Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCF57002F17111EE8F4CF05D775412E6.roa
File: BCF57002F17111EE8F4CF05D775412E6.roa (raw, json)
Hash identifier: u8fpA0E21vvIX1HJuKr4+uKTZOMwcEQFGHEwB4JUG50=
Subject key identifier: 1F:8B:E0:13:E9:CC:81:9F:B3:54:9B:0B:E2:FA:69:D8:71:29:C6:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A92A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCF57002F17111EE8F4CF05D775412E6.roa
Signing time: Wed 03 Apr 2024 04:22:10 +0000
ROA not before: Wed 03 Apr 2024 04:22:06 +0000
ROA not after: Mon 06 May 2024 04:22:06 +0000
asID: 147176
IP address blocks: 154.215.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43306 (0xa92a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 04:22:06 2024 GMT
Not After : May 6 04:22:06 2024 GMT
Subject: CN=660cd972-d087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:a1:36:90:6d:9a:41:04:93:b0:08:cc:ca:
b2:aa:2f:1d:05:9d:5d:c4:f6:2a:96:41:a5:40:0a:
2b:4f:20:56:96:3b:9b:60:48:0a:ce:46:20:1c:9f:
8e:65:4d:e7:10:f2:a5:5e:07:f0:7f:a8:0b:98:88:
8d:46:1d:6b:2a:29:6b:d1:e2:a8:10:ac:b0:da:e4:
a2:7a:9f:73:8f:28:07:7f:9a:a6:3c:0b:6a:11:4c:
69:2b:dd:bc:75:63:11:94:9b:15:5b:99:fe:f5:12:
fe:31:aa:a2:ad:09:14:49:70:1a:fb:d5:ff:9d:64:
97:e6:b6:d1:3a:11:39:bf:05:5e:3e:fd:1e:33:35:
af:51:f1:8b:a9:f3:dc:37:b6:95:03:88:ff:07:bc:
67:dd:d3:7f:b4:74:bd:26:6f:1f:08:e7:68:ca:a5:
5d:d8:2d:bf:b6:39:96:15:84:bc:28:ef:85:2f:e8:
0e:17:17:bd:63:9d:12:fa:4b:9e:51:84:e8:68:bf:
5a:9f:e3:50:7d:61:14:1b:03:ab:37:f9:f3:2b:23:
fa:5f:3b:87:83:dc:af:5c:bb:02:85:23:41:75:a2:
d3:e3:d4:2c:99:59:48:af:c6:d4:8f:3e:b4:3b:c9:
65:c0:f6:89:8a:9b:87:d1:60:ad:37:b1:fd:a0:23:
85:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8B:E0:13:E9:CC:81:9F:B3:54:9B:0B:E2:FA:69:D8:71:29:C6:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCF57002F17111EE8F4CF05D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.14.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:85:da:56:9a:f5:f9:7b:45:99:62:12:3b:64:af:72:2f:25:
03:2a:fc:48:7f:0a:7d:12:f0:f3:65:33:c6:48:c5:e2:df:2d:
7a:97:7f:7a:2d:76:58:2f:a4:ba:04:45:92:10:e1:76:5d:54:
a1:c7:0e:17:4a:0e:7a:41:14:83:90:0e:61:ad:1c:b3:13:e0:
b2:f8:52:54:e9:a7:0a:30:a0:58:49:41:a8:84:d3:36:0d:3b:
8f:67:0a:1c:f6:14:19:a4:e5:fc:ae:34:65:d9:3b:f6:a0:95:
67:fa:ca:13:69:1b:2a:c7:a8:d2:b6:02:0f:52:24:b0:92:d1:
51:51:f4:83:13:5d:d1:22:4a:99:29:c9:f4:60:2b:3e:a0:77:
7c:5b:a2:96:20:4d:cc:23:a3:1a:13:4f:fe:b4:23:53:b8:a0:
1f:0a:20:27:e6:14:05:31:75:4d:53:64:d8:ee:54:f8:7c:ca:
1b:d7:09:2d:5a:59:aa:ef:7d:13:66:9b:a4:8a:ca:59:f2:97:
3d:05:62:a9:4c:91:a4:c5:ad:4c:79:31:aa:d9:5b:ee:fa:09:
bc:1f:73:91:0f:fb:57:f0:8a:5c:75:2a:1b:ea:54:d6:80:06:
f6:c0:12:f5:a5:d3:12:8d:7e:31:2b:43:e0:53:a2:1f:7f:b0:
6a:bc:fa:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:37 2024 by rpki-client on console-fra.rpki-client.org