Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7C568C0F86B11EEAF93CD12017001B1.roa
File: B7C568C0F86B11EEAF93CD12017001B1.roa (raw, json)
Hash identifier: Mz6UgsXUkY0N0bCktr0d713RkHYp+Wma8ZY90+F+XUk=
Subject key identifier: B5:95:B6:34:9E:8A:8E:C1:03:1C:61:86:8F:02:8B:E9:1A:15:43:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB7E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7C568C0F86B11EEAF93CD12017001B1.roa
Signing time: Fri 12 Apr 2024 01:26:42 +0000
ROA not before: Fri 12 Apr 2024 01:26:39 +0000
ROA not after: Sun 19 May 2024 01:26:39 +0000
asID: 138915
IP address blocks: 154.93.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43902 (0xab7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 12 01:26:39 2024 GMT
Not After : May 19 01:26:39 2024 GMT
Subject: CN=66188dd2-918c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:81:7e:d5:ba:34:96:b3:3d:f8:9c:e3:bf:
72:fd:4e:15:54:19:b1:38:95:ab:35:83:93:69:6a:
b2:a2:7f:bb:7d:f0:0e:a3:e0:9f:a0:85:35:da:a2:
02:87:6c:5d:3a:53:bb:46:cd:05:43:c6:06:e3:6e:
04:e1:11:82:5d:57:6c:62:ff:e5:83:58:b6:d2:f1:
76:6f:c4:fe:72:81:42:90:ba:7c:c7:ee:ac:1f:ca:
76:1a:9d:95:96:8f:20:7a:b1:19:79:92:15:97:d3:
16:3c:45:02:12:23:d7:05:05:1b:38:5e:16:ae:39:
d7:c0:df:1a:06:ca:22:4e:0a:fe:3d:8b:5e:7f:5d:
a8:58:28:f3:35:bf:05:8b:18:60:e1:39:3d:c0:9d:
0d:f9:25:96:97:8d:a5:e8:a5:c9:ce:48:2e:e2:5c:
21:74:15:db:cf:d5:87:13:f5:23:1d:2f:89:61:3d:
af:c4:35:a8:fa:7d:65:c5:06:b0:0c:3a:29:40:c0:
77:60:23:4e:32:70:33:d9:2f:82:03:95:23:9e:db:
69:93:a1:6c:72:be:9d:48:62:b8:a1:42:ad:b5:87:
90:07:1e:5e:66:ff:e7:10:a7:ff:2b:f2:04:42:0d:
21:c4:2c:cb:8d:b4:9d:8c:2b:55:86:c2:fb:14:d2:
ff:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:95:B6:34:9E:8A:8E:C1:03:1C:61:86:8F:02:8B:E9:1A:15:43:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7C568C0F86B11EEAF93CD12017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.47.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:6b:c0:0b:1e:e4:12:57:33:d4:64:db:63:fd:4d:8d:6d:08:
9f:62:22:cb:c2:47:60:14:ad:15:c7:de:63:35:c2:57:7c:ab:
d7:6c:bf:9e:9e:44:00:60:dc:5f:df:e3:7e:46:3b:0e:5a:30:
ee:f8:4f:7d:a8:29:bc:8c:21:11:b5:dd:ee:bb:3c:a4:ef:6d:
bc:78:6c:a2:6c:35:68:7d:32:fd:a3:07:36:03:7d:56:53:00:
67:58:e5:83:2e:91:da:05:56:1c:74:c9:85:93:a5:71:e9:38:
82:c8:8f:f4:07:ed:7c:4e:4c:33:91:a5:b0:79:60:e4:99:0a:
cb:0c:0b:67:72:76:5b:9f:3a:89:6a:30:51:5b:a4:03:4e:21:
7a:71:e1:0a:0d:b8:d7:16:06:4d:83:9b:f9:07:eb:82:bb:6f:
cb:9f:66:3a:7e:78:d4:e2:c5:3d:36:2e:e5:e6:71:2e:9b:cc:
bd:cf:ef:23:45:b7:da:0d:50:fb:ca:0e:4a:be:ac:58:8c:da:
58:c3:0e:53:7e:cb:8c:3b:f0:e7:c7:12:21:01:fa:17:0c:58:
c0:9d:be:46:3f:13:85:31:ca:69:a8:43:de:c0:8e:5e:08:25:
d7:0f:6e:02:da:ec:f5:24:4b:dc:c5:c5:8f:69:2c:16:e0:e9:
d0:a7:36:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org