Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D37B9648E78611EE896778BA775412E6.roa
File: D37B9648E78611EE896778BA775412E6.roa (raw, json)
Hash identifier: GsuI5vOiVfVZzRHAy8F1M4t2Flt2tMczEq1kd3b5oKc=
Subject key identifier: E5:46:21:5A:B2:5C:1C:48:57:AB:67:96:94:79:A2:67:7F:23:76:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5AD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D37B9648E78611EE896778BA775412E6.roa
Signing time: Thu 21 Mar 2024 13:27:55 +0000
ROA not before: Thu 21 Mar 2024 13:27:52 +0000
ROA not after: Tue 23 Apr 2024 13:27:52 +0000
asID: 44559
IP address blocks: 154.210.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42413 (0xa5ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:27:52 2024 GMT
Not After : Apr 23 13:27:52 2024 GMT
Subject: CN=65fc35db-fb6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:ca:8b:82:8e:54:84:d2:00:d4:95:bf:c6:
04:0c:16:17:ae:bf:5e:e4:35:08:84:92:76:0c:18:
bd:a2:a6:b1:18:95:bd:0e:a2:e1:74:55:29:a3:14:
59:39:da:d2:b7:8a:7d:e0:6f:ce:fc:c5:29:8b:fe:
15:be:52:00:02:fa:78:a9:1e:31:3e:fd:fc:8a:a4:
e8:3c:2b:23:9e:01:cc:88:3b:a3:e6:68:f7:cc:8f:
1c:ad:dd:6b:53:c8:b4:b1:ed:04:61:3b:db:30:e8:
9a:68:d8:4a:26:21:a7:af:bb:af:70:01:8b:1e:7a:
df:b8:c9:15:90:03:f0:4d:7e:a4:06:a3:82:40:d4:
fd:01:67:a4:86:97:8e:96:2e:60:d0:8d:1e:01:ae:
cc:c5:b7:9e:c3:b6:c3:70:b7:ff:6f:13:45:2c:a5:
5b:db:62:6f:8f:50:68:a2:f9:d9:a8:9d:37:ea:5e:
bb:0e:64:ea:f8:89:ec:32:ce:13:56:05:5e:df:96:
44:ce:24:29:fa:3c:83:ac:0a:5d:32:ae:7a:9d:a1:
e7:20:6d:d3:3d:d6:23:17:c2:b3:44:9d:db:07:67:
af:f1:6c:20:cb:91:29:8e:b2:42:90:9e:8d:48:1d:
a8:b5:5b:76:17:b7:e5:b0:ee:98:da:c2:3d:ee:2a:
91:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:46:21:5A:B2:5C:1C:48:57:AB:67:96:94:79:A2:67:7F:23:76:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D37B9648E78611EE896778BA775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.70.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:c1:86:94:f9:75:d9:e7:8e:5e:a6:9a:8d:bd:e3:9d:c4:5c:
68:c1:fd:dd:96:fe:87:9f:78:6a:2d:56:3a:9d:42:30:99:db:
f4:f1:b7:4b:4f:7d:b3:f8:f3:98:4a:e3:a5:37:9f:23:cf:57:
5b:59:40:df:89:29:a9:90:63:be:c2:44:86:54:87:59:cf:4d:
1e:bd:96:f5:52:fe:e3:0c:ca:07:6f:ce:c1:32:a9:13:c1:3b:
9b:3b:69:99:d4:45:91:c4:94:d0:58:cd:15:18:d9:6b:48:1e:
c7:57:cc:2f:f6:c6:95:d5:ea:39:8c:6f:31:c2:0d:2d:24:88:
fb:8a:dd:ac:22:94:ac:4d:1b:11:3e:14:84:81:1d:83:76:31:
00:61:2a:01:11:ee:1d:ec:39:4f:91:b8:54:20:ae:0c:bc:1c:
9b:84:7f:0b:97:7e:ab:0b:d3:05:c4:e1:d6:27:a6:2d:84:52:
6f:f0:01:b0:63:9f:ce:16:1d:af:ac:a6:23:e0:b6:6a:4b:8c:
1e:74:07:07:4a:f5:42:91:be:3e:00:62:6c:35:88:19:4b:31:
01:5b:b0:27:b9:94:af:b5:89:a7:0f:94:43:20:a3:f5:34:95:
86:f3:90:08:c2:be:0a:23:dc:1e:7e:20:cb:a1:d0:c7:49:8f:
1a:45:ee:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:25 2024 by rpki-client on console-fra.rpki-client.org