Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98496CE8C5C211EE8C041471775412E6.roa
File: 98496CE8C5C211EE8C041471775412E6.roa (raw, json)
Hash identifier: 8i8f4EBoGt3fP4/3agAYE1JIWG4B9dOIWIZ+SyW29sg=
Subject key identifier: 08:16:2C:66:84:B9:77:0B:B7:01:8C:21:2D:1E:52:FB:4F:4A:47:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 86F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98496CE8C5C211EE8C041471775412E6.roa
Signing time: Wed 07 Feb 2024 14:10:06 +0000
ROA not before: Wed 07 Feb 2024 14:10:03 +0000
ROA not after: Wed 31 Jul 2024 14:10:03 +0000
asID: 62387
IP address blocks: 154.214.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34546 (0x86f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 7 14:10:03 2024 GMT
Not After : Jul 31 14:10:03 2024 GMT
Subject: CN=65c38f3e-747f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:78:dd:77:89:29:45:6f:93:09:e3:c4:3f:ba:
e6:d1:d4:ac:43:91:51:a3:8e:05:8d:c0:43:d1:ed:
ee:1f:5d:5b:26:1b:27:b3:e3:c6:f8:9a:88:16:79:
e3:3d:06:48:cf:86:e4:bf:bf:4a:5e:3d:82:7d:d6:
5a:cb:48:cc:e1:06:2d:a4:47:b8:7d:5d:5e:2c:d2:
25:7a:da:64:1d:79:5e:83:74:27:d7:94:5d:48:34:
b0:0b:6b:fa:7f:82:1e:a5:4b:f7:89:bc:b6:20:3e:
79:d1:f7:4e:be:4d:9b:36:1d:d5:dc:c4:5d:a8:1a:
c4:e2:ea:90:9d:29:ab:c1:b2:ce:d4:35:b2:09:07:
a7:d0:89:07:50:78:0b:9c:62:a0:5d:e5:8b:18:a7:
f8:e4:e1:37:94:7b:b9:22:3c:8b:cf:88:f8:77:80:
fe:27:51:83:3a:c8:46:9d:cb:d5:ce:e1:5e:e7:55:
ed:35:c8:c5:93:46:88:08:36:10:9f:b5:ca:b6:af:
1a:d1:53:f0:22:4c:ae:6d:b7:83:ee:60:5a:5a:42:
4d:e6:b2:58:1e:89:da:2e:dc:96:24:f0:14:1c:8e:
dd:74:17:ea:d5:78:b8:14:00:09:66:0e:39:01:5a:
92:de:fe:b0:e6:21:bd:fe:c7:85:d8:ca:92:4b:fa:
a6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:16:2C:66:84:B9:77:0B:B7:01:8C:21:2D:1E:52:FB:4F:4A:47:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98496CE8C5C211EE8C041471775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.232.0/22
Signature Algorithm: sha256WithRSAEncryption
10:1a:9e:c8:3c:07:e9:16:19:be:cf:47:65:98:ab:ef:c2:e9:
a0:a0:38:93:d3:43:dc:81:af:44:9e:b4:57:2e:2c:02:85:3a:
96:07:9e:ad:0a:a8:8b:ba:e2:25:f6:7e:6b:54:61:ee:6b:b3:
1f:95:82:3f:2c:5e:45:3e:81:9f:c8:74:c1:c1:35:27:f0:e3:
1f:29:6e:4c:65:e7:aa:f1:ae:c4:51:55:0f:ef:e9:d8:48:a7:
05:02:46:aa:e9:41:b0:8b:8f:84:19:16:2e:d3:1a:80:25:3f:
3f:d9:f5:e4:45:24:84:71:39:e7:79:c3:2f:31:bd:6d:c8:b2:
51:22:bf:71:57:f6:48:aa:0a:23:99:72:1a:ce:af:9e:bc:08:
4c:23:f9:bc:1b:78:be:29:c8:90:f7:05:5c:b3:24:a4:ec:b0:
c0:62:47:8e:0d:1a:f0:be:c6:0c:eb:15:0f:58:73:bb:cb:de:
18:55:ef:dc:db:a9:81:82:7f:b1:bd:9e:50:4a:ed:fa:dd:12:
a9:ab:6c:33:06:d0:1c:46:07:7e:00:9f:b5:c6:32:2f:f3:b1:
e8:80:10:bb:97:ec:e9:45:db:3f:7f:33:0c:a9:bf:b3:af:49:
89:db:9d:c1:bb:67:4f:23:61:d8:8f:de:e5:f3:f3:78:a2:d3:
bf:a4:fc:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:32 2024 by rpki-client on console-fra.rpki-client.org