Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/903E6D8AE9A511EEA32F985B775412E6.roa
File: 903E6D8AE9A511EEA32F985B775412E6.roa (raw, json)
Hash identifier: c4e4C3RlmBOR7kVRtvCxtxrGfcajIPowk8no/dHSxy8=
Subject key identifier: 52:D8:3A:41:2A:1F:A4:4B:1E:BB:EF:93:82:F0:3B:4D:0A:58:E8:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A648
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/903E6D8AE9A511EEA32F985B775412E6.roa
Signing time: Sun 24 Mar 2024 06:12:59 +0000
ROA not before: Sun 24 Mar 2024 06:12:56 +0000
ROA not after: Fri 26 Apr 2024 06:12:56 +0000
asID: 8796
IP address blocks: 154.201.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 06:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42568 (0xa648)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:12:56 2024 GMT
Not After : Apr 26 06:12:56 2024 GMT
Subject: CN=65ffc46b-f367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:78:03:ec:9f:68:03:30:42:7d:9e:77:c1:39:
e2:6c:05:35:9e:66:d3:f7:72:93:a0:11:27:e2:e2:
bd:f9:0e:f9:dd:bb:f7:e8:ea:8e:a4:eb:86:3d:48:
04:51:8b:56:56:e1:3e:02:60:b9:09:28:21:11:d6:
11:e9:90:9d:2d:d0:dd:21:9e:ea:9f:8d:4f:a6:d0:
cc:6f:24:7d:36:7c:de:ac:f5:96:cf:f6:59:09:3d:
d3:24:9c:62:2c:b9:97:e8:6b:ef:1b:63:b8:18:35:
7a:c1:99:80:73:07:42:b2:30:e3:a3:4e:2d:88:8d:
27:5e:b6:9c:ba:7b:74:62:a9:4e:a7:4b:94:7f:2a:
3e:6a:88:6b:b4:2c:d9:fe:bf:02:03:a9:ec:50:f8:
27:3d:15:d2:e3:d6:fa:74:ab:70:d2:11:c0:e7:5a:
4b:78:be:d6:b8:87:bd:30:5f:a5:11:61:62:6d:67:
2f:84:32:fe:3e:cd:17:d9:4d:a1:b9:b7:a2:9e:cc:
8f:79:aa:6b:4b:93:d6:56:f2:56:5e:ba:32:05:e1:
6f:4e:4b:bf:c0:58:0f:50:f9:6e:cc:40:be:94:40:
e4:45:9f:f5:ee:42:b6:80:b9:84:c3:be:b7:40:67:
91:5b:08:17:c4:f0:18:2d:e3:37:38:ad:f1:a1:0a:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D8:3A:41:2A:1F:A4:4B:1E:BB:EF:93:82:F0:3B:4D:0A:58:E8:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/903E6D8AE9A511EEA32F985B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.72.0/21
Signature Algorithm: sha256WithRSAEncryption
d6:75:20:57:86:98:0d:84:4b:24:a9:63:56:9a:52:cb:0e:f6:
0a:c5:25:19:d8:8b:41:fc:78:87:0d:aa:b5:20:f6:15:eb:2a:
34:26:a1:29:c8:55:0f:57:8f:7b:5d:0c:44:18:7e:76:dc:be:
6b:79:24:48:49:49:c5:4a:d6:0e:19:36:d7:0e:9d:21:ca:e8:
e9:84:5f:8c:8a:c6:e1:34:70:15:4e:32:b3:56:8d:fb:b9:22:
e4:38:d7:dc:b1:03:17:2d:64:c6:78:b2:97:d1:24:cf:08:cd:
d1:50:f1:34:d0:f1:22:1d:7b:6d:ce:0e:81:b2:91:13:24:fd:
5f:6b:66:4e:85:96:30:e5:4d:95:2f:1a:6e:94:94:34:d1:b2:
b3:d5:f9:47:b7:76:9a:a9:f0:5e:d4:fe:9a:8f:24:b4:4e:c2:
52:94:b7:cd:96:40:15:cd:2e:fd:4a:1b:a3:17:09:7b:81:07:
f7:cd:8c:58:e5:bd:d9:04:26:f0:fe:ca:85:e7:2d:cd:ff:cd:
1c:fc:6e:c4:69:19:50:31:9d:63:ff:41:16:71:24:6d:55:1c:
de:39:13:0d:e1:fa:74:fe:00:e3:2c:8d:3f:13:c6:19:93:d1:
c4:ee:e7:b5:c9:97:f5:6b:4e:d9:0d:f4:0a:11:55:e8:32:ff:
07:55:0d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:37 2024 by rpki-client on console-fra.rpki-client.org