Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D14A3BA4417811EEBE9C8C874AD9E6FC.roa
File: D14A3BA4417811EEBE9C8C874AD9E6FC.roa (raw, json)
Hash identifier: xB999DRLtQ6we0XMsHtOezrjQEKIo9D+3Ic8gy3mIes=
Subject key identifier: 55:EA:7E:35:43:93:E7:7A:9D:A9:45:8D:16:81:BD:D4:DF:78:1D:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3791
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D14A3BA4417811EEBE9C8C874AD9E6FC.roa
Signing time: Wed 23 Aug 2023 05:49:26 +0000
ROA not before: Wed 23 Aug 2023 05:49:22 +0000
ROA not after: Sat 24 Aug 2024 05:49:22 +0000
asID: 5065
IP address blocks: 154.86.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14225 (0x3791)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 23 05:49:22 2023 GMT
Not After : Aug 24 05:49:22 2024 GMT
Subject: CN=64e59de6-06f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:96:81:1d:fb:b4:40:a9:bb:3f:a0:c4:c9:5b:
31:59:e9:ff:c5:ea:6c:3f:aa:98:0e:c6:5c:3b:e6:
96:ff:01:c8:b0:7d:94:f0:7d:0e:46:e9:ac:6b:2c:
df:bd:af:55:1c:51:d0:d4:93:37:49:d1:56:d1:a6:
0c:cb:f6:77:c5:5f:1a:cf:bf:0e:01:80:39:36:3d:
47:3e:7d:0b:33:9a:86:83:27:5e:99:66:75:03:4a:
86:75:da:81:63:7e:1b:f2:4f:a5:c3:79:4f:b8:4f:
e0:01:1b:5f:ad:c7:8f:aa:83:15:c9:7f:ee:15:76:
0c:50:b3:94:89:6d:20:2a:d9:a5:f8:bd:6d:36:31:
6b:ec:44:e9:7f:a3:16:bd:8c:2b:1f:e7:b7:73:b7:
82:1f:df:67:9a:6c:94:07:18:47:97:ca:02:00:fc:
09:6d:66:cd:8a:45:d7:b9:8f:01:5e:34:14:31:ad:
14:f7:b8:c9:a8:9d:09:a1:87:1c:ec:e2:8e:85:bf:
d8:7a:7b:83:f1:0b:de:46:4c:53:57:32:b5:bf:bf:
d6:d8:74:0f:d7:f6:0c:66:92:da:56:3e:c3:e4:18:
b0:e3:a1:f8:0b:e4:ad:be:b4:55:50:31:08:72:4e:
76:bb:09:a5:46:18:cd:48:19:fc:38:f4:c9:48:fd:
57:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EA:7E:35:43:93:E7:7A:9D:A9:45:8D:16:81:BD:D4:DF:78:1D:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D14A3BA4417811EEBE9C8C874AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.100.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ad:9e:af:05:35:0e:d6:d5:b1:58:b4:ee:87:1b:8b:12:0b:
75:f4:4b:43:b7:e9:e1:4e:fc:35:1e:df:89:24:b4:51:e6:bf:
5d:a7:1c:48:6f:50:8e:7a:ba:10:95:a2:d6:e0:ca:b6:5f:39:
16:a4:94:ce:d1:6f:a5:84:1f:20:52:bc:cd:31:e2:57:d9:14:
95:15:80:9a:ad:ce:69:59:5a:dc:cd:7b:ec:e5:a7:3f:17:b3:
b2:79:bb:92:0c:23:2f:eb:85:01:13:6c:05:be:2e:68:b8:9f:
a5:7f:34:c2:36:e4:77:12:5e:c1:5d:aa:ca:33:33:61:a2:7c:
4d:6a:78:1b:4a:6a:04:2c:eb:14:00:26:ee:21:43:b8:c0:5a:
68:03:57:3e:00:4b:fa:90:20:19:04:a3:b1:da:26:17:2b:5b:
57:64:6f:e0:a0:3b:02:ae:09:0c:88:c3:67:a2:c0:a9:78:34:
83:aa:19:a8:7b:94:07:57:71:17:5d:e8:95:63:f5:31:8b:09:
e3:bd:eb:54:53:d1:0d:b3:e5:af:43:78:db:c2:36:23:6b:2b:
00:da:80:db:a1:e2:05:76:97:16:5b:05:a7:8b:9b:61:1c:af:
83:5d:8c:16:a0:15:37:9a:07:c8:17:9c:b7:72:43:f8:8f:34:
3c:e5:26:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:39 2024 by rpki-client on console-fra.rpki-client.org