Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/863432BE717F11EE9E9F59244AD9E6FC.roa
File: 863432BE717F11EE9E9F59244AD9E6FC.roa (raw, json)
Hash identifier: 6vgcyQcEU51ymIunk8BlF/Y2r+0TwYEffLzEtCeLkeE=
Subject key identifier: 03:9D:57:AB:16:E2:11:73:34:03:F6:78:DC:55:96:4F:3D:DA:07:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 46A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/863432BE717F11EE9E9F59244AD9E6FC.roa
Signing time: Mon 23 Oct 2023 08:38:22 +0000
ROA not before: Mon 23 Oct 2023 08:38:19 +0000
ROA not after: Thu 17 Oct 2024 08:38:19 +0000
asID: 137443
IP address blocks: 154.91.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18083 (0x46a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 08:38:19 2023 GMT
Not After : Oct 17 08:38:19 2024 GMT
Subject: CN=653630fe-ce16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fb:ec:5c:cd:bb:bd:0a:50:81:4b:aa:18:de:
77:a8:58:85:f2:57:46:a0:fd:a4:03:76:3b:e1:67:
8a:be:c0:0a:7f:34:53:7c:36:26:3f:99:b1:42:e3:
2c:c6:e4:cd:24:71:e4:6f:4c:3d:0f:76:f0:7c:d1:
03:65:d4:4a:17:9c:48:22:a6:30:e1:a6:d6:1e:b3:
f7:8c:f2:df:c9:ba:84:07:b2:ae:38:3e:7e:cb:43:
f6:d8:b9:06:3f:79:59:45:01:7a:3a:74:6d:0c:3b:
9e:c5:dc:c7:c1:b6:77:f9:0e:42:57:fc:b1:be:6a:
f0:c3:ad:23:f5:76:54:75:e1:a6:d2:99:09:bb:d0:
b3:77:76:b9:7a:ae:85:06:b6:93:a7:aa:60:dc:7f:
8c:e4:0b:00:cc:ab:60:9b:26:04:44:d5:8a:1c:7d:
43:8f:3c:91:9f:1e:83:88:04:47:e0:e4:30:ce:7d:
a4:47:ba:27:9c:75:a6:d0:c6:c8:c4:cb:0e:68:88:
28:cf:8b:d3:2b:85:a3:7c:70:18:4c:a1:21:0e:6f:
8c:99:9b:f0:1d:f0:43:aa:95:e1:a4:3d:07:93:dd:
bc:a4:6a:74:6d:19:aa:d7:cc:49:f1:91:58:e5:b4:
f8:0f:5c:b8:25:30:dd:3f:96:44:95:5c:d2:07:78:
7d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9D:57:AB:16:E2:11:73:34:03:F6:78:DC:55:96:4F:3D:DA:07:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/863432BE717F11EE9E9F59244AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.35.0/24
Signature Algorithm: sha256WithRSAEncryption
81:07:a7:5a:1d:d7:f4:3a:8d:bf:f3:b9:4f:7c:33:5f:68:be:
8c:10:8e:df:87:5e:3c:f6:94:10:10:a7:80:08:5c:c5:7a:16:
22:90:91:12:55:2d:69:f5:7f:ef:4f:0f:c7:76:d1:d5:e4:7a:
a7:e9:26:33:49:7a:ab:cc:0d:bd:f4:fb:80:69:4c:b4:83:58:
be:6b:f2:f4:32:a1:2d:fe:91:06:7c:af:6c:8c:3e:2b:17:a4:
55:9c:3f:98:a8:b3:42:34:d1:c3:fd:df:66:55:70:03:16:d2:
5b:fa:eb:89:92:36:9a:b4:6a:1f:13:89:7a:8b:6e:5c:1a:42:
49:71:1c:0d:e3:c8:ad:fd:12:03:80:7a:db:45:d1:ba:c9:70:
f9:a6:84:99:a7:2a:f9:98:4d:97:8f:49:02:bb:56:3b:05:93:
f2:bc:3d:75:e7:cc:f0:23:2b:c3:a7:e2:30:17:aa:0b:a1:5e:
09:cd:ce:15:36:ca:7f:dc:1f:b9:3b:58:40:8b:3d:fb:e9:fb:
86:98:a0:23:2b:46:94:c7:52:64:9e:a9:98:51:e9:f3:73:25:
1c:4c:e2:e7:70:1b:2a:a8:93:51:9b:e7:01:e5:af:5e:8c:fd:
03:43:33:34:d9:9c:f0:b6:b0:ce:dc:23:62:5f:fa:9a:8f:20:
12:03:b2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:41:07 2024 by rpki-client on console-ams.rpki-client.org