Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6863536FB9311EE944B844F017001B1.roa
File: B6863536FB9311EE944B844F017001B1.roa (raw, json)
Hash identifier: GitzFUmwU+Df2cRei1jHLYhWs2/bVq5D1cXSVlxR2GA=
Subject key identifier: 76:07:8B:6E:BD:F9:FF:1D:5A:87:AD:76:5E:48:AE:CE:09:07:23:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6863536FB9311EE944B844F017001B1.roa
Signing time: Tue 16 Apr 2024 01:50:34 +0000
ROA not before: Tue 16 Apr 2024 01:50:30 +0000
ROA not after: Thu 09 May 2024 01:50:30 +0000
asID: 141883
IP address blocks: 154.216.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44281 (0xacf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 01:50:30 2024 GMT
Not After : May 9 01:50:30 2024 GMT
Subject: CN=661dd96a-1a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:96:3f:b3:96:c5:02:83:d9:63:bb:99:e0:0a:
cc:f3:d8:53:82:56:d2:79:10:6b:1b:1b:57:bc:13:
ec:78:23:ca:c8:80:41:38:e1:1e:66:48:60:bf:2f:
2b:17:07:56:7d:a1:28:57:ab:bf:76:06:12:86:af:
61:9a:f3:93:de:2b:af:fd:c2:ea:b9:bd:77:f6:b9:
bd:9a:61:cf:55:60:07:44:f8:1a:c4:5e:f9:08:44:
56:24:53:c6:5f:fa:75:ff:54:39:ba:c7:c4:3b:2e:
90:67:66:21:c4:07:a6:14:2b:13:7e:f5:8e:3d:1f:
19:89:df:8c:c1:0e:ac:3e:14:85:78:46:2f:c3:74:
36:e4:16:c9:56:bf:4b:aa:f7:1b:dc:fd:0b:6c:fa:
ad:79:72:0b:5e:dd:97:ea:75:36:af:c0:ed:1a:29:
f7:30:a5:29:d8:77:e5:de:3c:04:c5:0e:5f:17:8b:
14:bb:d0:71:bf:4b:08:9d:cf:9c:27:dc:aa:e0:4a:
20:68:c0:a7:7b:49:a1:65:95:31:0d:d3:e5:c0:db:
27:af:7a:9f:10:28:98:6a:86:6a:65:67:98:79:60:
6c:56:e4:8e:9d:89:e2:86:dd:fa:fb:29:b1:20:a7:
c1:54:e2:a3:10:f5:28:13:72:f3:5e:c7:73:9a:c2:
84:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:07:8B:6E:BD:F9:FF:1D:5A:87:AD:76:5E:48:AE:CE:09:07:23:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6863536FB9311EE944B844F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.128.0/18
Signature Algorithm: sha256WithRSAEncryption
55:2c:d9:7e:31:cb:da:6d:98:da:26:58:39:ce:91:a7:38:fe:
4a:c7:a4:65:16:c5:84:67:0e:42:24:b1:ad:b8:fb:65:43:80:
43:df:21:d0:4c:85:b1:e2:34:12:d8:17:4f:2c:bc:ea:f0:63:
0a:01:a7:41:f3:39:b8:45:ba:10:a4:88:d5:b3:87:fe:f7:28:
f4:0b:cf:29:d8:9f:05:b4:9a:ca:a4:3c:e9:a6:84:0a:5e:97:
b5:96:3e:47:ec:c3:93:d7:9f:d1:05:57:e7:39:c5:68:00:99:
f9:50:33:a3:5c:bc:4d:78:b5:fa:ff:cd:65:6d:e5:af:58:27:
0a:34:d8:fd:3a:c1:b7:9f:d2:32:c6:0e:79:32:f8:a5:ad:11:
f4:29:b1:2a:d3:2e:25:fc:f7:a2:d3:7c:66:14:d6:01:28:5c:
e1:ed:ae:90:e3:0e:19:7b:60:5c:4b:a4:59:ff:73:db:b1:08:
c9:f7:93:4b:70:c1:6e:99:39:6e:f2:32:af:d7:cd:f7:4a:ec:
99:a8:0d:8c:8d:c0:c0:29:9c:1a:0d:6f:77:77:d1:f0:18:0c:
e3:a7:48:07:29:dd:96:14:e7:d4:38:d9:ad:e5:0b:a5:d3:16:
bb:46:a6:41:39:94:27:09:88:ca:a7:c4:da:aa:64:0f:d3:4e:
d0:5d:fa:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org