Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2EAC588F00911EE95C9C057775412E6.roa
File: D2EAC588F00911EE95C9C057775412E6.roa (raw, json)
Hash identifier: +g5yMbXh5jC7FSQnXmPAa9krb+fW8YMcYWbg+zJnLnM=
Subject key identifier: 8A:89:D3:21:BD:8A:8F:BA:F4:C1:C9:E3:48:35:17:2E:AE:B7:0C:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A834
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2EAC588F00911EE95C9C057775412E6.roa
Signing time: Mon 01 Apr 2024 09:25:48 +0000
ROA not before: Mon 01 Apr 2024 09:25:45 +0000
ROA not after: Sat 11 May 2024 09:25:45 +0000
asID: 138915
IP address blocks: 154.205.142.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43060 (0xa834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 09:25:45 2024 GMT
Not After : May 11 09:25:45 2024 GMT
Subject: CN=660a7d9c-07b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d4:18:e0:dc:43:8a:d5:27:5d:17:17:9c:23:
01:08:1c:d6:51:5d:f9:1a:06:f5:7c:ef:e0:ea:7d:
17:d9:29:a8:e7:57:92:3d:2f:0a:28:b1:64:91:b6:
a3:0b:45:ca:13:8c:f3:02:2a:dd:e3:8e:2d:63:c5:
a3:21:12:93:5e:6b:83:71:2c:4d:23:45:94:69:27:
a3:83:8e:60:ec:22:32:56:29:cc:cf:a8:cc:08:0a:
1c:34:b3:88:60:4d:51:7e:4e:cc:99:6c:fc:1e:bb:
78:6f:f9:10:30:5f:71:b0:2b:50:d9:e4:a0:82:90:
38:cb:e6:6f:87:64:76:91:1e:6b:0d:b5:b7:1f:a6:
8d:6f:8c:19:c4:94:ca:8f:bd:5a:41:6b:67:b4:c3:
0b:a4:89:c2:82:eb:aa:09:e8:68:7c:01:d3:ac:14:
00:1c:2a:50:29:00:d3:a9:cd:4a:3c:59:d8:7f:fe:
a7:f7:21:a2:ac:1e:1c:8b:b4:9c:39:db:a9:7c:15:
5c:53:3c:e2:57:c9:8d:41:60:02:00:d6:a5:c2:90:
ce:4b:a5:1e:b6:72:97:40:ae:e9:2b:81:33:25:8a:
1e:41:8f:1b:77:71:f5:23:5c:e0:53:14:ec:46:e7:
8e:ef:1a:11:d6:db:3a:4c:af:79:ba:c3:6a:22:22:
87:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:89:D3:21:BD:8A:8F:BA:F4:C1:C9:E3:48:35:17:2E:AE:B7:0C:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2EAC588F00911EE95C9C057775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.142.0/23
Signature Algorithm: sha256WithRSAEncryption
15:f5:68:0f:41:9a:c1:8a:2a:79:c5:e3:55:35:ed:62:27:83:
7f:a1:d0:ab:b4:7b:fe:ca:d5:12:02:56:74:15:d5:58:6d:92:
7d:3b:45:f1:81:12:c5:94:06:8f:be:cc:02:2f:83:e7:50:bf:
03:e6:b2:1f:4d:70:4b:a6:cb:93:4f:68:53:2d:8a:d6:3c:92:
97:0a:82:06:33:35:61:28:25:25:3f:a9:ad:d0:4c:a4:d1:da:
df:54:45:06:ef:18:98:a1:6a:08:5c:fc:86:2d:b3:d1:6e:37:
ce:29:2d:0c:98:50:0e:dc:ce:33:9d:85:ca:75:05:a5:e2:96:
04:ce:92:b4:d6:fb:38:0e:91:01:e6:55:b1:e3:26:98:89:5f:
bf:fb:74:43:c1:da:ee:68:a0:1a:22:de:bc:2c:84:b6:81:34:
54:97:77:d8:13:83:89:76:d3:fb:5b:af:3f:92:fa:b5:0a:db:
80:1f:4d:35:bf:5d:92:11:47:42:c4:52:66:7c:7b:7b:76:71:
ce:73:ab:bd:40:21:59:32:41:df:87:2f:fc:47:2d:f5:21:79:
e8:fa:79:db:e4:2d:27:13:7b:ac:59:2d:ad:fc:1a:61:c7:52:
97:83:01:d7:e8:76:8d:68:85:a8:bb:ce:92:7e:f4:9c:a9:5f:
de:74:db:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:21 2024 by rpki-client on console-ams.rpki-client.org