Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6D847EC671F11EEB27C10844AD9E6FC.roa
File: D6D847EC671F11EEB27C10844AD9E6FC.roa (raw, json)
Hash identifier: RFfStGEUFNzjQ5kBubgVwt11fgtToRkZTj/P3SVPUtY=
Subject key identifier: B8:AF:E1:E8:CD:B9:AC:82:0C:72:23:1A:FA:A1:08:AD:61:60:3B:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4579
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6D847EC671F11EEB27C10844AD9E6FC.roa
Signing time: Tue 10 Oct 2023 03:48:14 +0000
ROA not before: Tue 10 Oct 2023 03:48:11 +0000
ROA not after: Wed 04 Sep 2024 03:48:11 +0000
asID: 140595
IP address blocks: 154.92.104.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17785 (0x4579)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 03:48:11 2023 GMT
Not After : Sep 4 03:48:11 2024 GMT
Subject: CN=6524c97e-239c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cb:da:7f:c6:0d:7f:1b:82:b2:6c:16:75:77:
9f:c7:f3:b1:3c:a2:0b:15:01:75:1c:e6:e9:dc:a1:
25:21:47:94:37:61:20:91:2a:3e:43:d6:96:83:9d:
79:0c:08:76:bb:e7:19:44:a7:b6:8e:ee:86:52:ef:
c0:5c:9f:88:b9:43:c8:47:2e:8b:a8:4c:07:b1:49:
50:dd:e7:49:a5:6b:68:a9:24:db:64:80:07:b1:9a:
77:48:0f:e3:f9:46:72:46:42:ce:f1:e6:7c:18:bf:
7a:9b:f4:1a:87:12:9a:c0:42:76:18:e2:c7:0e:a2:
ad:dc:24:8d:cf:e6:52:f4:fe:c5:91:14:f3:47:12:
c9:5a:ed:01:ef:3f:01:aa:5e:11:59:c6:05:ee:f2:
4c:c4:78:ba:48:d8:27:99:bd:83:84:26:0c:0b:77:
c8:72:0f:52:7d:3c:bc:40:90:b1:d3:ca:e7:b9:bf:
2e:9a:2e:6e:dc:12:62:cd:3b:2c:6c:95:7c:0d:98:
e9:75:a0:98:d6:f0:29:fd:90:91:1d:f9:d0:c7:38:
1a:9f:72:08:ec:c7:c0:f4:5f:22:92:1e:07:96:c4:
93:db:eb:c0:0a:66:98:f4:3f:a6:ac:64:ec:5c:70:
31:91:96:1d:86:bd:d4:16:ce:9c:22:e4:b0:f1:19:
5c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AF:E1:E8:CD:B9:AC:82:0C:72:23:1A:FA:A1:08:AD:61:60:3B:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6D847EC671F11EEB27C10844AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.104.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:b2:af:66:d9:30:82:1e:17:e8:c1:3e:60:27:7a:d4:0e:a1:
28:ac:28:17:2d:6e:ef:13:a7:8b:39:c0:b9:1e:6b:f5:95:b2:
64:46:e9:5c:b6:a1:e7:aa:3a:63:fb:86:f3:d7:9f:24:3a:2f:
3a:45:43:df:27:b3:66:ea:2a:aa:a5:2b:52:15:26:1f:8e:3e:
d6:ea:f7:20:89:97:f0:88:94:dc:fe:88:30:e5:b8:a1:01:f7:
9c:8c:05:08:46:8b:87:22:d5:68:9c:c9:a4:a9:6b:75:5e:3d:
2c:e7:40:d6:09:6a:4c:79:90:7b:61:f8:53:cb:50:01:99:98:
fb:1f:69:56:6e:09:08:4a:7b:23:27:00:ba:4c:92:72:cf:ac:
cf:f7:08:5b:a4:f5:5f:cf:5f:f3:ce:e1:b4:48:fd:e9:13:c4:
b5:4b:1b:96:c1:28:ac:0d:66:7c:16:c3:c5:9e:5c:38:89:55:
e1:5f:a8:d2:e9:17:bf:49:cb:1e:15:da:f7:e1:fd:63:51:40:
f4:4c:d0:bc:af:fb:a0:31:b0:6b:f2:8c:6c:88:ed:04:92:84:
b1:00:20:b2:fa:40:ad:18:2f:2b:63:cf:98:86:15:ff:c2:e2:
be:dc:73:94:15:d8:e6:38:95:21:e7:60:ea:e2:4f:fd:a4:d3:
b0:72:6f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org