Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81F104E2FE1B11EEA1A0B4F9007001B1.roa
File: 81F104E2FE1B11EEA1A0B4F9007001B1.roa (raw, json)
Hash identifier: yeuFhx2r6cIAX4opGZCGE+V5ZtGfkOQZ3fpG2+T/l6U=
Subject key identifier: 73:0C:96:EE:E2:C8:3D:EA:A1:90:9B:38:93:56:FE:B2:72:CE:32:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE56
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81F104E2FE1B11EEA1A0B4F9007001B1.roa
Signing time: Fri 19 Apr 2024 07:07:39 +0000
ROA not before: Fri 19 Apr 2024 07:07:36 +0000
ROA not after: Wed 22 May 2024 07:07:36 +0000
asID: 150698
IP address blocks: 154.197.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44630 (0xae56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 07:07:36 2024 GMT
Not After : May 22 07:07:36 2024 GMT
Subject: CN=6622183b-bc76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a0:99:15:71:87:f2:22:ae:6c:91:bc:d1:e2:
22:38:73:c2:cd:41:f7:39:15:ba:3d:e3:8a:4a:11:
43:b0:10:b3:1f:4d:82:91:7a:d3:05:e1:0a:d0:37:
51:9b:90:51:e2:72:4e:3c:98:33:66:1c:9a:e9:08:
6a:d8:da:cf:92:b1:d9:96:4a:20:00:c9:70:22:29:
63:3f:e9:ac:bb:7c:0e:ee:f8:32:7f:46:b5:97:b2:
74:de:a4:e9:f5:f2:59:e6:7a:56:67:27:bc:dd:d2:
00:72:71:c1:7c:41:6c:15:3e:0d:4d:1d:b8:ff:b7:
af:0d:45:25:f5:aa:9f:d0:2d:3b:59:e0:9d:f6:a1:
83:a0:84:e1:64:0d:88:ba:5f:ec:ff:58:43:7f:04:
64:4b:dc:bb:03:2c:01:0c:fe:7c:af:18:b4:28:cf:
66:f8:bd:e8:80:cc:4f:db:48:d6:8f:ad:bd:c6:ff:
7b:ec:cb:22:8f:26:e9:6e:83:49:3e:2e:05:8a:81:
6f:a9:83:6b:68:94:cd:62:20:e8:5f:d2:45:9e:78:
65:7c:ca:fe:68:aa:c8:34:b0:89:ae:45:43:0e:43:
2d:3f:c6:3e:56:1a:e5:a0:93:f0:d3:a4:dc:8a:e8:
db:64:26:2a:f4:1f:41:74:ed:90:c1:31:22:5d:d6:
4f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0C:96:EE:E2:C8:3D:EA:A1:90:9B:38:93:56:FE:B2:72:CE:32:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81F104E2FE1B11EEA1A0B4F9007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.119.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4a:1c:8a:06:21:08:23:a5:73:38:17:19:e9:a4:82:31:08:
b2:27:a2:31:40:ce:04:a2:f2:fd:5b:dc:45:89:c5:81:90:85:
45:f7:69:99:51:c8:2a:60:73:c3:6e:51:d6:f5:27:1a:d2:38:
65:32:97:a4:3a:4b:af:e6:40:1a:3d:50:50:93:9c:61:c4:d0:
90:c9:5f:51:b1:05:22:ef:82:ec:81:64:ec:5c:9e:0f:e3:db:
e2:8b:9f:29:d2:a5:57:7c:75:a0:2f:2c:07:98:0b:4f:e8:11:
2d:8e:3c:2b:8e:d3:e5:99:76:34:37:19:01:57:15:08:f8:00:
bf:84:c2:ca:1a:5c:59:3d:9d:0a:58:f7:43:61:1f:45:45:63:
41:0e:2d:16:33:2a:d1:93:4b:57:e4:37:05:ef:6e:0a:93:4e:
f4:5c:f8:1a:17:a8:7e:c8:60:61:02:5d:90:01:da:ad:bf:a6:
4a:01:9a:25:91:45:8d:62:e6:dd:26:ef:89:e0:d8:3d:ca:3b:
05:30:84:45:36:86:08:b5:a0:2e:8d:a6:e0:10:f4:e9:b6:8c:
67:ed:9c:25:7c:e3:b8:bc:fd:c4:c0:39:79:56:3d:07:6a:74:
47:f2:55:c6:cf:2e:eb:04:03:75:29:ef:59:a4:ba:62:f8:8e:
3b:29:0e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:30 2024 by rpki-client on console-fra.rpki-client.org