Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACB50E7827E011EF8627C7F77CDC24C2.roa
File: ACB50E7827E011EF8627C7F77CDC24C2.roa (raw, json)
Hash identifier: mryBI1RwTQ2liV+1Xj1EdioDXEK/nWcNkl1dQDUgoWA=
Subject key identifier: DD:2C:5A:CD:48:EC:BF:56:B2:1F:18:29:92:EC:B6:1E:D8:FD:18:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C1B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACB50E7827E011EF8627C7F77CDC24C2.roa
Signing time: Tue 11 Jun 2024 10:52:20 +0000
ROA not before: Tue 11 Jun 2024 10:52:16 +0000
ROA not after: Mon 12 May 2025 10:52:16 +0000
asID: 51601
IP address blocks: 154.205.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49590 (0xc1b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 11 10:52:16 2024 GMT
Not After : May 12 10:52:16 2025 GMT
Subject: CN=66682c63-920e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5e:ad:4a:49:2e:00:d3:bf:3c:62:43:e1:96:
7d:7e:ca:23:0a:e5:8e:c3:b6:e3:c6:5c:81:50:28:
eb:b3:24:f5:5f:ce:ba:60:8a:e9:2d:a6:cb:47:5e:
b5:7d:c4:75:ea:ea:72:0d:b6:d4:6c:e9:57:4e:ed:
9e:2d:3d:dc:f1:6e:fb:2c:4f:14:f3:61:f4:7a:39:
42:14:88:39:3b:c6:eb:18:ef:30:3b:ee:3a:15:01:
e2:08:04:80:2f:10:b1:39:a1:83:19:10:c1:4b:e9:
ae:7d:58:fe:6f:ce:c2:89:a3:da:60:3d:1e:98:0b:
2f:1e:3c:dd:84:4a:c9:8a:5e:73:c8:79:8d:6a:ff:
8a:6f:15:04:e0:55:5b:39:3c:80:b6:db:93:0f:95:
6e:50:34:fe:54:25:73:9a:13:ab:8b:04:3c:b8:36:
b8:22:82:ff:39:17:c2:9c:1d:bc:2e:db:f9:a6:72:
9e:c9:00:64:4a:52:5a:31:7d:f4:67:bf:8a:38:fa:
0e:75:ec:40:d1:0a:cb:d7:d0:1c:f0:8f:79:a7:62:
1b:c9:9b:04:bb:1f:4d:88:13:1e:f4:b8:8f:fa:86:
38:df:7e:4c:c2:3b:20:ca:e8:6e:08:d3:87:7d:da:
34:d1:70:1b:de:02:ac:09:c2:af:97:18:6a:8a:ba:
9c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2C:5A:CD:48:EC:BF:56:B2:1F:18:29:92:EC:B6:1E:D8:FD:18:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACB50E7827E011EF8627C7F77CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.0.0/23
Signature Algorithm: sha256WithRSAEncryption
90:63:91:cf:a5:96:a2:26:b5:8b:d7:b6:45:72:14:ea:0b:f5:
21:86:1e:fc:c8:9d:c6:06:ad:75:0e:85:2a:bc:42:85:86:48:
18:59:c0:97:23:f9:91:54:ff:ad:f5:e3:15:3e:7e:e5:c6:15:
03:21:47:b7:7c:a6:02:74:6a:06:b0:82:76:76:df:b1:4b:cb:
37:09:a9:8b:b9:3a:4a:23:b3:d8:b2:54:b5:35:5a:7c:77:08:
9e:99:cf:66:bb:51:c2:34:38:5c:d0:62:00:03:ce:f1:28:bc:
43:45:f3:64:14:74:ce:bd:80:ce:2d:7f:5c:2c:dd:7b:d2:94:
07:68:ce:12:00:f9:d7:b3:4f:a1:7f:7e:d9:5c:e6:4b:0a:74:
ca:f7:76:d7:f6:eb:02:73:38:8e:22:f9:e5:37:45:91:93:14:
b0:bc:4e:38:a8:7d:e2:fd:4b:cd:5e:5c:a3:e3:cd:bd:a6:7f:
82:11:f2:62:4a:dc:a4:38:63:85:05:b8:09:d2:5b:45:a1:1e:
38:06:3a:d5:78:31:95:be:c7:e1:ba:45:0d:69:6d:c6:e4:ba:
d8:77:2f:bb:b0:d9:a2:64:30:82:f0:45:e6:48:a0:b9:06:73:
99:a4:64:c9:25:66:08:1f:fa:54:30:a4:7f:b4:ce:aa:50:09:
7d:b0:f3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:42 2024 by rpki-client on console-fra.rpki-client.org