Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F986A9C53A211EE9E80AC684AD9E6FC.roa
File: 7F986A9C53A211EE9E80AC684AD9E6FC.roa (raw, json)
Hash identifier: za9E/fBoRlRqETeshz1OkuL56FmDs7NQThgUYr1x4O0=
Subject key identifier: E9:7D:73:BD:AB:94:1A:A3:05:7A:36:04:02:A0:CD:57:02:58:61:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D9F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F986A9C53A211EE9E80AC684AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:33:09 +0000
ROA not before: Fri 15 Sep 2023 08:33:05 +0000
ROA not after: Sat 08 Jun 2024 08:33:05 +0000
asID: 138152
IP address blocks: 154.211.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15775 (0x3d9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:33:05 2023 GMT
Not After : Jun 8 08:33:05 2024 GMT
Subject: CN=650416c4-f671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:2e:d3:70:dc:5d:53:65:5a:a8:26:a4:8a:
37:b8:7b:41:f1:b5:cd:0f:ad:46:bd:5f:d4:08:c1:
a5:d5:ce:f8:0d:fc:78:04:c5:69:cf:95:63:95:47:
fb:a0:4b:cf:72:98:08:55:3b:01:7e:1a:eb:f0:f1:
fb:7f:8e:e3:1a:da:e8:65:0b:8d:31:4f:1e:c7:b9:
fb:24:bd:d2:2c:34:23:92:c8:14:ab:cc:b0:79:55:
5d:85:c7:e9:e6:ad:45:ab:d5:bc:80:d1:64:36:d2:
3f:73:ce:dd:79:0a:35:3d:5c:42:a2:49:07:fd:e6:
60:25:d7:27:e8:32:20:d8:e7:50:80:a7:6e:45:f3:
93:00:af:9e:3f:dd:12:c1:e5:e6:e2:58:87:31:02:
d2:24:f8:50:a6:0c:af:65:94:58:67:38:82:0c:08:
a0:56:02:8d:14:4c:d6:69:52:12:a8:98:ab:72:ec:
21:ea:f5:a4:8e:e1:97:1f:02:94:f6:aa:c4:38:a9:
fe:1e:98:5c:ae:34:5d:5d:e0:d8:29:d7:58:9e:40:
e8:80:ba:8a:2a:7b:f2:3d:8a:82:75:f3:99:a2:5a:
27:ca:a4:bb:31:24:ee:e0:00:08:1b:65:4a:2c:c4:
25:99:e7:8d:6f:1d:68:5e:12:f6:11:11:d4:8f:1c:
c0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7D:73:BD:AB:94:1A:A3:05:7A:36:04:02:A0:CD:57:02:58:61:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F986A9C53A211EE9E80AC684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.15.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:b5:85:e2:b9:6b:33:3e:63:c0:a9:db:80:ea:47:da:1c:15:
a6:ea:0a:89:98:b6:e1:ea:21:4b:f1:dc:70:cd:c6:0a:f0:40:
b3:c3:4d:b0:57:f8:6a:84:9f:b6:56:d4:bf:5c:f6:15:1a:41:
34:f6:79:e6:04:16:6c:c9:20:1d:6b:72:81:61:9c:b9:75:65:
02:ee:65:24:34:7d:ff:cd:39:54:f8:af:2d:52:8a:d1:71:0b:
83:88:a4:12:62:62:36:1f:5b:41:d8:01:67:69:a7:95:c7:04:
12:4d:3a:ba:01:d8:2a:9a:61:3a:00:b0:0b:e0:57:8b:fd:14:
e1:94:29:60:9a:25:cf:cb:9c:b2:dc:ab:33:2e:aa:44:f4:86:
62:27:69:4b:c7:1c:a8:7b:25:59:4c:ad:45:dc:f2:bf:1f:e7:
a9:7c:81:f9:6c:b0:d4:cf:8a:f4:2e:b3:ee:93:b4:62:80:cc:
14:59:5e:71:e5:08:5e:11:32:14:d2:f9:9a:33:a8:0c:e7:24:
d9:0e:99:9a:ea:66:79:4d:d4:bb:c2:b0:16:05:63:1d:a6:03:
44:81:0c:cc:37:94:74:1b:3b:84:d0:a6:a5:f0:2d:ff:81:f3:
c2:04:38:f1:b3:04:4b:ac:e9:9a:f7:bf:4e:84:ca:84:92:fd:
95:79:d4:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:23 2024 by rpki-client on console-ams.rpki-client.org