Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8A318B4E73011EEB27C6296775412E6.roa
File: C8A318B4E73011EEB27C6296775412E6.roa (raw, json)
Hash identifier: HeEDaTFh19+7mwwb+Edzf/9JSuLNN8jpWUwaO5haKHA=
Subject key identifier: 86:A8:93:AD:CA:BB:48:B6:79:B2:A6:F1:AC:DD:D0:95:84:2C:4F:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A334
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8A318B4E73011EEB27C6296775412E6.roa
Signing time: Thu 21 Mar 2024 03:12:01 +0000
ROA not before: Thu 21 Mar 2024 03:11:55 +0000
ROA not after: Tue 23 Apr 2024 03:11:55 +0000
asID: 44559
IP address blocks: 154.207.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41780 (0xa334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:11:55 2024 GMT
Not After : Apr 23 03:11:55 2024 GMT
Subject: CN=65fba580-bc30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c5:52:38:88:98:60:34:2b:1c:4d:f6:13:a1:
f8:27:24:88:08:f4:fa:18:2e:df:c1:57:28:ae:eb:
f9:fd:01:e3:c8:44:eb:1d:a2:1c:8b:99:d2:2a:5f:
dc:7f:03:38:1e:dc:69:93:54:22:d7:40:7a:3b:79:
4c:89:99:79:c1:31:10:1a:e0:e0:67:52:42:45:37:
1e:c8:28:25:53:6b:c1:63:f3:fd:93:87:6d:43:31:
a3:24:f6:6b:ff:84:e5:a9:f2:f5:f1:b4:6f:01:c8:
92:08:07:43:f7:7f:ec:d4:92:75:d0:f0:30:de:0e:
b7:7f:8d:15:29:50:ab:d2:e8:ea:d6:a7:e4:8c:c0:
54:c3:ed:b1:f6:c4:e1:b1:30:c5:1c:97:f9:ac:c7:
5f:20:b9:69:b0:7b:23:db:c5:83:c9:17:4b:da:3b:
82:ea:4f:90:e3:c1:97:c7:73:d8:ae:cd:58:5d:c0:
8d:93:87:7b:ba:29:03:95:eb:f7:25:6e:0b:23:05:
38:27:1d:7d:05:38:28:ca:fa:f5:62:5f:82:cf:b7:
93:2b:60:e0:73:a2:65:01:51:87:f4:5b:c8:f4:bd:
3f:1d:8f:03:73:1b:1f:91:b1:4f:0c:d4:fc:b8:02:
04:f7:dd:1f:72:7b:a0:8a:de:65:83:81:2c:13:f9:
a9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A8:93:AD:CA:BB:48:B6:79:B2:A6:F1:AC:DD:D0:95:84:2C:4F:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8A318B4E73011EEB27C6296775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.31.0/24
Signature Algorithm: sha256WithRSAEncryption
68:81:c4:2e:66:7c:fc:82:19:36:6d:3f:94:d1:3c:90:9e:a4:
a4:b0:4e:a4:45:5c:4e:df:9d:76:b7:5e:99:f2:b9:43:4e:52:
16:f9:ee:f9:e7:35:29:9d:91:d9:fb:0d:c7:cf:24:a4:0e:4c:
31:ee:22:a9:ec:14:de:f5:5f:80:7a:a1:55:b4:59:c8:3c:b8:
8e:88:c6:43:f2:6e:5d:54:f6:6f:1a:1f:8c:2c:d1:f3:6c:d1:
b9:ad:a7:e0:bc:0c:0d:05:ac:80:b9:67:83:c9:4e:e3:58:d7:
02:a8:4f:87:8e:1f:64:a7:a7:cf:40:48:f4:60:39:28:e0:46:
00:2e:13:7a:e8:10:ee:fb:2a:3b:da:23:7c:7f:e5:62:20:54:
1e:32:07:1c:8d:a6:cd:1c:d7:a3:aa:a0:3a:5a:a3:45:9a:fb:
ab:96:c0:64:5e:d5:51:19:cd:be:f2:50:44:a8:b0:75:35:d0:
a0:45:50:59:4a:b8:73:16:58:2f:67:67:b6:c0:59:96:80:7b:
2e:4f:0b:57:90:6f:52:40:3e:c2:c1:90:23:83:ad:51:60:f3:
2d:a9:2e:b3:8c:cb:35:16:e3:6b:e8:02:e4:6d:c7:1e:77:df:
3c:b4:93:a8:9b:56:77:e9:96:0b:2d:96:72:99:3b:51:5a:cd:
9f:61:ed:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org