Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB1624E6E73A11EEB6761E68775412E6.roa
File: DB1624E6E73A11EEB6761E68775412E6.roa (raw, json)
Hash identifier: b8IHcJpqVZMZqYtpH2JYk4BvMfMZ72WDBSF6Flod3iQ=
Subject key identifier: 95:79:87:DD:D3:DC:5C:5F:CE:5E:1D:5A:32:5E:08:08:73:D9:2C:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A398
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB1624E6E73A11EEB6761E68775412E6.roa
Signing time: Thu 21 Mar 2024 04:24:06 +0000
ROA not before: Thu 21 Mar 2024 04:24:03 +0000
ROA not after: Tue 23 Apr 2024 04:24:03 +0000
asID: 44559
IP address blocks: 154.221.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41880 (0xa398)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 04:24:03 2024 GMT
Not After : Apr 23 04:24:03 2024 GMT
Subject: CN=65fbb666-ffc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:90:63:54:80:5c:88:1b:ab:c1:7b:0a:fc:c6:
d7:07:67:68:2a:cb:29:92:b3:af:a1:df:ed:19:d7:
9e:71:38:a3:93:06:a2:07:cc:8a:19:09:f1:35:68:
e5:f1:20:fe:db:22:77:7e:c3:0f:f6:62:5e:36:03:
a2:92:0f:93:22:7b:14:02:64:72:d3:8b:13:0c:01:
d7:19:51:a2:d4:28:5b:b2:d4:19:e0:c5:0d:ef:58:
36:80:f8:91:14:a1:5d:8e:d6:db:68:e1:a6:87:de:
1f:c9:46:d8:4a:f5:a0:2d:33:11:4f:ca:82:ca:56:
2f:b7:f9:07:40:2c:26:fa:42:70:3d:cf:e2:3f:17:
3b:22:8a:1c:17:a0:78:6f:50:44:3d:fc:5d:9f:43:
f6:a8:b6:df:cd:a1:94:e6:eb:33:9a:b7:7c:de:f4:
81:4e:cf:b6:c2:30:9d:72:ca:3f:31:47:25:53:3c:
05:31:89:e0:10:d9:b5:48:fe:32:bd:e3:41:b8:dd:
e2:17:47:b0:0c:47:fd:32:88:ca:6d:5c:f0:74:6e:
53:64:a0:4b:69:79:d1:a2:0f:55:d7:02:9c:2f:99:
47:42:8b:97:fb:63:61:5d:3c:b4:49:cd:e3:79:f0:
e5:f7:c6:11:6f:22:2b:50:f3:ed:b9:a7:b7:0e:09:
78:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:79:87:DD:D3:DC:5C:5F:CE:5E:1D:5A:32:5E:08:08:73:D9:2C:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB1624E6E73A11EEB6761E68775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.237.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7e:0c:81:87:e4:18:39:86:56:4e:92:4c:fc:d7:6a:5c:33:
0e:23:da:1c:3f:3c:c5:be:25:f8:7f:fc:7c:90:b6:33:13:d9:
d1:ac:28:16:16:e6:77:ca:d1:27:36:8a:53:39:9c:01:d0:2c:
ff:ed:84:8f:ff:0c:be:f3:90:7f:4a:32:94:67:90:66:ce:f9:
3c:78:4d:96:98:6c:10:00:b0:55:64:0f:0f:7c:f6:6d:93:d6:
ab:14:e3:07:40:3b:cb:d0:08:f4:f8:24:93:31:b4:3b:93:97:
48:0a:d8:af:38:61:ec:e5:6c:2a:9a:0b:58:d7:c6:58:0a:58:
1e:3e:51:a4:68:e8:e5:c1:a8:b4:f8:fe:33:3b:80:0f:e5:9d:
0a:11:19:64:b1:09:b3:a7:37:f6:cb:ad:c2:26:ed:07:f4:29:
f8:57:e4:b9:2b:b6:4f:63:76:52:5d:43:9e:12:30:de:f7:62:
74:c3:14:93:3b:57:58:cd:2f:8a:7e:78:b7:fb:5a:ed:ab:c0:
7d:98:11:a0:7a:7d:57:91:12:62:42:32:fb:34:2e:da:39:3b:
16:37:48:e7:6f:34:31:9d:dc:63:df:30:62:dd:34:08:27:25:
ad:6d:72:29:a0:8f:e6:7b:a9:10:ba:a4:a6:52:f0:3d:c8:13:
5f:a0:ac:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org