Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D15B5C8FE1911EEAB5C6C67017001B1.roa
File: 7D15B5C8FE1911EEAB5C6C67017001B1.roa (raw, json)
Hash identifier: +PctQZzn0jx42GvJyfXhlp/dqrrAvnbegJyWqtcbrPQ=
Subject key identifier: F7:95:3F:EF:47:B6:AB:77:87:55:F6:C0:41:42:12:B8:86:F9:10:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE48
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D15B5C8FE1911EEAB5C6C67017001B1.roa
Signing time: Fri 19 Apr 2024 06:53:12 +0000
ROA not before: Fri 19 Apr 2024 06:53:09 +0000
ROA not after: Tue 21 May 2024 06:53:09 +0000
asID: 23470
IP address blocks: 154.214.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44616 (0xae48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 06:53:09 2024 GMT
Not After : May 21 06:53:09 2024 GMT
Subject: CN=662214d8-8267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:1b:fc:b3:4e:de:25:8e:6e:6b:33:da:8a:3d:
f4:17:b7:12:8a:44:56:3e:29:9b:83:b5:7c:b8:c1:
13:90:71:ef:8c:74:d2:0e:83:5a:e9:64:c8:2d:8e:
8f:1e:c3:db:89:c4:1a:49:6c:85:06:fd:da:9b:17:
9c:33:9d:7e:a0:c0:ea:2b:8e:3e:95:76:68:30:59:
fb:c3:30:04:b0:65:e7:fe:d2:85:5c:28:7c:ab:99:
9f:30:fb:74:b7:b4:c1:e7:f8:d9:fb:bc:61:d4:57:
61:3f:86:2f:5c:27:a3:76:f3:a8:16:df:49:12:a1:
8a:de:c6:ca:18:de:d4:d3:a6:23:c7:36:b6:5d:63:
08:d5:2f:1e:2c:11:b6:4e:db:9d:5a:72:6f:23:a6:
1b:0a:3f:55:7c:85:d4:8c:a6:70:b8:77:a4:ec:0c:
f2:ea:3c:22:da:1e:5f:9d:68:ba:8e:64:c7:81:d8:
ef:76:48:a7:11:78:a8:e5:9c:b2:9c:52:36:e1:a4:
b1:46:67:60:f9:71:84:8b:a3:bf:d5:57:ee:15:41:
bd:5e:3c:ab:8f:bc:01:99:fc:ef:d3:dd:f3:fa:76:
8f:18:44:a6:e9:cc:c8:0b:d1:62:a2:71:27:1e:0f:
b7:9b:6a:73:d4:d7:6f:1e:d2:a9:05:7b:2e:1b:e6:
d6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:95:3F:EF:47:B6:AB:77:87:55:F6:C0:41:42:12:B8:86:F9:10:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D15B5C8FE1911EEAB5C6C67017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.1.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d8:79:e8:99:23:59:35:30:8f:d0:bf:c7:d5:32:dd:4e:3a:
3a:c1:ac:4e:ca:d5:37:00:85:67:c1:ae:15:7b:9d:e3:77:dc:
f6:8a:13:80:4c:37:dc:23:10:c0:7a:02:cb:a0:31:a9:8e:96:
0c:1c:83:f9:5f:55:c4:cb:63:77:be:8c:ed:f4:35:f8:58:92:
ac:8f:d4:7e:9f:5e:c8:1e:1c:bb:0e:42:6a:26:f8:ba:86:1f:
71:47:37:e7:b8:7a:10:f0:d8:2a:ec:64:26:01:78:fb:6a:0b:
b2:09:63:20:89:09:60:af:df:be:d9:c4:c0:b6:45:d6:42:03:
60:de:47:7a:b3:e5:1c:42:6d:58:63:d0:fb:f0:9d:e2:03:d8:
69:7a:e9:17:fb:90:11:f9:5e:3c:ee:91:8a:3d:a5:ec:a5:93:
3d:31:45:6c:dc:ca:2d:7c:d8:76:ef:ea:3f:0a:ce:ae:18:55:
ae:b9:4c:91:e6:3e:cc:16:34:a0:65:b8:aa:96:e5:f8:15:25:
3a:96:19:8b:a3:a6:08:f8:ba:75:5e:62:5f:06:9c:68:8e:0f:
1e:37:bc:55:78:1a:c0:8b:5e:7c:d9:8e:45:c3:ff:83:19:2d:
fc:9e:d5:c9:97:9d:11:f5:0b:1a:ac:9b:71:df:2f:3e:bd:b1:
4a:99:67:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:29 2024 by rpki-client on console-fra.rpki-client.org