Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBC48280539C11EEB63B95554AD9E6FC.roa
File: CBC48280539C11EEB63B95554AD9E6FC.roa (raw, json)
Hash identifier: iQ2Z6O1hPvQpMmv5XQQOcL7jSsy+/UdTqVAIqkzITtU=
Subject key identifier: A9:06:EC:C0:DF:39:1D:9E:78:6B:EE:75:23:1B:BE:61:BD:2C:D4:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3D71
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBC48280539C11EEB63B95554AD9E6FC.roa
Signing time: Fri 15 Sep 2023 07:52:19 +0000
ROA not before: Fri 15 Sep 2023 07:52:16 +0000
ROA not after: Sat 08 Jun 2024 07:52:16 +0000
asID: 142403
IP address blocks: 154.92.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15729 (0x3d71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 07:52:16 2023 GMT
Not After : Jun 8 07:52:16 2024 GMT
Subject: CN=65040d33-b6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a0:d3:37:4d:01:12:f2:b3:90:36:b4:29:01:
b2:06:67:f2:f5:53:4e:ad:87:aa:e0:53:e6:ca:86:
71:f8:52:bf:2d:6d:5a:d9:f5:ba:21:f3:33:48:c1:
eb:2f:df:8b:67:e2:5d:b6:34:ea:4b:f5:d1:61:60:
0d:2b:69:af:b0:a9:bd:32:87:f2:08:b2:28:ae:8c:
c6:36:3e:dc:17:30:38:f0:32:04:bf:b2:4c:8c:73:
19:c3:58:bf:8a:6c:62:42:60:c4:c6:7b:22:8b:e8:
6b:da:8b:dc:e4:9c:36:3d:44:a3:6d:67:35:9b:6f:
11:45:f9:32:f7:05:b5:23:5a:0a:e6:88:d3:07:1a:
3e:8e:b5:07:a2:9e:2e:48:58:4a:9d:b2:f3:ed:13:
aa:42:c0:87:17:87:82:ad:4d:43:90:a4:bd:b6:d6:
44:a2:81:05:bf:c5:f4:54:71:bd:1d:ac:69:61:08:
a2:b5:0c:10:94:5a:be:8f:57:99:e7:ee:e1:2e:d3:
39:eb:45:6d:57:6d:8e:65:df:bc:e9:c0:95:0f:98:
6d:b0:23:70:38:5f:49:ba:3d:31:93:ec:59:e5:2f:
b9:27:d4:28:7e:bf:f7:9d:8a:4a:b8:c3:d7:f7:79:
ee:35:9d:62:bf:52:35:fa:95:ac:20:79:73:f8:fb:
04:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:06:EC:C0:DF:39:1D:9E:78:6B:EE:75:23:1B:BE:61:BD:2C:D4:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CBC48280539C11EEB63B95554AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.16.0/24
Signature Algorithm: sha256WithRSAEncryption
59:52:59:5f:26:45:4f:92:5c:bb:66:b3:b9:ea:75:e5:9a:cf:
ef:c1:0f:3b:05:76:c6:7b:52:fc:49:f7:01:19:0e:dd:e1:41:
e9:53:2a:85:84:3a:58:f6:4e:6c:b3:57:f7:c2:dd:9a:94:84:
14:97:eb:e9:44:10:da:87:0f:17:2e:f3:6c:ca:0d:c2:e8:ea:
c0:e4:72:fe:29:67:e6:78:da:8d:73:e6:c8:b4:e8:e1:d7:45:
6f:2a:2d:66:b4:84:13:11:e5:e1:84:da:21:c1:f2:6f:cc:93:
8e:4a:e5:87:61:03:c9:b7:bb:82:37:12:bd:d3:c4:e8:da:c5:
6b:de:37:ae:44:67:df:25:fb:a0:ae:51:7a:30:b2:3d:af:b1:
c8:e6:8e:85:57:47:88:57:40:c5:2b:c6:6a:ef:1a:37:e7:db:
ab:95:0e:97:cb:93:1a:89:7d:af:05:8d:27:71:9b:0c:4a:84:
52:8e:11:07:7b:93:99:69:ee:91:63:b2:13:ca:c3:35:17:83:
af:f0:ff:d8:51:90:88:d0:12:c4:84:97:c3:6a:1b:c1:5e:04:
fe:58:ef:1c:bd:dc:f3:61:82:2f:81:27:3f:02:84:9b:39:c0:
26:ac:98:0b:d6:70:23:33:dc:54:db:3f:75:e5:27:1e:c0:18:
01:79:ea:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:38 2024 by rpki-client on console-fra.rpki-client.org