Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFD6DBB4F01211EE9239839C775412E6.roa
File: AFD6DBB4F01211EE9239839C775412E6.roa (raw, json)
Hash identifier: 1Kst7Q8gTT74e3sAmgZChA2EAvGcdqUjqGR20CpurZw=
Subject key identifier: 44:F0:AF:66:01:11:A3:79:49:9E:A4:77:11:42:CE:C6:3A:F2:F5:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A89C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFD6DBB4F01211EE9239839C775412E6.roa
Signing time: Mon 01 Apr 2024 10:29:15 +0000
ROA not before: Mon 01 Apr 2024 10:29:11 +0000
ROA not after: Sat 11 May 2024 10:29:11 +0000
asID: 63139
IP address blocks: 154.203.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43164 (0xa89c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:29:11 2024 GMT
Not After : May 11 10:29:11 2024 GMT
Subject: CN=660a8c7a-5ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cb:5a:25:0d:d5:9d:53:1b:54:4b:42:54:8b:
8f:ee:a3:63:1a:61:22:f3:49:7c:77:4c:8b:d1:ff:
64:da:21:e2:3f:c2:5b:b3:bc:06:f4:f4:64:e0:92:
fe:e8:61:3b:c4:ab:07:c0:ef:92:4d:e3:ce:73:d6:
b0:63:ca:e7:0e:7f:9d:76:01:5d:4e:f7:3a:97:21:
93:b5:25:0a:0b:19:ec:37:f0:72:81:af:e1:56:89:
3a:8b:4d:cb:74:eb:ba:35:16:dd:f4:0d:4a:3e:a4:
f3:89:d2:8e:dc:e1:b4:98:aa:d4:12:7d:28:82:2b:
f6:4b:1c:bd:12:6f:db:b6:79:d1:28:9d:fd:5f:25:
00:7e:d8:8b:b0:88:ea:44:50:75:6e:ad:9c:6c:f7:
e1:c3:ac:e4:07:5d:1a:56:18:76:4d:7d:2e:52:34:
8e:f5:77:1b:90:12:d9:3c:55:13:89:c3:65:02:4f:
5d:e9:c7:43:00:24:41:be:05:66:ee:05:1b:15:a1:
77:94:ff:3b:0a:f6:b5:f8:64:89:3a:a4:66:dd:68:
5c:ec:5c:1c:fa:44:ad:fd:ba:a6:db:e5:34:88:31:
74:db:b8:e1:b9:85:db:25:6a:d0:d0:1e:f8:97:2b:
4c:01:69:a7:21:cc:e6:9a:56:d1:7e:7c:4d:90:e3:
e9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F0:AF:66:01:11:A3:79:49:9E:A4:77:11:42:CE:C6:3A:F2:F5:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFD6DBB4F01211EE9239839C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.190.0/24
Signature Algorithm: sha256WithRSAEncryption
16:eb:df:b3:79:45:22:a4:c6:63:c9:ff:b7:d7:f8:94:4f:15:
96:a1:ee:a6:f1:ab:54:26:45:b0:7a:db:cf:c7:f3:c1:96:ee:
ce:18:dd:48:86:d9:9b:8b:e8:62:35:97:6f:4e:6f:1d:eb:c5:
64:59:37:9d:66:42:18:0e:ce:78:f1:6d:d2:88:39:9f:63:35:
ac:1c:4e:e1:03:66:e3:af:38:d3:cc:54:74:bb:61:1d:b3:d4:
bd:c9:54:d2:dc:4f:db:40:2e:58:12:74:2f:29:5f:4e:b9:4d:
c4:69:cb:c7:23:69:65:16:78:91:37:6b:6a:b1:0c:9d:6d:c9:
d9:88:3c:40:cb:00:26:34:14:1f:44:d5:ac:c7:8f:07:c7:bc:
59:f2:84:5a:56:75:1c:5e:72:a1:62:93:36:a0:1b:4e:14:52:
47:a9:1c:63:31:38:2a:e6:9a:75:e2:bc:06:24:d8:07:0d:45:
46:f6:bb:bd:96:ea:3c:4f:d1:5d:40:ad:8b:7c:18:4c:c9:40:
65:a6:36:36:92:27:e7:4a:71:c3:42:ac:69:c2:38:d4:9e:8a:
a2:26:95:20:40:26:1b:e5:4a:83:e8:8a:83:a5:31:4e:cb:20:
af:45:01:54:97:98:0b:f2:f2:be:71:50:be:71:55:0f:ac:43:
02:fa:d0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:35 2024 by rpki-client on console-fra.rpki-client.org