Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D312AEF8E73111EE99C29BA2775412E6.roa
File: D312AEF8E73111EE99C29BA2775412E6.roa (raw, json)
Hash identifier: kE+PgfKzt8Et7mYwKge00tMneSuxNoqa9OA6GXWOjTM=
Subject key identifier: C9:DB:66:59:F5:EB:D7:72:B2:A3:83:77:90:58:79:BB:CE:67:93:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A33E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D312AEF8E73111EE99C29BA2775412E6.roa
Signing time: Thu 21 Mar 2024 03:19:28 +0000
ROA not before: Thu 21 Mar 2024 03:19:24 +0000
ROA not after: Tue 23 Apr 2024 03:19:24 +0000
asID: 44559
IP address blocks: 154.207.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41790 (0xa33e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 03:19:24 2024 GMT
Not After : Apr 23 03:19:24 2024 GMT
Subject: CN=65fba73f-54d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dd:e8:8e:e2:85:17:99:50:b5:04:45:31:17:
1a:15:7c:c6:9a:6f:cb:c0:35:45:ef:ac:a4:c7:9b:
ad:f9:45:18:06:98:2a:58:e6:29:24:ec:41:3d:79:
dc:a7:02:8d:5e:f5:46:80:76:ab:53:46:23:6d:d5:
f7:11:4b:18:71:a7:0d:64:e6:5d:31:8d:6d:39:86:
fc:b7:34:bf:b6:13:68:9e:83:65:a6:75:28:a0:94:
7e:00:45:2d:f6:e5:d0:4c:51:30:36:2f:53:b7:74:
30:c5:c1:0a:b2:cf:59:53:51:e8:78:4e:22:5c:77:
b7:5c:a9:5a:b5:92:e7:23:64:d0:1b:d6:91:22:d1:
ee:c1:62:a2:ae:e4:62:1d:aa:36:5d:1b:dc:13:7b:
c6:8d:e1:87:b6:27:ea:a7:70:dd:6d:27:ee:a7:b9:
5e:e8:5c:31:42:1d:da:d8:e8:b3:cf:19:45:9a:2c:
3b:d5:cb:b7:76:63:05:91:f8:3e:24:6b:6e:ab:05:
a3:d9:2f:84:93:bc:46:d8:c4:f6:ce:5d:29:9c:46:
e8:cd:44:b6:50:ef:61:43:53:e5:ae:51:f1:17:ed:
9e:49:df:18:ad:93:2d:39:9a:aa:fb:65:a9:93:cc:
69:d1:e9:87:c1:70:51:5e:8f:01:ad:08:22:90:e6:
95:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DB:66:59:F5:EB:D7:72:B2:A3:83:77:90:58:79:BB:CE:67:93:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D312AEF8E73111EE99C29BA2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.26.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1b:51:0f:61:b8:b1:0f:32:f2:a8:ae:71:18:d9:cb:de:04:
db:31:0d:4e:71:6b:ac:1c:ed:19:59:e5:95:06:c6:7b:7d:45:
9d:c7:5e:59:fa:ca:ab:af:0f:ec:b4:ae:a7:fb:0d:0b:35:1f:
1d:80:8c:5e:02:40:8f:11:1b:03:e1:77:7e:26:4d:f4:d6:7e:
85:5d:64:95:88:b1:a4:60:22:80:8c:78:2a:35:3d:10:19:4c:
43:6c:ad:a3:aa:ca:81:94:b0:5c:76:60:1c:69:9b:4d:94:ba:
a9:95:d9:08:f2:2d:43:90:68:35:c1:7b:bd:18:5d:dc:73:c9:
43:8e:c9:be:3c:db:84:7d:c0:16:66:d0:90:ed:ee:e9:dd:69:
0e:02:9b:58:b0:12:c4:f7:dd:f0:66:75:20:72:d6:fa:53:85:
86:00:9a:93:89:9d:3e:4d:3e:c2:c8:4c:43:58:8e:b6:54:0e:
d6:74:8d:41:77:19:70:02:b3:92:bb:3c:a5:2a:08:cd:ca:4f:
3e:c0:d5:41:88:1e:e3:c1:b3:1e:a3:20:c3:70:33:a1:27:af:
57:ee:2c:7c:04:4d:c0:ea:a9:55:28:dc:99:47:7a:46:09:c8:
81:2c:9c:80:14:00:03:ee:b8:73:ea:12:82:2c:e5:5b:7d:b0:
70:09:4c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:25 2024 by rpki-client on console-ams.rpki-client.org