Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB2492E2B06811EE8B93C0C4775412E6.roa
File: CB2492E2B06811EE8B93C0C4775412E6.roa (raw, json)
Hash identifier: rhpdJDJpkfacmfKEip1nhFe7TlsGF2hwFW7iijJ1Fq0=
Subject key identifier: 5D:35:FA:9B:19:D6:70:A4:83:08:AC:BD:03:D5:A8:E3:0B:1C:FC:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 73D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB2492E2B06811EE8B93C0C4775412E6.roa
Signing time: Thu 11 Jan 2024 10:04:23 +0000
ROA not before: Thu 11 Jan 2024 10:04:19 +0000
ROA not after: Sun 23 Jun 2024 10:04:19 +0000
asID: 209242
IP address blocks: 154.197.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29650 (0x73d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 11 10:04:19 2024 GMT
Not After : Jun 23 10:04:19 2024 GMT
Subject: CN=659fbd27-1fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:21:b0:13:4d:59:40:14:bb:f5:47:a7:6e:9c:
2a:d0:74:a9:18:74:54:ca:5a:38:a4:0e:62:d1:48:
cb:e5:56:15:63:bb:e8:00:9d:c4:00:ea:aa:74:2b:
e6:a9:05:1d:25:ff:1d:17:c6:04:70:c4:74:00:0f:
79:2a:0e:13:79:cc:dc:82:9d:66:27:c2:59:62:73:
4f:e0:8e:04:8d:09:88:1e:6d:ea:cf:48:e5:dd:71:
79:70:3e:2f:73:87:94:ab:0f:f5:be:0b:ee:a8:df:
06:51:d5:2c:2f:e5:5a:a7:ac:38:70:24:1a:6e:11:
bf:cb:cd:de:8f:b6:be:d0:d9:ad:6c:6f:b6:27:a7:
20:d3:72:f2:86:f3:7c:ba:ce:15:ac:0d:f9:38:b8:
0c:37:96:0c:69:98:a3:27:6e:79:f2:2f:5e:6b:82:
89:40:17:57:54:bc:37:09:78:fb:3e:3e:71:03:0b:
e1:3f:2b:59:f3:c4:8e:f7:d4:5b:36:96:ea:db:26:
9d:71:3b:b2:53:d0:69:80:e1:e1:f6:57:0a:29:84:
4f:4b:2b:1e:ce:52:3e:97:07:1d:79:b8:84:9a:27:
29:e2:a7:75:98:a3:c9:28:9b:0a:34:94:40:1b:3d:
5c:19:d9:5b:a8:a5:cf:38:99:68:63:a0:c3:e4:c9:
2f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:35:FA:9B:19:D6:70:A4:83:08:AC:BD:03:D5:A8:E3:0B:1C:FC:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB2492E2B06811EE8B93C0C4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.121.0/24
Signature Algorithm: sha256WithRSAEncryption
10:a6:51:30:6f:c1:29:8f:e1:9d:28:b3:35:03:5a:ad:09:59:
14:74:dc:ed:b0:4a:42:63:e9:95:97:8b:c2:49:2e:e9:9f:65:
7c:40:0a:12:0d:b9:8d:e6:1e:da:a2:bb:b4:bf:8f:16:6c:60:
b2:2c:ea:fa:d9:f8:95:0f:5d:2d:0d:6e:59:99:de:12:ca:af:
37:e8:74:58:07:c8:40:24:f2:3d:36:12:9b:19:a3:b2:42:9c:
c8:21:12:81:6e:e5:16:5b:09:00:4a:13:ab:ff:9a:b5:47:49:
98:9f:fa:c6:d6:5b:0a:ab:6c:7b:72:f5:37:1f:e9:d9:5e:d4:
ed:a0:a0:e3:95:de:c9:ee:a2:b5:21:f4:cb:aa:09:66:8a:2d:
f7:84:8b:f3:68:a2:7b:b1:28:e7:ee:65:f1:57:19:9e:7d:06:
f0:c3:a8:4a:15:46:48:0d:13:92:2a:05:3b:8d:fa:0e:02:86:
4f:bc:12:ea:ab:6e:c5:0d:5c:aa:1b:4e:32:4c:4a:7f:e4:44:
13:ab:20:34:67:38:ad:f8:d8:0d:f7:b9:4e:74:89:c8:56:d7:
68:91:62:0b:ff:77:e5:d7:1f:37:dc:cf:99:e8:2c:2c:7e:cd:
5b:cb:43:ef:03:30:7a:28:7b:ce:2f:c8:03:1d:e6:e2:42:c8:
d5:42:74:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:20 2024 by rpki-client on console-ams.rpki-client.org