Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C14027D6E73711EEBCECD14F775412E6.roa
File: C14027D6E73711EEBCECD14F775412E6.roa (raw, json)
Hash identifier: fIWD+yqYD1ozr5eXkJ22cFMya/NSAqyqG5rMN1lHwL0=
Subject key identifier: 62:83:3D:F3:C4:01:AC:F2:1F:85:05:54:9D:82:1F:7B:12:CB:80:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A378
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C14027D6E73711EEBCECD14F775412E6.roa
Signing time: Thu 21 Mar 2024 04:01:55 +0000
ROA not before: Thu 21 Mar 2024 04:01:51 +0000
ROA not after: Tue 23 Apr 2024 04:01:51 +0000
asID: 44559
IP address blocks: 154.221.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41848 (0xa378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:01:51 2024 GMT
Not After : Apr 23 04:01:51 2024 GMT
Subject: CN=65fbb133-e1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fe:9b:ed:3d:40:8a:21:2d:70:92:df:e4:16:
82:fd:a2:32:54:90:2f:ec:1b:f3:1c:00:d6:e4:54:
fc:a6:97:83:ed:c3:bd:3d:9c:58:ec:e5:6e:e3:de:
4d:92:a1:82:6b:99:8e:25:6b:e0:13:37:63:b5:12:
42:c1:dd:f9:20:c6:5c:3c:47:83:2d:bd:b8:d6:90:
86:d5:9e:95:58:88:99:09:5d:b4:b2:2f:8f:61:c5:
c9:82:02:19:84:bc:6f:7c:65:fa:fa:69:42:56:64:
c2:c0:5a:d0:b0:cf:bb:0e:70:ae:d5:51:fa:7c:37:
65:ba:4d:f3:66:a9:08:41:98:dc:43:4e:6b:28:e5:
2a:69:e3:78:b5:52:2c:aa:0e:a2:47:3b:e7:9a:b2:
fa:47:c4:33:b6:0f:16:bb:13:fd:93:1f:36:ed:f5:
02:f0:6b:ef:fd:a6:f6:fc:69:68:10:60:54:da:33:
57:7c:92:09:43:d9:15:63:a6:17:f8:94:8e:3e:0a:
a9:51:64:03:1a:b7:f4:68:9e:c7:5d:5d:26:22:3b:
df:f5:3d:c0:c4:84:ec:13:e0:76:aa:06:7e:fc:0b:
77:10:41:fc:1b:04:ba:7f:f2:25:ce:25:72:66:2a:
14:45:82:b8:ba:6c:da:53:6d:77:47:ea:3b:f6:ba:
65:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:83:3D:F3:C4:01:AC:F2:1F:85:05:54:9D:82:1F:7B:12:CB:80:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C14027D6E73711EEBCECD14F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.253.0/24
Signature Algorithm: sha256WithRSAEncryption
32:7d:14:4f:91:bf:e3:9f:ca:9c:e9:95:1b:00:2d:dc:9a:ad:
b2:f6:d9:23:45:68:39:3f:eb:59:0b:47:b1:5c:49:7e:77:71:
23:5c:d5:c2:4f:01:20:9d:3b:f8:9b:ab:87:1b:6b:b3:30:de:
eb:02:91:f3:92:dd:fc:c4:bc:a2:74:48:58:9c:e5:dd:4a:c8:
8a:5e:d8:dd:e8:41:dc:e1:f4:32:d3:44:15:9d:b6:ce:63:c6:
01:68:8e:3f:f2:16:a8:4c:59:53:e1:6a:3d:76:3f:3d:ac:aa:
14:3a:6c:8d:d6:39:28:72:ab:72:cc:4f:2d:20:e5:df:bb:f8:
8d:5a:5f:d0:f4:41:5c:68:b8:5d:c8:a7:43:6b:93:81:e0:2b:
ba:dd:e5:b7:d0:c8:7d:38:bd:79:ba:f3:a6:ce:e1:d6:2e:31:
c0:1d:ec:3c:31:66:1d:ba:e4:a3:bd:94:7d:14:1e:93:47:c9:
4d:df:90:bc:36:7d:9b:dc:34:21:20:a9:a8:fd:a5:1a:cb:96:
6e:ce:50:b7:12:13:af:c1:2a:77:c0:92:8a:23:00:5a:47:07:
35:2a:b3:ae:5e:e3:8a:c2:d7:f1:53:17:ee:54:ed:e7:be:dc:
2a:26:8e:e9:3d:10:ec:a3:20:79:b4:89:e1:4d:db:6f:58:85:
a4:5e:15:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org