Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B213981EE75111EEA33FF39B775412E6.roa
File: B213981EE75111EEA33FF39B775412E6.roa (raw, json)
Hash identifier: aMk8H7ERgIW1b+FT129iYrXCPqTgo0o+cOsFgh0KbZ4=
Subject key identifier: 06:67:83:64:34:A3:47:DC:F3:71:85:46:0A:F7:6C:7E:C3:46:9D:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A477
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B213981EE75111EEA33FF39B775412E6.roa
Signing time: Thu 21 Mar 2024 07:07:36 +0000
ROA not before: Thu 21 Mar 2024 07:07:33 +0000
ROA not after: Tue 23 Apr 2024 07:07:33 +0000
asID: 44559
IP address blocks: 154.218.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42103 (0xa477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:07:33 2024 GMT
Not After : Apr 23 07:07:33 2024 GMT
Subject: CN=65fbdcb8-18d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3a:9b:0b:91:46:ec:b9:f5:bb:6c:b2:11:d3:
bb:9a:97:73:82:b5:1b:1e:85:9e:b9:51:02:77:ad:
90:f7:b0:03:39:24:87:4c:b0:78:56:b4:fa:3c:fc:
a9:84:97:8e:f0:15:d7:31:38:f2:33:58:69:99:74:
68:0a:8c:6b:c3:73:b2:45:85:34:75:5b:54:42:c7:
47:1f:cf:3a:33:20:22:3c:b0:35:82:3c:85:81:2b:
51:97:9a:69:db:d9:f0:1b:02:0b:02:34:49:4f:d0:
fe:33:60:6e:87:71:93:26:61:99:42:53:be:4b:ad:
18:47:f0:9d:54:e0:9b:81:a6:50:96:6d:30:43:28:
15:b9:76:4b:cd:a4:56:71:43:cb:0a:c7:b5:e8:3b:
b6:a8:17:90:8a:ee:ab:be:fd:1e:c2:b2:3e:81:18:
61:dc:f5:a2:f6:a6:bf:06:7a:a6:1b:37:9d:43:63:
c6:66:42:5a:36:64:50:7d:68:ab:d6:09:80:c0:d0:
e3:6d:c6:5d:e1:5c:10:51:15:9a:96:37:f2:b5:3e:
08:87:8c:e7:4c:7a:52:91:bb:ad:07:ce:76:d9:b0:
8e:a1:51:7f:45:7c:8b:04:06:da:83:55:58:66:01:
3b:28:51:b7:bb:e3:62:6d:3a:de:00:bf:dd:d9:dc:
43:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:67:83:64:34:A3:47:DC:F3:71:85:46:0A:F7:6C:7E:C3:46:9D:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B213981EE75111EEA33FF39B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.61.0/24
Signature Algorithm: sha256WithRSAEncryption
73:40:10:99:b8:6a:f7:e0:c3:57:a2:62:a3:67:8b:10:aa:0b:
72:a2:88:ba:c6:80:d9:ee:45:10:b6:92:a4:a0:1d:3c:1e:90:
6e:40:e8:13:33:33:56:d0:d9:1a:a4:95:a2:dc:23:c5:0e:12:
75:cb:35:3f:db:42:ee:b2:9a:b9:6e:a3:65:df:d1:56:86:cf:
28:3a:9f:a6:84:6b:df:a3:b1:f2:47:36:5d:94:87:0a:4b:51:
6b:25:46:67:22:d0:57:af:20:85:7d:ad:25:19:be:bc:7b:af:
cd:df:cc:2b:16:00:36:53:bd:01:88:38:e6:c5:a5:0e:b6:b7:
fb:7a:a2:62:ae:af:4a:a0:60:af:ee:f4:45:1d:25:a0:de:4e:
37:59:81:2f:14:d4:57:4c:d7:e7:e5:32:93:35:56:cb:24:26:
24:81:e4:fa:ad:25:e2:39:59:3e:18:00:7f:81:a5:d6:18:14:
77:4d:dd:15:3e:bf:1f:70:cd:34:43:31:db:3a:97:94:10:20:
ab:fd:74:7d:ce:ba:e3:43:58:1f:38:64:e2:68:18:01:70:5b:
cb:ce:e1:29:6c:27:ee:b4:15:6d:4b:5c:b9:72:61:c3:a7:9b:
be:62:42:5e:48:3b:1a:25:f5:9c:d5:a6:a0:e1:b6:de:5d:cc:
b9:ab:18:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org