Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEEA121CF47D11EEA41BF1AD775412E6.roa
File: DEEA121CF47D11EEA41BF1AD775412E6.roa (raw, json)
Hash identifier: 0pT2UMGMLcljt1CEr8+sat2pkP0ssjkR18sBXEzetok=
Subject key identifier: DD:74:23:27:41:16:B1:B3:E7:10:26:D8:EB:BA:C2:A4:DF:2D:F4:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A992
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEEA121CF47D11EEA41BF1AD775412E6.roa
Signing time: Sun 07 Apr 2024 01:26:34 +0000
ROA not before: Sun 07 Apr 2024 01:26:31 +0000
ROA not after: Mon 13 May 2024 01:26:31 +0000
asID: 138915
IP address blocks: 154.206.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43410 (0xa992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 01:26:31 2024 GMT
Not After : May 13 01:26:31 2024 GMT
Subject: CN=6611f64a-dfbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:61:1c:70:34:7e:62:a8:2f:37:0d:50:e0:9b:
04:22:f0:19:41:fd:fd:da:14:c6:8c:f3:f2:d2:c9:
e6:b2:39:99:33:14:38:e2:57:ae:9a:91:24:0d:44:
1d:b2:c5:0e:f9:21:1a:75:77:96:c3:f1:ad:90:1c:
e5:27:25:01:87:d2:c6:b3:4d:e5:98:f1:7c:d3:34:
4e:96:53:84:1a:6c:ea:47:d2:c3:c8:25:b9:a9:f9:
a8:70:c7:88:21:b7:c0:00:d8:1d:50:7c:05:72:7f:
e5:06:29:f5:10:42:c2:cd:8f:94:de:a9:93:76:d9:
1e:e8:f2:9d:e7:f2:03:db:c3:91:a6:b4:37:e1:f7:
10:4d:2e:30:3d:5b:57:a1:ca:dc:76:7c:c6:4b:d2:
57:36:a6:f7:33:f7:fa:37:fd:f6:07:ab:89:3f:3f:
79:1f:63:0c:7e:99:ec:a4:07:6b:03:4f:08:d1:2e:
8e:ab:36:8e:f9:1a:6e:99:c0:3f:48:88:0d:48:00:
19:ff:06:f7:a1:4e:6e:20:c7:a2:0e:f9:8d:8c:06:
76:82:fc:ef:66:2b:be:83:08:2f:da:fd:50:ec:b9:
8e:f9:13:55:5e:ca:5f:b4:03:59:ea:25:33:5e:71:
3f:81:90:06:7b:7d:da:9f:48:18:1e:21:0f:60:59:
0f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:74:23:27:41:16:B1:B3:E7:10:26:D8:EB:BA:C2:A4:DF:2D:F4:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEEA121CF47D11EEA41BF1AD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.78.0/24
Signature Algorithm: sha256WithRSAEncryption
74:0f:58:bd:08:01:c9:18:e6:6e:22:d0:33:98:65:e2:f7:39:
f9:c9:5d:30:c2:93:06:62:7f:2a:f3:b5:03:e8:b7:37:e3:0a:
54:17:1d:50:cf:de:3e:db:5b:a1:55:30:43:1b:95:4b:63:15:
fb:cf:58:b6:85:43:c0:b6:35:f7:30:64:9e:bd:55:95:15:3f:
62:1c:0f:c5:01:18:9f:de:17:10:75:d2:4c:17:cc:90:97:d8:
6e:95:94:40:28:38:d1:0d:65:c4:36:e0:da:cd:7c:e5:d4:a2:
e3:c4:42:5c:e6:e8:a9:cb:d3:8e:bc:8c:79:c8:e2:39:ca:34:
be:43:91:59:53:1c:9c:0b:f7:e3:a7:aa:01:79:02:5f:f4:52:
b8:31:33:7c:4f:6d:d5:84:94:02:88:71:8d:49:b5:b3:54:de:
66:ac:5d:c7:a0:66:f6:fd:e5:73:22:22:ce:79:c0:95:3e:0f:
b2:25:58:29:9c:8d:b6:b6:5e:e1:73:40:0c:75:15:70:5d:5b:
78:69:ec:c4:8d:f2:43:6f:0b:59:c6:b2:3b:5b:5e:7f:3b:51:
79:c3:88:c1:c9:2e:80:09:5f:cc:91:d6:2c:6c:69:74:7a:d6:
9c:58:d2:30:69:79:c8:8b:50:19:78:e1:c1:7f:9a:25:5e:e8:
ec:b2:1e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:03 2024 by rpki-client on console-fra.rpki-client.org