Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C71096D8F57811EE994FFE68775412E6.roa
File: C71096D8F57811EE994FFE68775412E6.roa (raw, json)
Hash identifier: 8WjVn6Xju073oGnCWHwWHKPHQwMgYulmAoi4iJhQK3w=
Subject key identifier: E0:E6:9D:CC:02:91:2D:B0:DE:7A:38:A0:21:B3:F9:E9:84:A1:F7:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA59
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C71096D8F57811EE994FFE68775412E6.roa
Signing time: Mon 08 Apr 2024 07:22:38 +0000
ROA not before: Mon 08 Apr 2024 07:22:35 +0000
ROA not after: Mon 13 May 2024 07:22:35 +0000
asID: 328608
IP address blocks: 154.208.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43609 (0xaa59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:22:35 2024 GMT
Not After : May 13 07:22:35 2024 GMT
Subject: CN=66139b3e-352f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a7:39:f4:0a:f2:8b:a1:4c:90:26:8a:a6:66:
c0:10:54:e6:86:d0:c1:f4:7d:0d:5e:43:40:89:a9:
0b:81:ba:00:52:79:1a:56:9e:7f:5b:93:7b:46:c7:
85:a4:0b:e8:86:b1:a6:25:f0:18:dc:d1:39:f1:74:
2a:0b:bc:a3:71:de:52:10:53:2e:af:ed:4f:2d:ae:
01:fc:5c:55:23:d9:b4:15:14:40:8a:7d:1b:20:42:
48:94:77:dd:3e:78:56:f8:b4:b7:48:91:03:7d:9e:
77:0f:a6:ed:3b:a6:70:43:b1:db:e3:bd:4c:85:1c:
68:34:19:81:6d:ed:25:4f:91:71:68:86:05:f6:c2:
58:80:1c:82:52:05:46:8b:f9:83:89:0e:c2:a8:94:
d1:30:4b:43:0a:a7:31:a7:f8:3e:24:cb:5c:87:ba:
6a:32:1c:11:5c:59:39:07:18:eb:f2:fb:35:f1:22:
9a:8d:a8:c7:63:52:bb:2f:f3:ea:af:0a:67:92:81:
19:9e:69:5e:f1:3b:85:52:28:f5:e6:dc:97:b2:81:
f8:cf:b7:92:97:2d:9c:99:74:44:5e:11:1f:d7:35:
fc:c1:7b:98:c4:a6:8e:03:c5:eb:ce:88:9e:ad:67:
c6:45:d2:3a:6f:db:c9:fd:6e:f8:d8:f6:e9:1f:e9:
fd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E6:9D:CC:02:91:2D:B0:DE:7A:38:A0:21:B3:F9:E9:84:A1:F7:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C71096D8F57811EE994FFE68775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8e:d4:9d:5e:be:a1:df:f1:17:eb:c7:37:0c:59:53:74:8b:
f0:d6:c3:02:5e:a8:fc:df:f6:d6:59:65:6e:21:50:46:f3:20:
a2:1d:5f:60:15:2a:16:5b:81:ca:23:e2:e9:6a:8f:b8:8f:2b:
04:74:a0:6e:2f:13:f7:1f:4a:9b:fa:4b:8a:cb:33:36:51:0f:
37:9f:4e:fc:d7:56:6d:27:6b:15:ca:b2:44:42:47:d3:4e:f4:
95:43:6d:e3:20:8d:20:71:61:5b:8d:59:d2:67:d0:49:f9:a1:
ac:ea:f4:fa:4a:a7:ed:40:64:01:72:0e:71:d3:ba:75:3f:5b:
cd:40:ac:55:67:15:4a:38:f6:3c:59:36:48:c1:e1:ed:bd:27:
b5:64:ce:64:47:c8:c8:67:bc:75:99:6c:b4:b3:b0:e8:a3:aa:
52:a0:31:ee:72:d9:8c:d4:aa:a7:76:2d:1e:78:04:f4:59:7b:
31:29:55:06:b6:8a:7c:fb:0d:83:98:c1:1e:7c:4a:17:77:98:
e2:ca:bf:25:23:89:d9:7c:6e:21:fb:c2:4a:51:26:5a:8b:b8:
46:8d:00:85:7e:9c:eb:1c:14:84:a6:5f:7c:7d:c1:cf:15:fa:
9c:b7:47:fb:81:47:c7:9d:fd:f9:14:e8:15:e1:d9:86:c5:01:
83:2d:41:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 13:29:50 2024 by rpki-client on console-fra.rpki-client.org