Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3179A80671B11EE91DCBA764AD9E6FC.roa
File: D3179A80671B11EE91DCBA764AD9E6FC.roa (raw, json)
Hash identifier: +e4TETFRfPjIQdeKrDJNKEpm9CdReTRDFfOY1THHRu8=
Subject key identifier: 89:C9:FF:10:AF:85:99:50:66:90:57:4E:3C:5B:19:1E:9E:3E:AE:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4567
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3179A80671B11EE91DCBA764AD9E6FC.roa
Signing time: Tue 10 Oct 2023 03:19:30 +0000
ROA not before: Tue 10 Oct 2023 03:19:27 +0000
ROA not after: Wed 28 Aug 2024 03:19:27 +0000
asID: 140227
IP address blocks: 154.197.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17767 (0x4567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 03:19:27 2023 GMT
Not After : Aug 28 03:19:27 2024 GMT
Subject: CN=6524c2c2-8520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1a:a0:06:2f:ac:13:fb:da:1d:7f:b9:56:e3:
11:35:61:0a:99:de:19:13:ba:0d:ea:32:37:12:9a:
2c:06:86:7c:31:07:8a:66:df:84:1d:2c:13:79:c6:
bc:0f:47:5d:19:3c:87:a0:64:5d:ca:de:2d:6b:38:
17:b2:2e:7f:57:29:ef:dc:50:30:41:af:30:6f:59:
c1:4a:82:55:5f:e3:93:0f:ea:03:15:ca:64:3a:d3:
68:79:cd:d0:87:cd:61:ca:e7:b5:74:69:2d:15:c1:
3d:10:ed:76:1f:84:b9:93:37:02:c8:a0:b4:b3:ed:
14:ec:de:bb:b6:e4:d9:67:71:f0:cc:c8:13:c4:f1:
b9:1c:70:0c:38:6a:57:72:ad:67:34:10:1f:d3:bd:
11:67:8b:80:95:fe:d8:db:be:ed:c2:42:07:0c:7c:
2a:e0:39:9b:62:d4:c0:e0:ba:73:c5:55:9b:9b:9b:
36:06:1c:52:69:26:2d:d7:81:a8:ed:82:2d:9b:8c:
a4:1a:11:45:64:f1:cc:11:4c:79:1b:0b:7b:f2:90:
1f:6d:1d:f6:26:ba:e9:43:45:3d:2e:58:56:bf:d4:
30:51:e1:fa:c8:c1:f7:40:7e:93:ed:09:5f:eb:90:
3f:81:56:83:62:1f:df:4f:fc:71:ac:0e:4f:b9:b3:
93:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C9:FF:10:AF:85:99:50:66:90:57:4E:3C:5B:19:1E:9E:3E:AE:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3179A80671B11EE91DCBA764AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.15.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:4b:3b:fc:b4:2d:e9:f1:2d:65:de:b5:4a:aa:6f:cf:af:55:
b1:5a:3b:7c:82:59:19:93:5e:ad:88:d6:5f:c2:8e:92:17:8c:
2d:aa:6c:b2:03:40:43:c6:e7:7f:25:db:68:db:93:93:35:70:
49:b1:69:f5:0e:c4:9f:54:87:77:47:1c:12:13:be:15:4a:22:
f9:c5:e7:60:d5:e7:18:48:a1:b4:ee:73:81:bd:c0:23:9e:21:
e8:f3:39:e5:72:fd:61:01:5f:cd:2c:46:da:80:5f:f3:6f:fc:
1e:7a:76:43:24:d8:ae:94:91:f1:8c:0a:be:bf:b0:86:3b:6b:
8f:52:32:c6:78:1c:5b:c7:40:ed:88:67:f8:ec:c1:52:65:53:
ef:e6:4d:03:7c:54:02:59:3e:c5:4f:07:f8:a6:73:7c:66:44:
2a:06:f5:da:98:01:e5:f3:c6:3b:50:ec:b1:f1:20:93:a0:81:
76:e5:93:46:7e:2e:ef:2f:22:4f:ad:9a:17:8b:ce:b1:5d:31:
63:f0:0f:d9:76:f6:5e:3a:b6:36:4c:2a:85:a0:d9:7b:35:eb:
33:46:b0:31:a8:4c:17:74:20:69:97:89:50:33:fd:80:4e:f7:
8f:a5:49:2a:e3:be:8a:20:12:6d:76:a8:d8:4c:e3:55:31:88:
bb:ce:99:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:10:29 2024 by rpki-client on console-ams.rpki-client.org