Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73CCB14473911EE89486A5B4AD9E6FC.roa
File: D73CCB14473911EE89486A5B4AD9E6FC.roa (raw, json)
Hash identifier: DuH22qiHzjAjze8nU3lmRo4lNJMObOY5Gy5WCFRyPbQ=
Subject key identifier: 67:BC:18:ED:F2:26:52:58:24:A2:CC:7D:3A:9C:8E:F6:E5:A3:43:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3AF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73CCB14473911EE89486A5B4AD9E6FC.roa
Signing time: Wed 30 Aug 2023 13:33:44 +0000
ROA not before: Wed 30 Aug 2023 13:33:41 +0000
ROA not after: Thu 08 Aug 2024 13:33:41 +0000
asID: 133199
IP address blocks: 154.197.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15093 (0x3af5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 30 13:33:41 2023 GMT
Not After : Aug 8 13:33:41 2024 GMT
Subject: CN=64ef4538-a80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:6c:95:2f:81:4c:3d:1e:3e:2f:f9:5d:59:0d:
4c:76:72:40:37:f6:79:6b:a0:5e:c8:11:6c:84:53:
83:df:28:b3:dc:ca:4a:6f:8e:aa:81:fb:fc:5f:0b:
6f:42:13:ff:b9:bc:be:bf:fe:d7:5d:88:01:ad:9a:
b4:a3:ee:fb:7d:f3:77:60:c9:96:f5:2a:ea:4e:62:
6d:b9:cf:43:fc:f7:e6:53:4a:5b:c5:f9:a1:6f:0e:
23:d8:09:4c:41:44:d6:30:07:e4:6b:40:34:b1:59:
39:ea:cd:fe:b7:5a:ed:a4:2c:b4:cf:c9:67:d1:db:
94:ec:d9:60:33:83:cc:b3:95:3d:2c:3f:ab:fc:fe:
0e:60:2f:d3:34:2d:a5:13:40:14:31:fb:51:16:9e:
0b:ec:c1:e2:ed:11:54:d9:05:75:ac:bf:df:90:10:
de:b4:07:ba:c8:f5:31:3e:be:69:72:c6:ff:13:7d:
b3:89:a2:7f:af:13:69:bf:ae:e2:71:f6:35:08:e1:
5b:23:7a:d4:91:0a:f1:91:eb:b0:36:cd:27:4d:71:
2f:8c:91:b8:fe:96:c8:ee:b8:8a:9c:d4:4c:67:94:
07:59:20:85:7b:b9:e3:61:6e:0a:dc:4e:c7:d3:d6:
5a:61:39:c7:c1:2d:37:37:6e:f9:2f:e4:d0:90:67:
cf:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:BC:18:ED:F2:26:52:58:24:A2:CC:7D:3A:9C:8E:F6:E5:A3:43:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73CCB14473911EE89486A5B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.26.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:1a:a3:15:55:e6:02:15:8d:e6:4c:87:ea:9f:2c:25:14:25:
ff:57:74:16:fd:44:f8:90:a5:5e:73:5d:10:ae:53:24:89:28:
c6:af:51:cf:38:ee:fc:8a:4a:cd:41:15:9f:58:38:54:94:f2:
a2:11:bd:fc:8d:9e:40:cd:68:f7:10:b5:d5:a4:a4:17:b1:2f:
5f:e4:66:ca:5e:27:fa:e5:92:a5:ed:1d:3e:f4:d3:73:10:87:
7d:5f:5b:8b:63:68:8e:17:1c:a6:c9:90:e0:3a:81:67:70:0f:
94:10:3c:c1:7a:0f:3e:ca:8b:da:f4:f0:31:73:d9:1c:f4:97:
a6:90:af:b9:70:2c:2c:6c:ea:37:78:f4:08:b0:58:1f:28:17:
8c:c8:0a:c3:b8:b1:7c:f8:c2:ec:ef:ae:38:d8:fa:69:78:d4:
f4:36:a4:0d:84:dc:af:31:d1:9a:58:9e:90:e0:e4:0e:dc:6e:
30:07:a8:e4:46:86:a8:f6:68:90:c0:45:15:78:d5:8a:fc:aa:
02:fd:cf:d4:48:b1:5b:b9:61:0b:3b:e1:92:08:08:da:05:2b:
a1:32:aa:80:96:47:84:df:79:6e:e6:9b:ae:18:b0:1a:53:b2:
aa:9b:26:82:6b:5a:c5:bb:60:34:19:69:c6:57:2b:ee:9e:13:
45:a5:3d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:40 2024 by rpki-client on console-fra.rpki-client.org