Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA0046DAF00811EEADB17C4D775412E6.roa
File: AA0046DAF00811EEADB17C4D775412E6.roa (raw, json)
Hash identifier: E/5cFGhmcXcgObLkCuzJz6Z5CqRx7UBHemEW4NKVy7w=
Subject key identifier: 4B:20:CF:14:96:4E:44:60:07:65:17:57:78:0C:31:BC:C2:35:B5:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A826
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA0046DAF00811EEADB17C4D775412E6.roa
Signing time: Mon 01 Apr 2024 09:17:30 +0000
ROA not before: Mon 01 Apr 2024 09:17:26 +0000
ROA not after: Sat 11 May 2024 09:17:26 +0000
asID: 138915
IP address blocks: 154.205.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43046 (0xa826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:17:26 2024 GMT
Not After : May 11 09:17:26 2024 GMT
Subject: CN=660a7baa-f59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6d:37:b4:c6:bd:f0:d9:8d:7c:7f:45:7e:3c:
90:02:b6:7d:15:61:ac:88:83:49:71:38:50:ce:52:
34:36:d3:52:a4:69:98:fb:e5:c7:25:44:66:fb:93:
48:ac:1c:f7:3d:bf:4f:71:3f:7e:9b:41:f4:2b:9c:
99:ff:62:c1:48:0a:5b:36:2f:da:5f:06:c4:be:55:
5c:ff:b0:db:01:42:01:ed:40:9d:0f:f6:50:1c:b8:
53:ef:da:0b:91:ad:2e:11:fc:f8:f8:0e:3f:c9:41:
cf:36:7f:38:09:fe:d4:a0:fc:e4:05:c6:5e:c0:60:
bd:74:bc:b4:68:30:42:12:34:d3:3c:58:80:c2:e6:
86:83:2c:c0:5a:0d:c3:42:33:ac:77:74:a4:dc:e8:
fe:13:39:78:7c:53:d9:f3:31:28:35:5b:66:e6:77:
2e:54:ce:be:5b:ac:0c:07:8e:68:19:38:4b:8c:33:
6e:bb:f1:63:44:80:98:61:08:22:f3:f8:05:90:d0:
41:e0:bf:bd:26:2b:8e:a3:bd:2c:53:25:e6:be:d0:
77:9a:21:ea:3c:47:d5:d4:6f:ed:dc:3b:92:1d:cd:
6f:f7:8d:db:a8:bb:5a:e6:1e:e3:d0:02:7f:8a:55:
81:9a:0a:1d:44:b8:34:cf:b4:12:56:49:5b:21:54:
3e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:20:CF:14:96:4E:44:60:07:65:17:57:78:0C:31:BC:C2:35:B5:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA0046DAF00811EEADB17C4D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.151.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:98:2a:57:6c:c8:b3:7b:4b:78:19:9b:86:83:a6:dd:00:ad:
66:1f:7a:23:bc:3f:aa:b1:13:b4:18:72:3c:20:b7:5a:dc:e4:
54:d3:84:6b:f9:2a:d1:05:70:d0:84:5e:1f:d1:17:ec:e8:38:
e3:df:39:cc:c9:be:1d:4a:d4:76:19:47:1b:4b:43:11:83:73:
e9:2f:94:2b:7f:54:e7:51:67:dc:9e:5d:b0:12:09:2a:26:0a:
5a:d3:2f:3e:bc:92:89:b1:69:9e:82:49:c7:2b:69:b6:24:c4:
a8:0d:80:9f:2c:a2:f4:22:fe:5c:1f:16:ec:50:c1:10:16:b9:
f3:9a:72:93:e1:4a:cd:6b:b1:ff:eb:99:27:35:75:8d:35:89:
93:ac:ff:83:fd:f0:b1:ad:d4:51:fa:16:89:b2:7e:18:ae:9a:
18:93:17:7c:09:fc:08:cf:16:de:13:39:e9:fb:46:9a:fe:ed:
98:6f:13:bd:db:78:ee:6d:0c:40:04:2f:e5:97:7d:dd:9e:be:
a2:2c:d7:46:f2:b7:24:50:01:d9:d6:a9:1f:84:38:8b:10:14:
0e:e2:46:8a:50:e9:2a:d2:bf:4c:d9:ce:9d:88:8a:01:a0:2d:
e2:a8:b4:b8:2e:01:e3:cb:0d:b5:1a:fe:06:fd:3d:92:49:9d:
3c:f0:02:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:34 2024 by rpki-client on console-fra.rpki-client.org