Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9DB2BFA610DA11EEABA5A6234AD9E6FC.roa
File: 9DB2BFA610DA11EEABA5A6234AD9E6FC.roa (raw, json)
Hash identifier: UiUCLcuRa+93pKnaU2PQ48jDOcYovagTNoYsdfzm5qI=
Subject key identifier: C6:5C:D0:19:7C:A3:C7:D2:F1:72:22:37:04:D4:A3:C1:B2:62:FC:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2D46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9DB2BFA610DA11EEABA5A6234AD9E6FC.roa
Signing time: Thu 22 Jun 2023 08:56:03 +0000
ROA not before: Thu 22 Jun 2023 08:55:59 +0000
ROA not after: Fri 05 Jul 2024 08:55:59 +0000
asID: 210334
IP address blocks: 154.89.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11590 (0x2d46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 22 08:55:59 2023 GMT
Not After : Jul 5 08:55:59 2024 GMT
Subject: CN=64940ca3-de25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d1:a9:15:ec:3a:f3:55:73:1a:c7:c8:f2:29:
1d:74:a0:c8:60:a6:f5:d2:92:f3:b3:71:1f:f4:88:
d9:06:12:4d:9b:e8:62:30:ad:f1:6a:66:b0:60:ba:
bb:dd:c1:94:30:78:92:3f:47:12:f4:8a:e9:ab:b7:
4a:26:fb:5c:98:86:c0:b5:2a:ef:f4:ed:d1:4c:4c:
77:0d:1b:8c:50:96:e0:1a:74:c9:c0:34:91:00:fc:
4c:3a:da:7c:0d:d6:ef:90:f3:07:b4:6a:30:f7:b7:
90:ee:7a:e6:49:c1:ae:96:38:6a:5c:c8:29:e8:a7:
16:3b:10:44:0c:40:75:0e:15:88:03:1c:5b:41:dd:
ad:25:c9:10:90:c7:0c:21:62:60:1c:62:cf:a4:d2:
db:94:1d:73:de:ac:34:5d:20:a4:bb:a1:83:89:6e:
0d:d0:96:77:35:5d:ce:37:09:12:be:bf:51:98:76:
0b:b8:00:62:2f:b2:4a:aa:d3:11:59:1d:91:0f:d0:
1c:b3:a3:87:97:cf:a9:5d:b1:d6:39:f2:03:df:e2:
3d:1f:2c:a1:64:73:15:5d:87:27:e0:cf:a2:f1:57:
e2:3b:dd:e8:f9:95:01:d0:7f:1e:62:18:dc:a6:94:
fd:74:c1:19:56:da:64:c3:82:d0:63:ed:98:f2:3d:
8a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5C:D0:19:7C:A3:C7:D2:F1:72:22:37:04:D4:A3:C1:B2:62:FC:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9DB2BFA610DA11EEABA5A6234AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.39.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:94:22:1e:f2:fd:9c:ea:19:a9:13:0e:93:42:ce:f6:b1:e1:
37:4a:8b:5a:d7:c8:1d:45:f2:74:6d:99:cc:2c:44:8b:69:88:
34:5c:7b:eb:c8:2d:81:a1:6c:9c:ac:37:b6:13:3c:1f:8c:36:
8e:ed:e9:c0:cd:81:b6:29:b8:62:03:f7:ea:fd:82:41:03:50:
41:16:11:7e:14:62:47:8a:53:c4:67:e9:d9:25:d9:5a:e9:ea:
c0:4d:67:43:c9:8a:55:a9:d6:79:0a:1b:06:8a:80:57:e9:29:
1e:3d:0f:38:07:b0:54:f4:60:ad:dd:03:2c:ff:4d:ea:7c:a1:
6b:32:50:cd:1f:fd:2c:2e:a2:15:a7:45:66:af:33:69:bb:33:
a3:73:c1:36:5c:a5:73:a2:d0:76:a6:22:40:c9:ee:b0:7b:c0:
8f:bd:9e:4b:9d:41:33:7b:7e:24:10:11:96:f2:10:f1:50:b4:
08:81:ab:d9:d7:b8:33:f5:bd:47:17:2f:c7:b3:00:82:f6:61:
4d:a5:6f:b4:e8:61:3d:20:15:d5:9a:d4:9d:cc:3f:7e:2b:15:
96:da:96:94:ab:db:e4:23:97:80:49:95:10:53:03:73:bb:48:
27:85:91:a9:5a:79:0b:17:78:82:c2:b2:d5:94:3c:32:e9:34:
ea:67:01:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:33 2024 by rpki-client on console-fra.rpki-client.org