Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB379884F01211EEBD232F9D775412E6.roa
File: DB379884F01211EEBD232F9D775412E6.roa (raw, json)
Hash identifier: p95wiNIEUn1b2qViGpZ6Df9/DT9c7zUmAyk6I7sJF0c=
Subject key identifier: 3D:0C:71:02:BC:6E:23:EB:FB:3C:BC:96:08:F5:71:CA:91:7A:1E:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A89E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB379884F01211EEBD232F9D775412E6.roa
Signing time: Mon 01 Apr 2024 10:30:27 +0000
ROA not before: Mon 01 Apr 2024 10:30:24 +0000
ROA not after: Sat 11 May 2024 10:30:24 +0000
asID: 63139
IP address blocks: 154.203.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43166 (0xa89e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 10:30:24 2024 GMT
Not After : May 11 10:30:24 2024 GMT
Subject: CN=660a8cc3-ea7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5e:97:cc:cd:e4:95:22:5d:36:84:cc:8e:f5:
eb:40:94:c6:9a:e2:49:96:06:49:c1:2c:28:98:c5:
c8:7d:14:38:f5:ed:85:9f:f6:6b:6d:f1:d8:00:70:
89:4f:4b:fa:2b:d2:42:99:15:83:a8:e4:6e:b7:7a:
82:2d:82:4d:af:b7:10:7c:12:d0:01:76:4d:1f:62:
9b:1a:27:b1:2d:20:65:d2:44:6d:cf:79:45:cf:50:
5c:6b:9b:03:84:1f:c6:5c:a9:d8:aa:ce:41:8b:12:
98:8e:08:23:ce:2e:82:3e:8e:8d:a1:5d:d7:a9:8b:
b7:ae:09:6a:b3:84:8a:c2:9e:e2:f5:8b:91:62:4c:
df:9d:bf:18:f7:9d:e8:68:e3:45:cb:06:fa:e6:d6:
d0:8b:b3:f3:54:8a:ec:df:d7:82:a0:ba:40:ca:66:
9e:b3:91:42:99:eb:13:5d:9b:57:6a:47:64:90:2d:
7f:92:61:be:b8:d1:69:24:9b:8b:91:a7:02:52:a5:
fc:f4:e7:47:56:4a:f0:ec:99:29:ea:df:43:5e:85:
45:bc:6f:6e:88:15:98:43:69:f7:d1:92:38:27:0a:
db:a5:1a:3c:97:1e:bf:25:10:fa:e2:a5:ad:01:7d:
66:35:6d:b5:1b:61:1f:8e:70:a7:1c:fa:4d:5c:28:
2c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0C:71:02:BC:6E:23:EB:FB:3C:BC:96:08:F5:71:CA:91:7A:1E:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB379884F01211EEBD232F9D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.189.0/24
Signature Algorithm: sha256WithRSAEncryption
18:c1:9c:cf:f3:ae:45:a9:43:81:69:28:e6:93:0c:05:1f:72:
e6:55:53:f9:59:64:d6:57:90:99:8d:8d:66:49:12:be:9f:0f:
8b:23:b0:30:e5:40:d0:a4:60:01:7d:a8:56:18:39:0e:9c:4a:
3c:5a:85:72:cf:b6:c1:82:c0:44:9a:bd:14:96:7a:2d:e2:c6:
b0:7e:38:30:1e:f4:d2:d8:80:2d:ef:ea:eb:16:a0:02:df:e4:
2f:ed:e8:89:11:64:fb:e8:aa:10:b1:f3:ca:18:24:69:e4:16:
2a:31:d2:cf:ef:51:dc:44:8d:f5:85:91:6c:a6:2c:cf:3f:56:
17:d5:72:15:51:39:74:e0:c8:67:89:a2:c6:6d:26:26:fa:be:
47:c0:c0:53:f2:4b:e9:ed:cc:d4:7c:69:50:15:d8:f6:b7:41:
88:bd:ca:28:b9:1f:3a:60:d8:46:ac:0d:de:ed:ae:a5:be:61:
51:01:23:9e:2c:70:e9:44:23:ee:5e:fa:00:b4:cb:9e:cf:cc:
14:c0:47:a5:a3:69:a1:64:da:08:98:07:bc:d4:4f:97:61:14:
45:3b:8d:fa:24:dc:0a:c0:b6:96:b9:7e:9f:00:34:a5:85:e2:
ed:40:e9:8f:e3:19:ce:cf:11:53:ad:54:02:0b:6c:f4:84:70:
81:4e:84:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:22 2024 by rpki-client on console-ams.rpki-client.org