Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0316C96F61111EDB02FF8694AD9E6FC.roa
File: C0316C96F61111EDB02FF8694AD9E6FC.roa (raw, json)
Hash identifier: bcCHQZqf2v58dd1BGGDvb12Bg5Gw9awWKRRLXlVmKzA=
Subject key identifier: 82:CA:5F:26:84:0C:7A:8B:D0:DD:A5:16:D7:5B:41:4D:F4:FA:AD:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 25DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0316C96F61111EDB02FF8694AD9E6FC.roa
Signing time: Fri 19 May 2023 06:52:42 +0000
ROA not before: Fri 19 May 2023 06:52:38 +0000
ROA not after: Tue 30 Apr 2024 06:52:38 +0000
asID: 58879
IP address blocks: 154.218.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 06:52:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9695 (0x25df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 19 06:52:38 2023 GMT
Not After : Apr 30 06:52:38 2024 GMT
Subject: CN=64671cba-c683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:4e:8a:2e:a1:42:61:80:30:bb:ee:ff:f6:27:
13:8d:ac:b9:3b:22:cd:c6:83:a3:87:4c:59:ae:fa:
cf:36:12:12:03:b6:a2:72:89:17:7e:74:bf:68:68:
e2:3c:c9:26:26:76:ba:01:59:9d:ec:88:db:45:ce:
d5:48:2a:05:49:3f:1a:08:0a:48:c5:79:54:4f:39:
f9:22:29:b4:55:c7:f7:af:19:fd:ee:3e:9d:96:f1:
cb:44:a0:6c:d5:7b:cd:c3:95:76:69:7d:07:a0:05:
a9:ac:fb:32:c8:6f:36:4c:d7:e7:b2:eb:ba:d8:34:
a8:b2:c2:70:fe:57:38:2c:04:bc:9c:80:ac:0e:7c:
22:02:49:2c:2b:c0:39:0f:40:bf:b9:34:c3:f8:14:
2d:a7:c5:e0:00:80:1b:8c:58:b1:61:d0:e9:01:76:
bc:a5:cf:2e:78:65:63:e9:93:35:c8:e0:8a:df:49:
42:a6:60:bc:76:a4:80:90:7a:50:1d:28:e5:85:e3:
ee:69:f2:fe:97:cf:06:02:ed:31:10:2d:06:25:b9:
6f:62:55:b6:57:b6:b0:06:55:a7:fd:2f:44:fe:0d:
dd:2e:07:73:7f:30:31:52:0d:ca:fc:ff:28:ba:b7:
63:92:a1:f8:86:8e:3d:58:c8:1a:a2:d5:3e:97:b4:
ca:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CA:5F:26:84:0C:7A:8B:D0:DD:A5:16:D7:5B:41:4D:F4:FA:AD:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0316C96F61111EDB02FF8694AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.8.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:79:f8:85:a4:d1:fd:26:7d:79:26:c2:5e:58:26:d1:22:fb:
94:e6:a7:36:ff:a3:54:9d:f8:18:a9:cb:50:f8:f5:98:d6:99:
d5:6f:fa:15:cd:04:82:ac:c7:5c:a4:4b:fd:9f:3e:55:de:cf:
92:a6:d2:38:54:36:a6:fc:2d:d8:dc:0a:c9:91:bf:19:1c:f4:
45:1c:d7:e1:0f:22:ea:d7:25:d2:3b:5b:f0:67:fd:89:54:1f:
a1:ea:b9:35:b2:e1:19:54:33:61:40:d6:68:09:f2:dd:6a:63:
f5:38:72:45:32:38:a6:3d:94:30:f6:8d:d8:cc:2e:15:23:c7:
bb:42:5c:82:ce:15:2f:d1:5c:c2:2c:6c:52:16:92:22:5c:e4:
e0:6a:35:0a:06:71:17:45:ef:10:77:2c:82:78:79:4c:d6:c5:
cd:99:99:57:53:91:23:2b:80:cb:37:6c:9c:df:df:ca:0a:22:
39:36:36:d0:a8:52:c1:48:55:cf:38:06:9d:48:a9:a9:0d:34:
ae:9b:d6:b9:3f:c5:c6:1f:d3:32:f5:ba:62:50:99:31:a2:c9:
20:5d:96:78:5d:7a:98:91:91:24:7e:38:ee:ab:fb:91:ff:af:
9f:9c:8d:ef:41:31:50:85:05:8a:95:e9:f4:bf:d5:f5:c0:2f:
f3:8e:61:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 12:50:15 2024 by rpki-client on console-ams.rpki-client.org