Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84961852FEA011ED9A3E57674AD9E6FC.roa
File: 84961852FEA011ED9A3E57674AD9E6FC.roa (raw, json)
Hash identifier: XmnHnr/ZciV3VY3CVrhY7/OP8HpS+JlBPSIPtmILGcQ=
Subject key identifier: 01:0D:F3:DE:BC:5F:14:BD:47:23:A8:E9:D3:BF:31:ED:09:57:70:92
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2852
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84961852FEA011ED9A3E57674AD9E6FC.roa
Signing time: Tue 30 May 2023 04:14:49 +0000
ROA not before: Tue 30 May 2023 04:14:45 +0000
ROA not after: Wed 15 May 2024 04:14:45 +0000
asID: 63888
IP address blocks: 154.207.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10322 (0x2852)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 04:14:45 2023 GMT
Not After : May 15 04:14:45 2024 GMT
Subject: CN=64757839-1063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3e:50:49:49:c4:d3:7f:df:9a:04:bd:b2:74:
d2:d2:1a:53:1d:00:15:29:9c:e8:a4:f5:fe:11:db:
56:12:b7:67:97:0c:c5:f1:74:cc:02:a3:b0:82:95:
04:a1:ad:84:01:e6:86:5f:ad:f5:39:4b:bf:5e:fe:
f4:0f:20:5d:39:fc:0f:22:4c:c2:6e:2d:49:31:81:
0e:05:d8:7c:13:1d:18:7b:9f:63:ba:66:70:1a:4f:
2a:b1:5f:29:8b:4a:ed:a3:c8:37:83:59:9a:c6:cf:
a9:6a:4c:77:e5:53:12:9f:44:ae:ca:a2:34:2f:b1:
ab:30:e8:82:22:02:4b:90:22:16:c2:8e:b3:9c:0b:
cd:16:4a:f6:3d:61:2d:31:ff:f7:2c:e3:26:84:1a:
af:7b:f7:bf:d8:43:5b:e1:70:26:af:a4:e5:fc:ed:
13:89:42:ae:9b:36:ce:97:51:c6:79:7f:7f:72:63:
89:52:41:1c:21:b7:b4:3f:69:ea:1d:5f:22:f2:e1:
7b:81:bc:f8:0e:17:8a:43:1d:e1:da:cd:5f:b3:b5:
0d:d6:65:d1:64:ac:e7:67:03:64:68:16:b6:f5:57:
94:2a:09:15:39:9f:0a:85:93:c7:a6:94:d8:60:18:
9d:52:d4:a7:83:c8:10:33:eb:f9:57:27:d9:45:06:
f5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0D:F3:DE:BC:5F:14:BD:47:23:A8:E9:D3:BF:31:ED:09:57:70:92
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84961852FEA011ED9A3E57674AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.220.0/24
Signature Algorithm: sha256WithRSAEncryption
95:43:c4:8f:6c:df:47:3e:92:81:d7:24:88:38:ed:6f:f2:a6:
09:10:b3:e2:05:d3:03:23:63:17:49:de:50:1d:1d:80:da:67:
89:75:cd:63:87:7b:e1:a5:8a:e3:24:30:93:22:06:df:b9:6f:
33:42:36:71:3a:06:2a:84:1d:04:4a:bc:66:d7:11:46:4c:a4:
5b:a4:5a:71:27:30:06:82:e1:cc:c8:2e:7a:a1:b6:d7:e5:28:
1d:9b:fa:8b:eb:3a:d5:a9:5e:22:65:80:ba:f8:6d:37:c8:48:
18:ab:9a:db:3c:b2:07:88:a0:eb:6e:0d:1c:42:28:e3:7c:30:
0c:e0:ec:60:49:e1:2f:5d:5e:de:ed:d8:10:c4:c6:b5:5e:25:
4e:a0:92:21:0d:e6:e0:e9:46:77:bc:a4:11:8e:ef:8f:27:4a:
ec:bf:58:53:f2:ce:e7:b7:ba:40:97:4f:28:7b:08:f3:78:f0:
10:a2:b1:42:fe:d4:be:5e:3c:a4:43:c7:60:6f:14:31:cb:63:
fe:92:dc:bf:5d:23:e4:51:ec:e8:cb:27:3f:53:5c:2c:31:5c:
67:b6:18:35:e9:8a:35:d2:9c:d4:eb:39:2c:1f:97:2e:1a:18:
94:98:7f:9b:e4:fa:79:3a:0f:ea:7e:47:30:2a:d6:f3:5d:9b:
20:dd:79:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:30 2024 by rpki-client on console-fra.rpki-client.org