Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FEE5436F7C211EE995BF13A017001B1.roa
File: 9FEE5436F7C211EE995BF13A017001B1.roa (raw, json)
Hash identifier: oRXg63fD7b23XzFIpjKW3786TlKval2MPoEZ3AxhjvM=
Subject key identifier: A4:24:EC:73:AE:12:EA:11:7F:2F:97:29:00:35:F9:3A:55:5F:4A:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB3D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FEE5436F7C211EE995BF13A017001B1.roa
Signing time: Thu 11 Apr 2024 05:16:17 +0000
ROA not before: Thu 11 Apr 2024 05:16:14 +0000
ROA not after: Sun 19 May 2024 05:16:14 +0000
asID: 138915
IP address blocks: 154.93.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43837 (0xab3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 05:16:14 2024 GMT
Not After : May 19 05:16:14 2024 GMT
Subject: CN=66177221-44bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:01:59:e1:e2:4c:12:1c:27:62:e0:c7:11:04:
fc:07:dd:72:ff:f1:ab:7e:17:19:83:ba:5d:89:9f:
08:25:1d:19:7d:26:60:5b:fe:8c:c4:d1:55:20:90:
0a:f0:9f:58:08:83:c2:cb:4f:62:fb:cd:3a:b6:41:
98:9b:26:3b:07:b5:db:8b:df:00:5c:f5:d1:30:b3:
0a:78:89:dc:e0:7e:ec:f4:31:05:3c:70:d8:33:e7:
8f:47:a2:b3:49:8c:16:c6:1b:99:65:2b:63:e0:cb:
06:d4:2e:fd:3d:83:32:c7:54:ab:bd:fd:8f:57:cb:
7a:e3:9f:da:3a:33:19:47:df:2a:3f:c6:b6:4c:43:
7e:5d:ec:e1:a8:91:c0:79:5c:4c:04:43:41:2d:b6:
4e:1b:d5:fe:67:3e:8c:07:aa:43:a5:77:3d:83:88:
15:6f:47:d2:a4:b4:f5:dd:16:fc:7d:e1:d9:90:6c:
f5:ee:a9:d9:ad:c4:cb:1a:a6:9f:9a:f4:f0:9e:ee:
6c:ca:1b:8a:d0:8e:fb:cc:24:fe:31:f7:a4:10:1e:
eb:47:7a:44:29:a1:32:e1:38:cf:40:56:af:e5:aa:
35:74:12:f0:21:fb:c9:8f:f2:b1:49:05:98:22:12:
53:8c:27:87:c1:12:64:28:d2:b8:0a:c5:a0:97:c2:
7c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:24:EC:73:AE:12:EA:11:7F:2F:97:29:00:35:F9:3A:55:5F:4A:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FEE5436F7C211EE995BF13A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.34.0/23
Signature Algorithm: sha256WithRSAEncryption
63:b1:68:d5:ca:22:58:0f:6a:10:52:95:62:3b:2a:d7:ea:52:
86:56:e9:80:17:82:2f:8e:5d:db:5a:0b:d0:98:28:0c:65:12:
69:c7:13:d8:2f:91:25:65:c4:0c:14:e1:15:09:e2:61:12:5d:
ad:8a:39:2b:8d:df:54:9e:dc:8e:3c:7f:d2:1c:53:89:21:68:
b7:1f:60:bc:c3:d2:f7:8f:e2:fb:87:85:bc:ed:88:3d:f3:4c:
71:a1:87:ee:52:d8:90:64:18:49:4a:85:05:5b:bf:95:dd:5d:
7e:8e:bd:ab:84:6e:86:cb:cc:60:84:2b:e2:90:a1:c9:69:04:
66:43:5c:a7:35:48:7f:74:f8:7e:58:3b:e3:8b:b1:8d:26:68:
e1:16:3d:73:29:5d:17:57:a2:1a:d4:a0:39:d4:b6:67:62:e9:
ac:e3:6b:3c:e9:60:3b:ac:d6:d1:b1:30:2a:df:ed:7f:77:af:
9d:f6:a4:b5:33:06:b0:79:18:64:d0:6b:ba:30:28:cd:c7:78:
b9:f8:89:a5:bb:31:fd:69:1d:08:71:c3:7f:1b:e2:55:50:00:
e8:7f:70:b0:16:98:a8:bd:c9:c0:12:9e:b4:27:ee:74:40:c1:
d2:a6:a1:9d:f6:c8:0c:f7:c6:3b:6d:93:83:ea:0f:7a:19:e7:
c3:61:51:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:16 2024 by rpki-client on console-ams.rpki-client.org