Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EAE3A3086AF11EE90FBC14E4AD9E6FC.roa
File: 8EAE3A3086AF11EE90FBC14E4AD9E6FC.roa (raw, json)
Hash identifier: 9OQjUcbRrvbMgRJMUC4WZ5RyzhwvIYb7Qdm60WCdIaM=
Subject key identifier: 69:F1:B8:E8:C6:C9:7C:FE:0C:7B:FD:8C:66:CE:09:DE:EF:25:CB:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 5115
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EAE3A3086AF11EE90FBC14E4AD9E6FC.roa
Signing time: Sun 19 Nov 2023 07:45:07 +0000
ROA not before: Sun 19 Nov 2023 07:45:03 +0000
ROA not after: Thu 13 Jun 2024 07:45:03 +0000
asID: 7018
IP address blocks: 154.83.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20757 (0x5115)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:45:03 2023 GMT
Not After : Jun 13 07:45:03 2024 GMT
Subject: CN=6559bd02-d3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:74:12:e8:d8:64:c4:69:de:e1:16:7a:6c:81:
8e:5b:36:d3:58:ab:11:19:2b:f5:d6:7b:68:4d:f0:
0f:35:23:96:3d:d6:df:93:39:98:89:d9:f0:9a:2b:
a0:c0:e4:37:10:92:2d:ea:02:73:a6:66:f4:85:23:
f7:6b:47:2f:04:0f:1b:c8:f7:d8:9d:c3:c5:4c:ed:
81:ed:5e:91:3b:99:fe:29:da:2d:52:4d:af:8a:76:
16:4c:2e:31:40:62:78:0f:c6:0e:34:6b:1b:13:80:
f1:91:99:35:64:df:83:ee:65:f4:b0:92:85:da:0a:
fd:4a:75:80:8d:9f:aa:3f:09:4a:e6:85:99:a9:48:
16:12:e2:8a:c6:05:30:e6:64:35:f8:9f:6a:32:54:
33:02:f5:e1:dc:99:75:82:96:74:f2:f4:bc:db:bb:
da:37:ce:55:dd:9b:e7:80:7a:fa:15:80:3c:dd:20:
cd:9f:ca:bc:fd:e1:37:04:a7:e5:05:73:21:64:9c:
46:eb:67:c3:49:04:b1:fb:35:4d:77:d1:c6:f7:52:
59:10:b0:56:90:79:9f:2a:ec:f0:d5:b2:9b:ee:5a:
f7:2b:b5:6f:9e:c4:69:7a:94:18:cb:52:82:a4:d5:
c5:65:3e:fd:81:0f:76:13:3e:9d:d2:e0:93:72:39:
a4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F1:B8:E8:C6:C9:7C:FE:0C:7B:FD:8C:66:CE:09:DE:EF:25:CB:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EAE3A3086AF11EE90FBC14E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.192.0/18
Signature Algorithm: sha256WithRSAEncryption
53:39:79:77:3f:16:2b:49:d2:13:f0:17:56:63:1c:d2:c3:40:
a6:91:5a:1a:3e:01:53:e6:ef:bb:b8:94:e7:9f:5d:a9:95:7d:
5f:32:4c:b9:83:e4:28:29:5d:84:14:4a:08:a3:71:77:7b:3a:
b9:78:52:02:c9:90:e6:de:2d:21:90:5a:c3:6b:c1:30:cb:9c:
10:ae:30:5a:df:3c:b9:48:ec:40:9d:ee:29:bc:a9:38:18:90:
b0:94:19:da:eb:59:ab:3a:ae:f5:6d:50:8f:ec:0e:c5:55:3e:
24:b6:7e:1a:c0:e2:3a:72:b6:a7:e4:38:e5:f9:bb:1c:84:62:
d1:0b:90:0f:48:b5:20:7c:f1:05:91:0a:af:fc:89:df:24:b2:
38:f2:b3:0d:bb:fb:08:6f:fc:44:dd:e7:5e:30:bc:82:cc:f1:
d9:31:2b:68:69:ec:63:f9:e9:80:13:23:31:2b:5f:30:04:ec:
64:df:92:88:09:e1:28:34:2b:34:c4:0c:43:10:28:03:e3:a4:
29:6f:78:5a:44:cb:51:2b:7d:b0:e1:09:ee:e7:a4:74:4a:45:
52:43:2d:a7:39:c7:a3:45:24:ec:6f:f0:86:25:c0:de:54:b8:
49:db:c6:49:84:d0:bd:f9:6d:d2:81:3c:e3:f2:1e:24:9c:71:
30:2f:3a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:31 2024 by rpki-client on console-fra.rpki-client.org