Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D28B81E2E74711EE8CD8BD4D775412E6.roa
File: D28B81E2E74711EE8CD8BD4D775412E6.roa (raw, json)
Hash identifier: d27G4H+6G5g5J6DNGZ4aEuq18NNKxHlyHnbxQ1/ethU=
Subject key identifier: F7:28:7D:B3:6B:D4:E6:35:E2:2A:27:42:BB:83:06:36:64:9A:44:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A415
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D28B81E2E74711EE8CD8BD4D775412E6.roa
Signing time: Thu 21 Mar 2024 05:56:56 +0000
ROA not before: Thu 21 Mar 2024 05:56:52 +0000
ROA not after: Tue 23 Apr 2024 05:56:52 +0000
asID: 44559
IP address blocks: 154.220.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42005 (0xa415)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 05:56:52 2024 GMT
Not After : Apr 23 05:56:52 2024 GMT
Subject: CN=65fbcc27-f3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:eb:40:c4:e7:7c:56:77:23:11:23:4d:ef:ae:
19:8c:e0:a4:ab:04:de:3e:fb:7c:70:a5:36:af:9c:
61:10:55:f9:23:a4:4f:b3:55:e9:76:93:ba:3b:a2:
fc:53:17:76:f1:2e:98:11:d3:fe:0c:ba:7a:00:fe:
bb:ba:05:be:0c:8a:2d:cc:c3:be:60:2c:96:67:8b:
51:aa:d2:d8:16:bf:00:b4:2d:5c:b5:77:91:70:60:
be:1d:d5:07:3e:79:32:05:79:7f:92:05:94:a6:3b:
c6:98:6b:c8:01:8c:5e:a9:60:44:e3:f2:1d:22:8d:
58:4b:e6:3b:0d:25:22:4e:56:98:3e:08:83:17:7f:
6d:8d:6f:23:d1:df:78:37:8b:5d:ec:f9:24:7a:41:
38:10:63:a1:2a:c8:17:e4:b3:ac:ec:30:a4:72:2f:
1d:11:a6:ca:1a:29:2b:b1:e2:44:7c:b3:c6:0a:63:
40:b0:10:af:a9:0d:93:5c:4e:a8:44:55:d0:f5:f4:
08:f1:12:55:90:4b:7b:0f:67:7b:52:7b:b6:a6:15:
cf:52:30:d1:d4:88:1d:a5:fa:a0:d3:59:0c:0b:1c:
f3:df:69:34:9d:46:f6:e4:6a:3d:5f:8f:10:60:9b:
ce:ef:f3:9b:29:b9:90:37:e0:50:86:0d:e9:09:4c:
91:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:28:7D:B3:6B:D4:E6:35:E2:2A:27:42:BB:83:06:36:64:9A:44:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D28B81E2E74711EE8CD8BD4D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.174.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:6e:d8:5b:01:39:dc:c3:29:c3:fb:b9:d0:f8:6e:3d:68:73:
ce:24:76:33:22:3e:46:3a:34:ee:e0:c7:01:dd:e7:31:64:40:
d9:43:62:da:b2:c2:ba:82:c4:78:b7:0f:fc:0d:de:a8:fe:13:
42:0f:39:37:bf:00:74:d5:23:87:0a:51:a2:77:12:ce:ca:14:
18:b1:27:dc:74:6c:a9:2a:9e:56:27:7a:a8:83:50:4b:9c:3b:
0f:72:11:a1:68:c3:36:50:65:6a:3e:6f:23:81:10:fd:fe:9a:
61:2b:7e:d6:51:29:73:36:b4:3a:f6:5d:e3:c0:74:1f:6c:5e:
a1:85:9c:80:23:de:b5:62:50:b8:0c:fd:e5:84:f5:15:ec:b5:
77:43:53:ec:88:15:81:d7:42:94:33:ee:31:3a:cd:0c:1e:06:
ce:6a:21:cb:bd:84:96:7b:91:30:79:8a:68:c3:f5:75:d7:ed:
28:ff:44:83:2e:99:d8:28:1c:99:5e:06:97:03:c2:68:c1:30:
e8:24:ec:60:54:6f:66:3d:96:e6:e5:b1:6d:50:2e:c5:6c:1c:
7f:f1:90:8c:11:26:5e:47:d4:40:b1:b8:8d:7a:c8:d1:cc:b9:
e2:9d:9a:5a:9e:ef:a5:68:ad:86:72:91:ed:45:1c:b9:08:2f:
bf:8b:f0:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org