Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C338CDDE696711EEB0F3E3404AD9E6FC.roa
File: C338CDDE696711EEB0F3E3404AD9E6FC.roa (raw, json)
Hash identifier: yrv2KSmbEMjiS/bxcyZLDCJOi+XYZDWz9FrtG3YYLxo=
Subject key identifier: A0:D0:FA:BA:B9:DA:F5:44:FC:0D:1F:B9:3B:BA:0C:ED:D9:59:78:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 45BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C338CDDE696711EEB0F3E3404AD9E6FC.roa
Signing time: Fri 13 Oct 2023 01:28:07 +0000
ROA not before: Fri 13 Oct 2023 01:28:04 +0000
ROA not after: Mon 30 Sep 2024 01:28:04 +0000
asID: 201411
IP address blocks: 154.205.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17851 (0x45bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 13 01:28:04 2023 GMT
Not After : Sep 30 01:28:04 2024 GMT
Subject: CN=65289d27-642e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d5:4a:e2:9c:6b:6b:ae:63:b8:42:3f:97:b1:
b4:c2:43:5d:eb:22:e2:b0:61:fb:8d:a1:87:49:d8:
1f:48:6b:45:99:63:9a:88:4f:53:bc:24:4c:92:99:
cb:e6:26:54:cd:42:d7:13:0c:76:25:68:8d:5d:ac:
7d:39:ff:0d:99:3a:64:d1:ce:06:0b:6b:ae:70:79:
93:8b:ba:50:aa:9a:16:69:de:bd:9a:62:6d:95:06:
b7:e8:d4:ad:0a:0b:df:f9:2a:cf:3d:8f:d9:87:e4:
29:19:b9:ca:64:d7:81:77:8d:3b:86:75:ba:93:4a:
0f:6a:ec:9e:cf:cc:a5:b5:cf:c4:49:8f:ae:f7:7c:
d4:97:06:6b:12:d4:31:6f:92:01:df:78:58:c8:fe:
bd:10:c8:d7:0e:44:12:e8:35:ae:36:37:c9:9a:d2:
46:79:9d:6d:94:a4:e1:40:ec:a9:28:0f:bf:8a:69:
af:4e:88:32:1a:69:22:97:14:51:98:80:d1:af:60:
d1:6b:21:8d:03:07:8b:2e:79:85:93:70:5f:40:ea:
4f:4a:40:b5:54:bb:8a:db:7a:68:d6:3b:1f:63:2b:
9b:91:46:a5:96:30:41:64:2a:7b:e6:90:ca:16:78:
6a:14:9f:26:b0:7e:f7:30:7c:e9:ae:80:8a:58:46:
28:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D0:FA:BA:B9:DA:F5:44:FC:0D:1F:B9:3B:BA:0C:ED:D9:59:78:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C338CDDE696711EEB0F3E3404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.191.0/24
Signature Algorithm: sha256WithRSAEncryption
47:45:46:95:c9:01:05:d2:c6:4f:f6:fb:57:52:be:81:99:51:
1e:28:af:73:30:07:e7:ef:93:bd:f3:d0:e2:8b:b5:b7:5d:23:
a0:ff:9c:e6:92:3b:63:7c:25:31:01:9d:48:68:57:0b:c5:72:
76:67:9b:44:43:59:63:da:1f:6d:e4:ce:fa:f1:4b:49:e5:53:
65:aa:dd:da:28:4f:cd:48:ac:81:83:37:d4:5d:02:a5:32:fc:
c8:2a:5d:88:22:5b:01:34:de:7c:80:80:9a:df:6c:06:87:d6:
2e:11:24:85:01:e4:a2:87:59:4a:59:0d:48:15:85:02:81:79:
e9:9d:a3:00:8f:77:b2:a3:78:bb:e4:5b:87:c2:a5:36:70:b2:
63:dc:d4:cf:66:8c:ed:74:f5:e9:d9:20:a0:21:af:52:7f:c6:
80:66:c3:53:4d:7e:ba:dc:65:9b:f9:aa:ec:19:27:d4:f9:4d:
36:8b:ca:5a:97:e9:72:57:db:e0:60:76:76:ad:06:65:f7:77:
d0:f1:de:e9:de:68:38:11:ce:f7:47:35:6d:61:72:e5:48:7d:
bf:5d:a8:2e:28:a0:d7:b5:0f:84:08:8e:47:2f:23:f3:48:72:
e9:a0:08:e1:4a:99:59:d8:4c:5a:f4:1c:4e:f5:f5:b7:06:85:
83:6b:18:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org