Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD631FD4EC0411EE8E1E126D775412E6.roa
File: BD631FD4EC0411EE8E1E126D775412E6.roa (raw, json)
Hash identifier: hQymHSzQPPxtxq7KzVzLJ+NMivoosb6YYYeeJzfzn58=
Subject key identifier: CA:97:D7:D8:FE:F2:35:FA:EF:A1:EE:31:BD:05:0D:18:77:BD:C4:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD631FD4EC0411EE8E1E126D775412E6.roa
Signing time: Wed 27 Mar 2024 06:39:20 +0000
ROA not before: Wed 27 Mar 2024 06:39:16 +0000
ROA not after: Wed 18 Sep 2024 06:39:16 +0000
asID: 2914
IP address blocks: 154.214.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42679 (0xa6b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 27 06:39:16 2024 GMT
Not After : Sep 18 06:39:16 2024 GMT
Subject: CN=6603bf18-15f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a7:af:fc:22:0a:1b:87:85:66:63:42:19:65:
66:4d:75:4e:52:dd:ee:0e:01:68:24:b7:89:69:5c:
ab:72:e1:99:f7:2f:ad:5b:57:9a:b8:91:01:47:50:
10:78:09:9b:44:77:72:72:12:68:98:95:c9:3c:7a:
3b:20:1d:15:46:5b:a8:ca:bc:68:9a:48:19:d9:7f:
c2:67:1e:83:32:ae:7e:bb:58:98:76:9b:e4:99:47:
29:52:04:e0:cc:6c:f8:de:26:5e:49:d8:97:e9:31:
d0:da:e0:06:8d:6a:e1:1a:27:0e:c3:d5:27:b5:48:
84:04:d4:ed:e0:47:93:98:33:8e:40:21:2f:92:08:
10:c1:68:8d:64:f0:70:12:1f:fe:67:ef:37:8e:8c:
76:3b:a1:3e:c6:63:f6:8f:a8:77:1a:c5:eb:75:7f:
81:9a:90:e4:19:d0:1c:d4:2f:d2:3b:ab:7f:ad:2c:
9f:b0:08:36:82:51:ef:cd:13:2b:6a:15:30:cf:28:
d9:f8:d8:b8:ed:ce:ef:05:03:9f:bf:b1:0d:14:df:
5b:8b:20:7c:93:1c:74:ed:6a:6f:90:2c:f7:12:e3:
ea:41:ac:b0:14:a8:98:1a:41:cf:8c:ee:44:04:a9:
5d:ad:cd:9e:b8:e4:50:9a:43:a7:55:aa:d1:91:a7:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:97:D7:D8:FE:F2:35:FA:EF:A1:EE:31:BD:05:0D:18:77:BD:C4:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD631FD4EC0411EE8E1E126D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.253.0/24
Signature Algorithm: sha256WithRSAEncryption
49:4d:50:ca:ba:68:97:2d:77:a3:4d:e9:c4:d2:6a:eb:0c:96:
5c:d3:80:48:f6:a0:48:d4:58:c2:a0:1a:c1:4f:f1:cd:0a:97:
e3:dc:27:bd:68:eb:39:45:ad:9a:d3:ed:86:8e:66:46:a2:36:
63:eb:c2:a3:37:4c:03:6b:1d:20:c5:20:ed:38:0d:34:54:b5:
73:13:00:82:86:6e:c7:07:21:d8:a0:8b:86:6e:ab:07:84:6f:
5e:76:64:b0:89:cf:43:25:e0:85:16:41:9b:21:30:03:6d:4f:
8f:35:a9:06:3c:06:49:c7:2d:c9:4d:59:e5:72:d7:f6:f2:c8:
ec:52:94:81:ec:4e:be:a4:0f:4a:6a:2e:31:a7:ef:a3:eb:79:
e8:b0:48:d3:9d:18:11:15:eb:06:ae:64:71:3c:3c:83:c5:e9:
06:df:84:0f:3f:44:48:ba:49:4d:7e:35:9b:b0:d6:d9:4e:23:
66:bb:11:0c:85:b7:c8:10:58:6c:0f:be:81:0e:e5:97:38:47:
3f:49:d9:2d:8e:bd:0c:90:24:56:f9:25:f1:2c:e3:81:f9:ef:
64:92:cd:38:7d:67:0d:02:e6:52:8c:ef:c1:73:94:d4:10:13:
a1:05:2c:7a:aa:84:96:e3:33:c7:44:20:d1:c2:3c:a3:d5:41:
99:28:07:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org