Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE680776F0BB11EE98E31F4C775412E6.roa
File: BE680776F0BB11EE98E31F4C775412E6.roa (raw, json)
Hash identifier: 8GLrLJtJgzZWj/g7+Q8y1BEuMcoIqMVvkPZBVUhD0T4=
Subject key identifier: 53:FB:FE:7B:FB:7D:B4:F8:E3:CE:87:F6:99:99:C1:14:48:2B:14:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A8B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE680776F0BB11EE98E31F4C775412E6.roa
Signing time: Tue 02 Apr 2024 06:39:24 +0000
ROA not before: Tue 02 Apr 2024 06:39:21 +0000
ROA not after: Mon 30 Sep 2024 06:39:21 +0000
asID: 211392
IP address blocks: 154.84.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43191 (0xa8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 06:39:21 2024 GMT
Not After : Sep 30 06:39:21 2024 GMT
Subject: CN=660ba81c-b986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:65:fa:5c:b2:de:f5:d6:5c:86:d5:89:72:22:
2c:a3:1f:16:3e:d6:06:48:68:58:26:e4:75:9b:0d:
85:e5:a1:4b:d8:ef:6e:0e:bd:4d:d3:a5:88:a6:58:
34:4d:33:ab:88:15:5b:cf:36:22:93:b4:ca:4d:62:
93:27:04:a0:f7:2f:03:65:57:c0:ce:56:28:7e:42:
24:89:c2:28:c8:8f:5a:28:8f:56:4c:94:0f:04:12:
d7:65:e8:99:18:ab:27:9c:1b:c0:ef:9b:52:82:59:
14:39:fa:6e:d1:f4:ac:d7:e5:e4:cf:f8:a8:8c:d5:
be:d3:a0:42:47:ec:eb:f3:9d:9e:2b:8a:b5:2f:df:
e2:a5:f5:ef:dd:aa:e9:12:86:61:d6:69:81:bd:38:
25:1e:29:43:90:bb:f4:7f:39:70:17:54:a0:09:05:
df:aa:34:36:56:a8:4b:5a:9a:64:98:a2:b7:8a:5e:
6d:19:33:74:b1:03:ca:32:9a:d5:eb:a9:57:cf:36:
bb:ac:98:a1:4e:ca:b4:04:6a:c4:1e:ae:a8:f6:3b:
db:5c:11:13:25:f4:fd:2c:53:fb:26:76:02:79:cc:
49:56:24:02:ab:8c:ea:2b:1e:e5:93:32:10:2a:d0:
af:ea:10:7e:c1:32:05:07:ca:fd:2b:1b:68:a2:00:
74:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FB:FE:7B:FB:7D:B4:F8:E3:CE:87:F6:99:99:C1:14:48:2B:14:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE680776F0BB11EE98E31F4C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.14.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:e0:cb:8e:49:e4:4e:6d:28:50:90:3f:3b:6e:8c:42:6a:00:
fc:45:93:11:ec:d7:cf:d8:3e:ed:b7:ac:29:97:46:80:a8:ef:
32:19:ed:1a:38:a1:14:3a:a6:d5:19:38:5a:71:20:9e:49:03:
fd:7a:8d:df:f2:b5:3d:28:7f:19:fa:50:00:27:5a:17:f1:34:
7f:8e:59:25:48:3e:ba:22:83:fb:0c:f9:f3:f5:dd:87:14:9c:
3b:99:83:85:cf:13:37:af:5f:af:7b:30:cc:77:1e:62:1c:db:
9b:10:ab:e3:07:51:97:f8:8c:6b:fe:53:d0:8a:63:da:d9:15:
9f:f6:a6:cd:67:0a:dc:07:8c:10:37:2d:9f:3b:15:a0:d1:53:
63:a7:e4:98:f8:d8:2e:b8:1c:7c:f2:2e:93:88:8c:fa:6d:99:
32:30:0a:5c:30:20:b0:0f:52:52:0a:07:36:0b:c1:84:64:2c:
c1:72:dd:cf:16:4a:ae:66:ce:e6:5d:54:55:6b:1f:8f:9f:9d:
fd:a0:82:99:fc:b6:11:aa:be:e0:03:8c:2f:9e:9e:35:a7:90:
38:98:c9:83:e1:9a:f2:75:7a:a2:e7:67:69:28:f1:57:db:99:
3b:79:fe:ba:61:90:0c:f1:cc:a1:65:f8:ce:96:c6:ef:c3:d0:
9b:27:ee:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:19 2024 by rpki-client on console-ams.rpki-client.org