Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BC4EEDA82BE11EEA6AD753D4AD9E6FC.roa
File: 8BC4EEDA82BE11EEA6AD753D4AD9E6FC.roa (raw, json)
Hash identifier: dCWrsC+wgBXn+Mxuy1F9NjcJS1HIPNyBDjMXTZmXZG4=
Subject key identifier: E7:94:DE:C3:DE:AF:81:86:1B:E1:5D:F2:7B:2A:FC:82:2E:66:3B:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5004
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BC4EEDA82BE11EEA6AD753D4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:22:20 +0000
ROA not before: Tue 14 Nov 2023 07:22:16 +0000
ROA not after: Tue 12 Nov 2024 07:22:16 +0000
asID: 397630
IP address blocks: 154.202.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20484 (0x5004)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 07:22:16 2023 GMT
Not After : Nov 12 07:22:16 2024 GMT
Subject: CN=6553202b-7398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ca:1b:e1:f2:83:b5:1f:1e:81:f8:87:59:70:
38:bc:67:fc:24:47:14:d1:cc:f6:a9:d7:b6:61:4b:
3c:65:37:6b:0f:0c:aa:d9:ab:09:23:14:22:a1:e1:
b1:7b:ef:24:6f:30:79:47:1c:9c:3c:e7:79:95:ef:
f6:61:18:25:d7:76:0c:c1:59:81:6a:4d:0e:ce:e2:
7f:00:fe:33:4c:a3:fe:49:86:f1:2e:c2:0e:fb:e4:
27:bf:75:c2:7b:32:e3:61:c3:04:63:db:89:58:00:
e4:6d:33:2f:16:65:55:3a:46:d4:83:7c:11:3e:15:
09:b6:84:01:12:23:8b:74:7f:42:a8:31:77:ac:dd:
5e:6b:10:34:49:89:f7:0a:05:b1:0c:71:38:13:2f:
18:b5:64:f0:94:6e:45:2d:c7:7a:fa:96:98:c9:b2:
19:95:ed:4d:c5:40:d6:77:e1:b9:e5:be:73:5a:cc:
c8:e4:aa:c2:07:5d:f9:18:01:80:37:55:d2:5e:60:
27:73:d1:8d:b4:88:96:59:0f:57:a6:84:3c:70:e4:
a8:91:76:4b:87:0d:78:c3:30:75:31:ed:e5:10:a9:
d1:bc:86:2b:d3:0d:8e:ad:5a:64:17:39:ce:40:01:
18:31:72:9e:e8:61:da:31:c8:87:86:87:72:85:55:
fb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:94:DE:C3:DE:AF:81:86:1B:E1:5D:F2:7B:2A:FC:82:2E:66:3B:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BC4EEDA82BE11EEA6AD753D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.122.0/24
Signature Algorithm: sha256WithRSAEncryption
23:58:2e:54:93:bc:6d:2f:ee:fc:3b:81:8d:f5:8d:d1:53:05:
b6:1c:a3:16:c1:38:23:be:f2:3a:28:74:d1:31:1d:cf:a0:5a:
33:67:a9:39:32:2e:cb:a2:fa:83:06:28:0c:ed:d7:b0:c8:bb:
40:0b:35:79:b4:7c:b3:5d:71:36:57:fa:78:d0:9e:9e:8e:ef:
a4:4e:d5:9f:2c:a6:4d:d7:90:4b:a6:27:0d:4e:b1:ca:de:b7:
c4:ef:40:07:a9:c5:24:36:38:77:26:a8:55:b1:f8:1e:e4:c8:
bb:63:d8:65:4d:50:5d:65:91:84:29:5a:ac:05:a6:4e:f0:60:
55:33:fa:73:66:4f:6b:30:e5:8e:be:3a:0a:f0:1b:14:21:de:
54:88:b2:1d:b1:92:8a:6e:27:6c:fc:ee:c1:d7:1f:d9:a8:3d:
70:d0:4a:38:b9:a4:82:9a:bf:4c:ef:d0:62:81:aa:23:93:d2:
11:05:83:c2:22:41:a5:b8:42:f7:c0:8b:1e:85:70:b2:5a:a2:
18:00:62:c9:24:ec:49:f1:2d:0d:5a:0c:8c:56:fb:35:dc:75:
de:85:a7:fc:5f:6f:fa:96:f5:6e:58:ae:be:b7:a6:ab:3d:74:
e8:b6:58:ac:ba:c7:e6:d1:9a:15:bd:bc:62:3b:59:27:0f:27:
64:b3:18:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:14 2024 by rpki-client on console-ams.rpki-client.org