Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B227A94AE75011EE822C0694775412E6.roa
File: B227A94AE75011EE822C0694775412E6.roa (raw, json)
Hash identifier: Am191l5P++mce4wpgYVC6/8V8F6xzScW2+s+jeA0TPw=
Subject key identifier: FC:B7:D2:87:F6:17:22:42:CE:69:FD:7E:38:7C:E6:D6:03:B9:F2:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A46D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B227A94AE75011EE822C0694775412E6.roa
Signing time: Thu 21 Mar 2024 07:00:27 +0000
ROA not before: Thu 21 Mar 2024 07:00:23 +0000
ROA not after: Tue 23 Apr 2024 07:00:23 +0000
asID: 44559
IP address blocks: 154.220.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42093 (0xa46d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:00:23 2024 GMT
Not After : Apr 23 07:00:23 2024 GMT
Subject: CN=65fbdb0b-9040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:58:61:fd:44:2d:7c:ac:95:fb:2b:f2:2c:ef:
15:c1:03:84:46:3d:c0:b8:9d:c9:01:60:4e:84:21:
ee:17:4c:18:9b:fa:16:5d:30:35:a3:85:a2:da:06:
c0:e5:76:9f:7f:e9:a4:ca:4b:93:08:b2:4d:97:33:
10:72:26:33:97:cf:37:e9:7f:64:27:0a:e2:bd:eb:
b6:bf:42:b2:b6:fd:ae:7f:37:d3:96:68:b7:15:ba:
5d:19:ab:08:ba:e0:31:85:6e:b1:b6:d2:95:8a:96:
20:d7:e4:4a:f9:85:1e:53:38:75:1a:39:dd:68:2d:
ab:14:8a:e6:cb:12:ef:13:5f:88:8c:5b:c6:4c:80:
9d:bb:5e:85:e1:42:3b:64:72:f2:c6:24:74:42:df:
3d:45:d0:c0:ec:70:6e:bc:66:cd:d4:c4:1b:ff:55:
f0:fa:bf:35:a3:02:45:32:38:6b:81:0c:d2:f1:92:
0b:7e:64:5b:3e:83:e9:f3:ac:a1:1b:bb:36:8b:f3:
4e:ec:0e:0b:3f:a8:55:e1:23:80:d9:e5:68:29:d6:
fc:cd:e7:96:18:d4:24:f2:16:79:60:f9:f2:cc:79:
a7:4b:1e:c3:a7:23:80:b3:25:45:8f:8c:33:28:80:
47:48:c4:b9:3c:03:82:13:f6:31:40:12:79:f3:cc:
43:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B7:D2:87:F6:17:22:42:CE:69:FD:7E:38:7C:E6:D6:03:B9:F2:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B227A94AE75011EE822C0694775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.130.0/24
Signature Algorithm: sha256WithRSAEncryption
47:c6:ca:5b:60:c9:4c:4a:17:d3:c0:a1:4d:15:1a:84:ae:68:
1f:9e:98:75:01:dd:c7:a6:be:43:d7:68:06:52:9a:23:98:3b:
f3:e1:95:5e:e4:06:ca:c2:bf:04:9e:02:8f:6c:38:53:fa:64:
ae:61:79:1b:40:42:19:b3:2b:dc:fa:59:a2:46:54:9e:09:fd:
ec:9c:44:8c:90:35:1b:34:d2:73:69:27:47:0a:d5:46:54:7a:
ab:2b:3f:4b:1e:a5:3f:2b:c1:46:aa:4c:81:7b:91:7f:f9:74:
16:ef:fd:46:ec:76:49:be:65:2e:42:97:bb:42:54:c9:95:d0:
0b:40:14:12:64:ee:8f:a4:61:be:b5:3a:e6:94:2f:84:83:ba:
2a:21:25:e5:32:83:14:ab:ef:aa:9b:04:dd:43:72:f9:98:7c:
9c:d1:61:71:41:f2:94:30:87:7c:50:be:ae:4a:0c:62:75:45:
2d:3e:aa:0f:2a:f5:4c:84:05:9d:f3:de:6c:73:26:97:30:32:
33:60:5a:5a:83:d3:e8:d0:e6:83:11:ca:90:37:88:0f:d0:3e:
6c:de:0e:45:df:d7:78:0a:ee:86:14:69:7e:08:34:1c:cb:a9:
e2:56:4d:56:f3:20:8b:b2:4d:34:14:f2:2d:1b:25:34:6a:10:
27:73:d4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:24 2024 by rpki-client on console-fra.rpki-client.org