Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8C1B4B253A311EEA19B9B6C4AD9E6FC.roa
File: B8C1B4B253A311EEA19B9B6C4AD9E6FC.roa (raw, json)
Hash identifier: ijSews8RHyZ25sDB+tKg0reMjout1zhMYVIUZhhSA9c=
Subject key identifier: B5:85:3E:01:62:1A:14:D4:E5:EF:18:36:42:44:2D:D4:78:6F:4B:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3DB1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8C1B4B253A311EEA19B9B6C4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:41:54 +0000
ROA not before: Fri 15 Sep 2023 08:41:51 +0000
ROA not after: Sat 08 Jun 2024 08:41:51 +0000
asID: 136970
IP address blocks: 154.197.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15793 (0x3db1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 08:41:51 2023 GMT
Not After : Jun 8 08:41:51 2024 GMT
Subject: CN=650418d2-68e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:24:26:17:4c:d4:40:cd:ad:48:e6:fd:56:e8:
a3:9a:47:e3:0e:d9:6e:94:f3:3f:f4:2f:30:f7:1b:
a2:ed:74:de:46:53:a3:52:09:bb:88:a8:c8:72:16:
1c:5d:4f:6d:3a:ec:0f:1d:ce:c7:36:ed:dc:76:5d:
f5:c8:b6:d3:74:17:d3:b6:cb:6f:47:12:c4:d2:62:
c4:90:a6:56:e9:99:10:47:ae:f4:5a:de:e2:3b:49:
ae:ef:4e:0f:93:cf:ef:56:6c:2e:91:77:0a:b6:13:
98:eb:3d:03:65:ee:f4:a2:9f:e0:af:29:5e:45:44:
78:c4:d6:96:43:5b:2c:3b:97:8e:4a:66:aa:f9:d8:
12:61:8d:1b:df:c4:25:8c:e1:d4:25:9c:f8:2c:40:
a5:38:5b:db:ba:ab:0d:23:c3:62:f8:c8:8c:18:7e:
e2:cc:fd:56:9e:81:3f:b8:4a:fb:0d:a0:43:0c:fc:
18:35:8d:27:62:d8:ca:88:1a:1d:0c:6a:29:4d:9e:
91:0a:20:4b:14:49:e4:e1:5d:cc:19:b9:a0:93:b2:
20:ce:76:16:f5:e1:50:20:df:78:13:14:4c:5b:be:
e7:b5:96:09:79:e7:66:6b:23:2f:d2:3d:1b:73:d9:
f3:2b:cb:62:34:4e:68:0f:a3:25:e4:55:ba:b9:cd:
99:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:85:3E:01:62:1A:14:D4:E5:EF:18:36:42:44:2D:D4:78:6F:4B:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8C1B4B253A311EEA19B9B6C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.6.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:99:56:d3:90:c0:3b:a7:7d:73:0b:22:51:fd:dc:6b:89:65:
ab:84:71:9e:b7:f1:82:73:ad:be:df:80:a2:f4:ab:67:07:68:
9b:b0:12:ad:8f:0d:d5:c3:af:2c:b9:8f:54:b6:e4:ab:ad:21:
b0:ea:32:12:68:95:6d:55:8f:65:f4:1f:42:2d:ef:8c:2e:ea:
b0:45:08:f7:b3:44:a9:2a:bd:54:e2:6d:cc:78:e5:8e:6b:e8:
2c:a5:c3:20:39:7e:9f:2f:de:d2:09:9e:2a:25:60:74:36:4a:
6e:00:96:c1:00:56:37:f7:4d:6c:8f:ec:c2:47:bf:ce:e9:92:
a4:48:0c:3e:ed:a3:0a:e6:ba:e4:ea:0d:43:36:c0:bd:2b:73:
53:50:0d:e2:c2:cd:ad:63:9a:47:b5:42:de:6c:42:69:14:c9:
39:d2:93:a8:ab:aa:47:a2:44:67:f9:de:75:45:38:a0:1b:0b:
e9:0b:f6:b6:a1:c0:87:fe:9e:63:39:69:ff:73:9d:74:e0:8a:
da:a2:61:72:e2:3c:0d:d0:8d:95:f3:06:12:54:61:e2:f4:fc:
db:f6:a5:7d:ac:bd:cd:4b:7b:08:1a:05:67:d8:4a:b0:d3:53:
6d:2d:de:e6:86:4e:d1:21:48:18:d1:b4:4c:96:5c:f8:42:43:
d8:6f:d5:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:36 2024 by rpki-client on console-fra.rpki-client.org