fb:93:da:d7:2d:3b:ef:42:7a:
43:dd:37:70:27:ec:56:cb:2e:40:d9:2a:08:a7:75:
6b:05:8e:a6:e0:b7:6c:ca:fd:58:fc:74:85:34:3a:
ca:a3:c9:ac:7d:c4:86:92:a8:34:6f:58:a1:03:d3:
0c:8f:46:f5:56:2a:58:9b:3d:eb:e9:46:8f:a0:3c:
99:db:3d:b1:94:03:bc:e8:c1:78:ef:b1:40:51:44:
cc:c8:6c:20:c0:78:2e:1b:5e:f8:6f:e0:4d:23:1b:
df:01:27:db:ae:41:da:f8:4d:5f:07:e6:65:10:c8:
f7:16:f7:c8:63:2a:75:75:c2:3d:02:6d:3d:72:68:
da:24:d0:bf:4e:a5:3d:3b:1e:0c:19:89:43:ce:d2:
46:73:42:77:cf:c6:65:9a:9a:f5:71:b8:ca:e9:dc:
87:08:63:95:b1:9f:41:1e:af:5f:94:00:e9:c2:bc:
a9:b8:47:89:15:7d:8b:4a:0c:0c:1c:dd:cc:2c:e3:
2f:4d:1f:44:0d:b1:eb:d1:18:55:a7:31:e5:11:b5:
18:95:a3:95:6c:86:12:8c:69:ac:ae:a6:d2:49:d2:
24:aa:38:75:b0:c2:b2:b8:6d:48:a8:aa:1b:1b:ad:
74:03:23:0c:87:2e:33:ea:0e:ef:b3:f1:cd:92:09:
70:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CC:80:D0:5A:D9:78:08:D9:7A:B5:95:8C:FA:3F:EF:BA:5F:72:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3F3EF4ED0111EE8C26029E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.8.0/22
Signature Algorithm: sha256WithRSAEncryption
80:5a:4f:30:28:58:9f:d9:2c:2a:ca:82:e4:7c:94:40:e8:3a:
c2:23:06:37:51:e2:3c:8c:58:94:22:d6:a7:2f:d1:d6:80:c4:
c5:1f:fa:7a:20:41:7c:5b:7b:90:9e:39:f9:b9:de:25:52:86:
f9:58:e3:a7:e1:65:1b:30:ad:83:d8:ea:d6:c4:98:6d:e9:1f:
f9:07:47:37:d3:50:6d:9c:4a:12:e1:42:c6:3f:f4:8f:59:b3:
dc:b4:3e:d1:75:dd:37:b7:bb:f1:aa:6c:16:48:ba:cd:66:23:
9a:71:40:e6:41:dc:ad:01:35:b4:d0:c9:fc:34:36:fa:79:dd:
1d:21:82:68:a8:5d:f3:cb:2e:93:ff:80:b8:75:4a:2a:5c:77:
1a:30:a4:16:92:32:81:44:24:27:40:6f:c7:4c:e7:e8:4e:c8:
b7:0a:b4:d7:42:15:36:4f:1d:8d:19:05:78:36:d1:0b:e9:ff:
06:52:64:81:9c:ef:20:0a:3c:f6:35:4f:ec:e5:67:a5:35:71:
b5:60:6b:5b:1b:cb:2b:a6:43:ac:8c:65:1b:6e:6d:70:c9:f6:
54:ed:28:34:a4:d9:e7:6e:92:ab:86:fe:62:2e:21:1d:cf:57:
55:03:f4:99:6c:06:a1:9e:f6:fe:c3:1a:c5:8b:39:d3:8d:2c:
07:43:97:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:13 2024 by rpki-client on console-ams.rpki-client.org