Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE27C810E75411EE9793DAB3775412E6.roa
File: CE27C810E75411EE9793DAB3775412E6.roa (raw, json)
Hash identifier: vfCylCtLfkRinROXqXb9rUPQsJX/p9+968ILdi6lsSg=
Subject key identifier: F5:CB:AD:0C:C8:B9:7C:D0:36:F0:0D:E2:89:FB:45:F1:17:32:2C:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A495
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE27C810E75411EE9793DAB3775412E6.roa
Signing time: Thu 21 Mar 2024 07:29:52 +0000
ROA not before: Thu 21 Mar 2024 07:29:48 +0000
ROA not after: Tue 23 Apr 2024 07:29:48 +0000
asID: 44559
IP address blocks: 154.218.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42133 (0xa495)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 07:29:48 2024 GMT
Not After : Apr 23 07:29:48 2024 GMT
Subject: CN=65fbe1f0-dd93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:89:a5:39:4d:3d:8a:e0:77:d4:c4:03:21:b5:
11:88:b3:89:d9:d4:d8:8f:ef:c7:97:78:e0:1d:fd:
9c:11:72:c9:55:97:53:ff:75:e3:8d:a7:21:c8:d1:
6b:92:49:51:da:d1:d0:20:f7:f0:54:d0:8e:52:8f:
6f:cb:cd:3b:49:3a:1c:1d:a4:78:4a:53:16:4b:82:
71:95:b7:fb:a9:10:63:21:d9:5d:2f:2a:e8:fa:20:
b5:01:d3:4b:21:99:06:b2:16:f4:02:57:7e:ad:1e:
9f:4e:3e:5c:c3:48:f3:12:f8:5a:c6:57:ae:09:ab:
1d:bb:fc:6e:7b:e3:97:97:d1:27:bd:c7:02:47:6e:
a4:b9:f7:45:33:a7:1c:67:19:68:79:66:81:03:10:
8c:7a:7e:79:e7:1b:50:7e:4d:9a:03:2d:a6:76:13:
ad:23:5b:b7:4f:a7:bf:e8:1e:e2:84:02:90:09:05:
1b:6d:b9:30:f4:82:0c:27:c9:f2:aa:65:81:8d:f6:
be:c4:84:65:65:1d:bd:ed:f1:8c:5e:01:63:05:3a:
a7:b5:fd:2f:a5:b6:db:28:2e:48:3c:b9:67:3f:14:
b5:1c:aa:67:86:23:6a:6d:91:67:59:03:50:fa:5c:
c1:3b:30:9a:7e:79:07:1e:9a:8b:1e:1a:29:e1:c2:
48:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CB:AD:0C:C8:B9:7C:D0:36:F0:0D:E2:89:FB:45:F1:17:32:2C:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE27C810E75411EE9793DAB3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.46.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:90:2c:d9:7e:5c:00:d1:64:97:77:c2:15:02:21:96:76:43:
1b:27:f9:80:57:f3:3b:05:ae:e5:49:a9:8a:aa:77:9e:c2:23:
84:5b:e3:0e:5f:77:9d:85:88:7e:5e:1c:e8:f3:6b:3d:f2:2a:
a0:aa:c4:5f:76:87:80:6b:91:4c:cd:72:78:ba:c6:5e:b6:af:
9c:95:e9:3c:02:8d:b4:51:d6:f5:ba:1d:d5:e6:59:ae:48:f0:
d0:c1:76:c4:a9:e2:c1:8c:c5:12:79:fe:50:79:bc:0a:eb:47:
e2:11:ec:65:6b:d5:f0:b1:1d:cf:7d:fe:27:46:66:29:71:84:
03:a1:28:54:94:ee:58:39:de:a3:a1:a6:66:87:27:fd:db:f7:
c4:07:c7:16:cb:f3:44:8e:7a:d5:90:ef:f7:ce:f4:4d:a3:de:
98:f9:0a:70:b9:40:06:eb:bc:cf:c1:8b:a9:6e:dd:53:4d:73:
31:82:89:83:f5:77:09:94:04:dd:97:8d:70:27:79:f8:ad:64:
78:9e:9f:e8:59:d4:4e:1c:58:34:14:c1:b5:1c:3f:fb:6c:49:
b7:6d:68:30:6f:3d:9b:9c:dd:85:f1:71:08:0f:9b:a2:18:21:
7e:0e:d1:2b:29:9a:ed:5f:15:fd:5f:39:9d:90:78:29:22:22:
fc:b5:b4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org