Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0516D3AEFF611EE9FC97DC3775412E6.roa
File: D0516D3AEFF611EE9FC97DC3775412E6.roa (raw, json)
Hash identifier: QxT6RdSLHnEOURWuWEgJ+crM9xO5QzR4S5I9Xp9dvC8=
Subject key identifier: DF:C0:F0:B6:72:30:34:44:3A:3A:5E:26:11:55:D0:93:54:29:3E:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A806
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0516D3AEFF611EE9FC97DC3775412E6.roa
Signing time: Mon 01 Apr 2024 07:09:43 +0000
ROA not before: Mon 01 Apr 2024 07:09:40 +0000
ROA not after: Tue 07 May 2024 07:09:40 +0000
asID: 138915
IP address blocks: 154.223.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43014 (0xa806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 07:09:40 2024 GMT
Not After : May 7 07:09:40 2024 GMT
Subject: CN=660a5db7-6e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:89:bc:82:07:1a:bf:9b:9a:b5:37:71:2e:96:
1c:3d:54:86:d4:0f:05:77:04:ef:9f:30:cf:fe:d4:
66:f5:22:31:bb:21:52:71:f7:be:cc:e7:3f:87:31:
11:01:4b:be:45:a6:ac:8e:48:b4:35:6c:e3:f3:a7:
54:39:ac:07:7e:26:c8:fb:24:c7:fe:ff:ab:64:22:
78:51:cd:5f:ee:6f:6c:26:1d:bb:ec:6d:68:ec:12:
c8:6b:93:e7:b9:c8:cf:8b:37:33:01:80:cf:9a:a3:
21:1c:91:64:34:22:f4:6d:41:1c:1f:9e:a6:f9:d8:
4f:ef:99:d6:26:dd:6d:7b:8c:b3:82:35:f0:b6:ab:
30:46:e5:57:22:6d:3f:88:17:29:46:b7:3d:8f:86:
41:08:dd:30:69:c6:dc:84:35:a3:4a:09:d8:f8:94:
29:4c:6c:b0:21:14:ef:c2:70:71:00:74:1f:9a:b2:
35:a5:4f:d7:c8:83:fa:cc:2d:b0:fc:c5:c7:cb:94:
5e:a9:b5:26:48:8b:8d:c3:8f:a9:b2:cc:0d:2b:46:
a3:33:eb:ec:4a:7e:5c:61:b1:72:4d:94:ec:a1:e5:
d9:66:8a:c9:9f:53:df:f9:14:bc:94:a9:41:fa:85:
64:e2:e1:c6:ee:51:b9:05:00:ad:15:d4:f8:c0:9c:
73:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C0:F0:B6:72:30:34:44:3A:3A:5E:26:11:55:D0:93:54:29:3E:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0516D3AEFF611EE9FC97DC3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.44.0/24
Signature Algorithm: sha256WithRSAEncryption
62:49:fa:d7:7c:2e:c5:30:86:7a:ba:9f:ae:c9:5c:a9:b4:97:
75:b1:58:a8:ce:f0:74:68:6e:9e:cf:62:0a:b8:71:bd:2a:a2:
ec:b0:9b:98:56:a4:39:4d:70:82:05:67:f3:a9:c1:54:28:44:
39:ec:16:2b:cf:e5:cc:72:9c:ad:57:55:d3:2b:47:11:5d:f1:
83:43:5c:2a:63:32:d4:3c:bb:8d:75:0f:a7:cc:dd:84:6d:eb:
d3:3c:c5:95:3b:5b:29:f7:4e:1c:f0:23:c7:7e:59:6e:39:7c:
a8:f5:cb:3a:aa:a1:ea:76:87:a9:3d:ed:56:ad:d7:8a:d6:53:
34:a0:15:6f:0a:16:f1:aa:91:f1:d3:4a:87:5b:ca:32:a1:fe:
b2:29:c3:d9:97:3d:72:6e:f8:12:3d:ef:16:d3:b3:cc:6e:5d:
a4:95:95:31:18:9e:11:a2:a0:99:49:f6:9b:b6:e4:fa:9a:1e:
15:78:e3:48:a1:96:ac:26:7b:70:aa:75:8a:02:b0:46:77:2c:
ab:eb:9d:a3:8e:ff:40:10:4e:6b:6d:b8:81:85:63:42:f3:93:
4a:8e:62:76:b9:d1:39:74:b1:df:28:c3:42:d2:bc:b9:c8:e9:
45:09:20:97:b7:07:03:f2:95:d1:34:e6:65:6a:a1:62:34:1a:
55:e1:52:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:21 2024 by rpki-client on console-ams.rpki-client.org