Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE7748D2689B11EEBB52B2334AD9E6FC.roa
File: CE7748D2689B11EEBB52B2334AD9E6FC.roa (raw, json)
Hash identifier: 8A9nIW1N0q0d58TwXT+M4NDKUWyKJXooyWdLvdvRxc0=
Subject key identifier: 30:88:95:E2:C9:BC:6C:34:F9:89:95:A4:0D:03:D9:14:AB:51:40:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 458C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE7748D2689B11EEBB52B2334AD9E6FC.roa
Signing time: Thu 12 Oct 2023 01:08:09 +0000
ROA not before: Thu 12 Oct 2023 01:08:05 +0000
ROA not after: Sat 05 Oct 2024 01:08:05 +0000
asID: 132839
IP address blocks: 154.201.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17804 (0x458c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 12 01:08:05 2023 GMT
Not After : Oct 5 01:08:05 2024 GMT
Subject: CN=652746f9-f862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fb:39:e2:05:27:f4:42:60:3c:45:19:dd:f4:
2b:53:2c:26:32:05:ba:b2:35:a9:43:0a:d1:bb:46:
f8:b4:7d:28:59:0b:dd:5e:c2:f0:0d:22:81:88:0f:
f0:3c:73:12:b1:e9:00:df:c1:f5:48:b7:0a:bf:7f:
45:80:50:8a:5a:82:21:98:b5:01:d8:80:f2:8d:8e:
6b:3d:3d:28:64:27:25:3b:36:8d:f2:6c:93:ad:22:
46:f3:10:2f:5f:ae:6d:a5:42:b6:29:b1:3b:68:6b:
c1:10:95:18:8e:56:5a:9e:d9:30:d3:0d:bf:6c:3c:
db:77:41:53:22:6f:5f:f8:e2:d8:34:aa:df:c2:0d:
16:62:e9:44:f8:e6:15:cb:38:4f:9b:90:c1:2d:72:
c7:d5:b7:e5:34:b3:9e:2c:9b:19:1a:d6:88:30:82:
26:86:30:84:3c:fd:09:05:7f:f3:d2:5b:21:fd:7d:
85:85:e2:cc:9b:5b:68:a3:59:cd:9e:38:f6:ce:d3:
53:32:6d:8e:e9:5a:4c:db:c1:53:1a:e0:e3:e2:42:
7a:42:53:52:78:51:87:76:6a:d1:36:18:c7:71:58:
f9:1d:96:03:a6:f6:c9:3d:4c:b5:a3:63:a5:9e:40:
0e:af:fc:63:72:aa:0f:82:0d:e6:43:43:ac:ab:ef:
6d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:88:95:E2:C9:BC:6C:34:F9:89:95:A4:0D:03:D9:14:AB:51:40:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE7748D2689B11EEBB52B2334AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
95:05:56:eb:53:cf:fe:4b:1f:26:c6:e4:e9:56:4c:8c:ce:fb:
36:8d:0f:20:46:15:b1:19:8b:20:4e:ee:6b:e5:50:97:2d:5d:
4c:d0:e2:73:18:cb:0f:62:fa:a1:e8:a2:a2:66:83:8b:d1:19:
2e:41:40:9d:17:70:94:d1:5e:15:74:c4:4c:7c:e1:66:e3:b1:
12:e8:7a:e5:76:c0:3f:d3:49:ab:ba:cf:e8:17:16:8c:34:14:
27:b9:b3:96:eb:ce:8f:e9:fc:d1:1b:c6:3a:88:64:9c:59:2a:
2b:b1:cb:32:58:9c:03:97:4c:bb:e7:fc:eb:4e:1f:18:0c:f6:
c5:6a:88:13:82:5e:d9:d0:10:2b:b3:6d:7e:d9:f2:d4:a3:84:
15:b4:0f:ef:41:75:4d:94:c1:1b:bd:98:30:cf:02:85:d5:8b:
9b:38:bd:e0:4f:fd:fd:95:a0:0f:91:a0:10:64:71:c0:c3:5e:
62:7e:4f:6a:9e:bc:59:a3:65:a3:ab:5a:63:98:2d:19:36:35:
2e:d3:92:dc:cc:30:31:53:2e:67:a1:12:24:2c:2e:73:48:c8:
cc:40:0b:98:4d:7f:f3:e1:d9:c5:65:2e:c7:b6:8d:83:d8:04:
70:2c:19:66:2d:d5:77:dd:7e:73:c4:57:cb:33:ac:3f:e2:d2:
78:6a:e3:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 13:29:51 2024 by rpki-client on console-fra.rpki-client.org