Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D79C168539B11EE928A4C514AD9E6FC.roa
File: 7D79C168539B11EE928A4C514AD9E6FC.roa (raw, json)
Hash identifier: KYUsvUj6jtmLU7Gkb+q4vRFmVw/PGUMPsvPB/PasMvI=
Subject key identifier: 7F:6A:62:90:81:C6:26:64:5E:AA:A4:77:58:AF:59:14:97:4F:37:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D5F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D79C168539B11EE928A4C514AD9E6FC.roa
Signing time: Fri 15 Sep 2023 07:42:59 +0000
ROA not before: Fri 15 Sep 2023 07:42:55 +0000
ROA not after: Sat 08 Jun 2024 07:42:55 +0000
asID: 138152
IP address blocks: 154.94.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15711 (0x3d5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 07:42:55 2023 GMT
Not After : Jun 8 07:42:55 2024 GMT
Subject: CN=65040b02-de66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ba:74:e7:42:a7:cc:8d:85:9c:20:30:cc:ec:
f1:d7:0e:27:b4:67:91:1b:76:4d:8b:95:33:55:c6:
98:8c:9a:8e:33:1c:54:73:17:7d:63:af:11:1d:53:
03:fe:f9:c4:fc:5a:73:eb:72:79:01:7f:8f:42:2f:
99:a9:3c:9f:58:d4:f0:fb:c6:c5:6e:9f:3f:d2:a9:
3b:6f:04:50:8d:a7:ad:31:98:08:9d:31:b3:38:36:
2b:d6:d5:1f:6b:74:93:be:a7:4a:d9:89:29:ce:27:
2f:77:32:74:62:8a:b3:00:c2:a7:1a:d4:06:06:bc:
6f:5d:9c:3b:1e:cf:61:80:45:29:7e:a2:da:44:25:
f0:1b:cc:a3:7b:ac:17:6c:4e:4a:18:32:f8:1c:58:
09:e8:d4:28:ed:db:19:47:f5:f2:24:e1:a3:9e:01:
78:0a:fb:40:c1:62:ad:b1:9a:28:d1:a3:02:c3:81:
b6:c4:bd:c9:61:6b:07:c6:f2:69:36:86:ec:da:cf:
59:71:6b:f4:0d:d5:5b:bc:1f:24:a5:ac:88:b7:40:
fe:d7:ed:ff:f7:20:ee:71:5d:21:6c:39:79:91:3d:
82:75:22:df:88:c6:8b:f9:d5:d5:d0:f3:a0:0c:f7:
32:e3:3c:5c:36:a2:39:d2:33:ca:a1:c3:d8:8c:39:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6A:62:90:81:C6:26:64:5E:AA:A4:77:58:AF:59:14:97:4F:37:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D79C168539B11EE928A4C514AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.6.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:9c:07:16:f4:2a:9b:d4:bf:02:da:49:fa:91:05:87:e3:20:
74:f4:1a:7a:b4:93:23:84:01:5a:3a:9a:7b:f0:2e:33:cd:e5:
cf:09:1c:77:5b:c9:cd:6a:cb:70:ab:9c:3a:75:a7:9f:d0:dd:
0d:53:39:6c:57:b0:56:03:3f:9c:18:7b:5f:16:7f:e6:3d:e0:
02:98:d9:6d:b4:bb:30:7e:76:ab:66:1d:0d:5d:11:2d:e6:78:
6f:60:83:3c:db:4a:42:4f:5f:67:10:a7:8c:b2:12:2d:f7:f7:
ae:84:53:59:2e:f1:6a:e3:20:51:d9:8d:1a:a6:b6:91:6c:19:
8e:13:c9:16:43:66:44:de:8e:1a:16:87:7c:a9:5d:c1:f0:d8:
41:b1:dd:6c:54:02:0a:90:9d:d0:0d:25:5a:a8:aa:0c:31:e6:
54:94:eb:6f:94:56:19:92:1e:e5:f4:98:80:82:46:34:2a:c8:
09:8a:9c:1f:93:37:e4:e5:ba:e9:2b:4f:51:78:39:1d:b0:d3:
d9:76:99:c2:e8:1c:a1:24:04:a9:94:99:e7:d2:e8:72:16:58:
7c:11:f0:94:5e:64:df:6c:a7:5e:3a:36:9a:69:cf:77:6f:88:
1a:f6:2a:86:1c:f3:b3:ab:a8:11:9b:50:a7:bb:99:86:24:95:
97:03:11:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:29 2024 by rpki-client on console-fra.rpki-client.org