Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B97ACEE8E3FA11ED8205A7A82F6D8C1D.roa
File: B97ACEE8E3FA11ED8205A7A82F6D8C1D.roa (raw, json)
Hash identifier: 2UD8yshoaeyVNZ6fVDEaabSFTW+nu07Yf+0IR95sXtY=
Subject key identifier: 15:E1:6E:9F:44:DC:0B:C2:F5:55:EC:2F:AE:C5:A6:07:5F:2D:4E:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 1FE9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B97ACEE8E3FA11ED8205A7A82F6D8C1D.roa
Signing time: Wed 26 Apr 2023 06:22:31 +0000
ROA not before: Wed 26 Apr 2023 06:22:28 +0000
ROA not after: Mon 30 Dec 2024 06:22:28 +0000
asID: 35916
IP address blocks: 154.216.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8169 (0x1fe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 06:22:28 2023 GMT
Not After : Dec 30 06:22:28 2024 GMT
Subject: CN=6448c327-765f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3a:d7:20:82:4b:50:61:f4:da:45:cf:f4:a6:
0d:b9:30:59:35:cd:ae:0a:cc:72:d7:09:36:cb:ad:
6e:4d:e1:51:8e:8c:52:55:0b:e9:47:2c:3d:1f:3c:
39:6a:87:9e:b2:6f:57:cc:c9:53:99:23:2e:bf:4e:
8e:6e:0a:2a:90:39:a7:ff:4b:61:6e:a5:7e:a8:b1:
c7:79:21:31:4c:6e:42:71:ca:e6:0d:ca:c5:93:9b:
70:e8:3b:07:9e:e0:0c:db:6a:09:fa:da:61:03:ac:
76:65:cb:07:bf:32:a5:57:93:44:b4:00:dd:ba:d0:
c9:74:e6:d4:96:a1:d1:56:97:19:4e:c8:dc:1f:99:
c1:0c:00:d6:89:77:2c:85:df:9e:61:d0:83:0c:ba:
c2:60:0b:aa:ec:8f:85:05:35:eb:20:fc:2f:b2:c3:
ca:d9:90:63:fc:07:44:69:7b:a1:bf:5a:23:c9:12:
6f:bc:c2:02:9c:22:c7:f3:8b:0b:ed:20:9b:a3:f0:
5d:07:08:3e:9f:e8:36:5d:c5:64:39:33:a3:c7:9e:
64:ec:94:62:55:ee:31:51:f2:ac:9b:dd:bc:f0:19:
8e:55:71:5b:4a:b6:a1:66:f9:40:71:88:22:63:b4:
19:66:87:95:19:4d:22:2a:ef:ee:7a:fc:7c:3b:57:
13:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E1:6E:9F:44:DC:0B:C2:F5:55:EC:2F:AE:C5:A6:07:5F:2D:4E:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B97ACEE8E3FA11ED8205A7A82F6D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.16.0/20
Signature Algorithm: sha256WithRSAEncryption
02:7c:1c:10:ce:3f:54:92:61:5a:7c:db:c0:80:29:0b:2b:d9:
cb:41:8b:11:05:a1:13:79:df:57:08:a5:69:90:e6:93:f0:97:
bc:e5:c5:c1:3b:bd:9e:f5:1e:dd:9c:d6:9f:4d:ab:97:17:89:
14:e3:07:13:7c:cc:38:ef:23:82:92:4c:08:c2:1f:7f:be:73:
ca:b9:ae:bf:6a:2b:b6:a1:e0:94:b1:00:2a:d0:bd:30:8b:0e:
b8:90:54:bd:a8:4f:84:7d:41:3f:2e:ea:b5:a5:e6:9f:5d:4c:
3f:a6:fd:52:91:ee:2d:05:0a:32:40:d8:aa:fd:6a:ab:eb:9b:
1d:84:48:ee:12:28:b2:58:4a:f5:d7:2f:ea:fb:32:b4:63:34:
8d:fa:1e:61:89:27:27:83:99:f2:f4:0c:ac:1e:ca:8e:48:93:
ae:27:2d:cc:c8:86:ef:67:92:84:42:b6:7f:32:e5:d5:cc:99:
7a:7b:c7:c0:49:02:d7:ae:b6:4d:49:ba:bb:f9:61:8d:b1:ab:
72:6e:bc:db:c3:57:24:1b:62:f4:b6:58:62:1d:cf:87:30:7e:
8c:6d:b2:be:8c:cd:17:3c:30:97:66:dc:0a:00:5c:6e:26:ae:
f0:25:7f:98:54:5f:fc:27:60:88:c3:9b:b4:78:ea:ee:02:dd:
72:b6:55:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 14:34:05 2024 by rpki-client on console-fra.rpki-client.org