Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98C3BD14A2FD11EE9D32AB12D25BE465.roa
File: 98C3BD14A2FD11EE9D32AB12D25BE465.roa (raw, json)
Hash identifier: iQVIgcpmtUrBy1qCcqzcImwneNbIjyEQNBzOXOzJ9NM=
Subject key identifier: 14:90:A7:06:1C:41:62:B6:B2:A9:44:AA:9A:55:A0:32:CE:39:A1:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 66F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98C3BD14A2FD11EE9D32AB12D25BE465.roa
Signing time: Mon 25 Dec 2023 08:14:17 +0000
ROA not before: Mon 25 Dec 2023 08:14:13 +0000
ROA not after: Mon 24 Jun 2024 08:14:13 +0000
asID: 27947
IP address blocks: 154.84.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26355 (0x66f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 08:14:13 2023 GMT
Not After : Jun 24 08:14:13 2024 GMT
Subject: CN=658939d9-adb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:02:ae:b8:8c:ab:e9:ed:9e:49:ce:12:93:d4:
27:9d:3a:40:c5:7d:b2:72:ca:38:04:d9:2f:7e:f2:
5f:a7:f0:f4:d6:f9:bc:bd:e3:54:b8:f6:4d:06:3b:
71:32:00:8f:03:e1:9b:13:8c:fd:6e:89:b3:a3:8b:
a4:c0:38:da:38:54:0f:f6:69:20:2e:1e:29:9b:17:
db:2c:3c:f2:42:eb:fb:6d:7f:e5:a5:7d:9f:e0:51:
af:37:f6:a5:4e:6d:bd:f6:00:1f:dd:38:fa:a6:3e:
dc:58:1c:17:77:b5:f4:31:c7:df:b7:5e:fa:22:50:
b8:b4:31:1e:14:99:d1:53:5b:cb:b9:d9:d5:1b:8e:
f6:2f:af:58:74:57:5d:51:96:10:ca:0b:56:fd:42:
ca:89:9a:a2:4a:41:c1:a8:e0:25:43:8b:96:96:42:
ff:4d:ed:ce:b8:cf:d7:bf:45:7d:98:20:48:d7:47:
95:d1:b5:fe:bb:82:6b:a7:a5:9a:63:1a:42:90:bb:
fc:90:93:bd:36:25:49:35:a1:53:7c:c7:ab:c4:94:
1d:f6:0d:28:af:ca:67:86:4a:9f:f5:cf:f7:6f:be:
65:33:c4:bd:cf:ae:89:99:4e:ab:94:62:44:1f:fe:
8d:b9:34:46:b5:61:b3:04:6f:70:99:55:b1:69:14:
54:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:90:A7:06:1C:41:62:B6:B2:A9:44:AA:9A:55:A0:32:CE:39:A1:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98C3BD14A2FD11EE9D32AB12D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.160.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:ba:f3:92:17:21:e5:bb:8e:7a:92:6b:db:7b:ca:21:a2:ee:
d6:a3:b0:2c:33:22:9b:2b:22:93:ff:d5:05:a1:dc:ac:3b:87:
0f:37:85:79:fb:7b:7e:8b:40:96:2c:c7:08:55:c8:4e:3a:f9:
29:d3:e6:3a:f5:69:02:ae:9d:b8:78:58:ed:18:b0:56:b9:58:
72:67:ff:81:9e:ba:ba:4e:3b:de:80:ee:59:54:76:41:1e:fd:
81:47:e9:ed:9d:89:4d:4b:1c:c6:4d:cc:15:d2:cb:e3:e8:da:
46:67:c9:a6:0e:00:79:44:79:24:fe:be:22:bc:dd:1f:67:94:
3e:ea:8d:a0:a9:5c:8b:21:9a:b4:c0:08:9b:c6:ca:9e:cf:28:
f2:d8:cf:8b:63:9c:ff:43:3a:a4:5c:fb:a4:94:10:3f:d3:b2:
80:ac:9d:38:0e:7a:fc:96:6a:8c:28:d8:9f:45:d0:a7:11:af:
ee:cd:d2:a2:27:7a:ac:95:75:cb:be:1b:36:fd:6f:bb:b7:02:
de:3e:16:20:15:3d:dc:d0:69:d9:13:f1:d5:1e:c4:a8:05:07:
01:02:51:4a:ae:cb:e8:fa:a8:2b:9f:0a:ab:f6:d5:3f:e0:a0:
1a:bb:cf:d3:8a:18:df:43:f3:c6:31:de:42:f6:7d:d6:5a:f1:
0f:6d:8e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org