Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2ECB27CFEA011ED972F38684AD9E6FC.roa
File: D2ECB27CFEA011ED972F38684AD9E6FC.roa (raw, json)
Hash identifier: l04v/0gJNU125Q7xuvLaSNzTtIK7+wNcfZ0J87U+crs=
Subject key identifier: 01:5D:04:FA:5A:AD:73:F1:40:BD:3A:4D:04:A8:DE:DB:F3:40:46:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2858
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2ECB27CFEA011ED972F38684AD9E6FC.roa
Signing time: Tue 30 May 2023 04:17:00 +0000
ROA not before: Tue 30 May 2023 04:16:57 +0000
ROA not after: Wed 15 May 2024 04:16:57 +0000
asID: 63888
IP address blocks: 154.207.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10328 (0x2858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 04:16:57 2023 GMT
Not After : May 15 04:16:57 2024 GMT
Subject: CN=647578bc-0e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:77:5c:a2:eb:15:45:ae:ab:ca:14:ac:56:22:
f8:39:c4:85:74:84:e3:f4:fc:75:32:e1:51:45:e6:
12:f8:17:a4:c7:e6:fd:73:36:a1:19:f3:0c:d6:16:
7c:75:2d:1e:b6:48:dd:75:9c:c2:48:91:ba:78:5f:
1b:f9:16:58:37:6d:c5:fc:e6:25:8a:db:b5:ea:a6:
f2:09:4b:10:e6:ef:8c:ba:8f:74:35:9e:36:5d:05:
b1:1c:c5:ee:48:6e:32:57:99:7b:34:f0:dd:d7:78:
59:cc:b8:15:2c:68:ca:51:9f:53:bc:0a:db:bc:03:
f9:4b:f6:30:bb:84:0b:2b:ce:3b:d6:32:a0:93:7b:
75:77:f3:84:e0:3f:ec:47:57:58:c6:78:bc:2d:d4:
66:40:d5:30:3d:a4:50:10:e6:b2:93:62:48:21:3e:
ff:05:12:25:58:20:0f:de:f4:b7:c1:02:97:98:56:
97:a0:40:44:fe:53:fe:85:25:a9:f6:aa:5d:2f:11:
8d:f7:36:af:5f:7a:44:e6:51:67:61:34:91:69:e2:
6e:da:d0:e0:99:64:97:2f:cc:ed:01:5e:03:87:b8:
f0:0e:95:cc:b9:9b:22:16:8c:0b:da:a1:72:b7:4e:
72:60:32:31:7c:0a:0a:15:03:11:32:d7:d3:fc:35:
17:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5D:04:FA:5A:AD:73:F1:40:BD:3A:4D:04:A8:DE:DB:F3:40:46:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2ECB27CFEA011ED972F38684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.69.0/24
Signature Algorithm: sha256WithRSAEncryption
69:32:9d:a3:95:9b:92:87:6d:40:6d:74:18:47:60:ed:44:28:
5a:c2:f0:23:84:6c:14:5c:c5:eb:74:0b:38:71:61:10:c1:29:
dd:37:2b:f2:57:b2:c2:eb:21:8f:82:c2:8f:b8:04:bf:f1:02:
8d:f5:d4:f5:3f:59:0b:d8:c1:5f:34:bb:1f:59:5c:f3:0b:0e:
7d:9a:8f:2e:39:26:39:25:11:73:bc:92:07:08:ac:7e:c1:f5:
e6:47:9f:f1:3f:54:12:cf:02:a9:8c:c1:15:ac:3d:8b:40:76:
a9:f6:fd:3e:f9:6d:6f:ed:fc:8a:7c:ac:59:cb:20:63:16:27:
7f:51:a6:7f:c6:01:27:49:0b:fe:e9:44:33:da:c6:03:2b:87:
2f:eb:7f:fd:03:3e:16:36:97:e9:06:8f:64:53:fb:4c:dc:18:
3f:dc:a3:c1:44:83:77:a2:49:6c:3a:1d:79:bd:14:6b:ec:a9:
76:53:58:b6:59:d9:fc:ff:40:92:9b:5f:87:d6:69:05:d1:8c:
e7:8a:43:b6:8e:90:56:76:9b:47:bd:f7:7b:74:94:18:73:f2:
21:14:a7:04:c5:0d:ac:58:ea:54:36:7c:8f:e4:ac:2d:5e:fe:
70:53:e6:e6:91:79:2e:b8:de:b3:3c:20:8c:4d:50:fd:3e:4a:
b2:31:5a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:39 2024 by rpki-client on console-fra.rpki-client.org