Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B04AB08CE74F11EEAB14138C775412E6.roa
File: B04AB08CE74F11EEAB14138C775412E6.roa (raw, json)
Hash identifier: VumRrQzGwNFZt4qCE0S6cTHg7bYR/NB8572CAC/QzT8=
Subject key identifier: C0:CF:54:CF:31:98:B1:07:D5:8F:07:62:DB:15:2C:EF:B5:CF:D2:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A463
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B04AB08CE74F11EEAB14138C775412E6.roa
Signing time: Thu 21 Mar 2024 06:53:14 +0000
ROA not before: Thu 21 Mar 2024 06:53:11 +0000
ROA not after: Tue 23 Apr 2024 06:53:11 +0000
asID: 44559
IP address blocks: 154.220.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42083 (0xa463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 06:53:11 2024 GMT
Not After : Apr 23 06:53:11 2024 GMT
Subject: CN=65fbd95a-557d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d0:4f:51:2a:b1:be:e4:93:1d:84:92:7d:dc:
77:63:e5:da:83:24:7e:44:88:eb:04:3a:56:ee:75:
a2:1a:3e:87:57:5c:95:7e:fa:9a:e3:a3:1c:77:e3:
eb:b5:52:71:c9:b1:82:50:fb:cf:b5:87:94:39:d7:
f2:09:72:46:5b:37:07:26:af:80:f7:1e:15:e9:6b:
67:52:74:94:e8:59:50:7a:6c:d4:cf:34:35:ab:c9:
9e:d5:a2:2a:03:70:53:a7:f9:a6:f6:65:71:f3:9b:
28:3c:ab:4b:e4:93:76:8d:b7:7d:81:b3:0a:09:44:
91:bb:ff:2e:53:ce:a0:de:ed:3a:42:ce:b4:2f:3f:
02:fe:ff:8a:81:6e:ac:0c:b8:66:8a:ee:93:45:3f:
6f:da:02:93:f9:cb:ab:e7:1c:0a:02:e2:d1:0f:5a:
0e:69:49:39:d0:5b:6a:fb:b9:97:f7:25:d8:7a:ad:
b3:41:c5:d7:d7:13:e2:de:9d:41:93:81:2a:f6:4c:
8a:97:80:4d:16:dc:95:77:22:8f:e3:a2:6b:ad:26:
9e:58:9b:75:9d:57:c4:27:9e:ee:7c:ad:fb:f0:59:
b2:75:fc:f2:91:52:e7:01:4f:6b:06:cb:ab:f2:6c:
7f:0f:c4:f0:75:be:f3:3b:e9:37:51:d1:5b:a5:57:
21:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CF:54:CF:31:98:B1:07:D5:8F:07:62:DB:15:2C:EF:B5:CF:D2:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B04AB08CE74F11EEAB14138C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.135.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d3:0e:9d:24:ed:17:57:b2:37:fa:a6:64:61:21:b3:66:f9:
c3:85:3b:29:75:a0:a4:a1:39:80:13:8b:1c:33:0b:b2:61:a7:
ac:b9:20:a1:03:ac:09:16:7e:07:52:bc:70:ad:7b:d7:0b:0b:
01:7e:e0:11:e7:ed:c5:e7:46:f9:b3:1e:06:c7:f1:cb:07:0e:
95:8b:8e:35:59:43:74:9b:fa:49:35:e1:4b:3d:7a:c7:58:c8:
17:f7:7f:2e:37:c6:35:df:6e:7f:d5:bc:3a:af:e8:c6:ea:6e:
2c:ee:a5:8c:6f:e0:f7:28:5d:c5:60:48:c6:bf:43:49:97:d4:
80:a9:00:14:bd:eb:50:eb:77:c2:f7:d0:d0:b2:58:66:24:46:
23:43:ea:58:db:25:d2:98:41:7c:ed:77:8c:e6:7e:b5:cb:14:
2d:71:b2:f9:bb:e9:4c:4f:dc:ec:1f:5e:a0:bf:2f:d8:22:85:
be:a6:4d:56:9e:d4:b9:c9:5f:54:78:b7:08:8c:31:66:88:0c:
a3:a9:49:0e:ab:d6:bf:a4:c9:1a:6e:49:86:9d:2c:0a:f5:ce:
a4:bc:d4:a3:41:a1:3a:d5:6a:db:9f:39:0a:33:b1:5a:a2:01:
10:19:98:ad:aa:a3:64:0d:a0:af:93:4c:5a:bf:55:fd:4e:de:
57:b1:7c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org