Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0440D5C0B4311EFBBE1C120017001B1.roa
File: E0440D5C0B4311EFBBE1C120017001B1.roa (raw, json)
Hash identifier: 91CSyNlfDx4p6iKF0ZIgo0I5Z92LQmRZPkwE8bNLmFM=
Subject key identifier: 8E:18:02:FC:DF:48:1B:B9:D0:EA:92:D0:D1:A8:C6:D9:2A:43:86:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B42A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0440D5C0B4311EFBBE1C120017001B1.roa
Signing time: Mon 06 May 2024 00:59:22 +0000
ROA not before: Mon 06 May 2024 00:00:19 +0000
ROA not after: Thu 06 Jun 2024 00:00:19 +0000
asID: 210542
IP address blocks: 154.84.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46122 (0xb42a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 00:00:19 2024 GMT
Not After : Jun 6 00:00:19 2024 GMT
Subject: CN=66382b6a-d75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a6:4d:12:30:36:fa:d6:a5:da:77:9c:06:58:
71:9f:7c:b8:65:2b:58:bd:c3:2a:8d:cc:99:5b:a6:
46:83:ed:61:a6:3d:4a:1c:b7:36:26:9a:d3:16:6c:
53:32:e9:03:d4:3a:f8:e2:bb:e1:55:93:1c:52:a0:
69:04:44:db:44:67:5c:6c:ef:7e:04:9a:98:92:ad:
18:00:89:be:e8:26:cf:c9:6d:c6:82:49:a6:6c:f0:
9c:8d:a8:f5:50:03:cd:32:51:49:33:76:7f:1e:f2:
a4:73:5a:ec:6b:b0:da:14:87:20:3e:df:22:60:f2:
e7:ac:b5:82:71:38:92:46:b2:db:6c:d9:a0:dd:cb:
49:3d:a5:06:55:19:db:c4:17:04:47:f3:45:79:6c:
a7:88:24:67:86:f1:c9:83:78:d3:a0:9f:0e:1a:13:
fb:8e:61:44:2a:42:41:70:01:c0:97:66:1e:db:ca:
43:35:ed:03:a4:a6:4c:c3:8a:84:06:24:1a:1b:94:
90:9c:6f:41:54:3b:80:ba:b7:7a:3a:b0:7f:83:89:
9e:33:fe:65:ef:2d:d1:19:a6:82:e9:c7:20:6b:2f:
e2:72:f2:36:09:1a:b2:83:77:36:95:48:a9:6d:06:
e3:98:f1:7d:b0:8f:5c:3e:77:f6:ec:6b:ba:3a:92:
9c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:18:02:FC:DF:48:1B:B9:D0:EA:92:D0:D1:A8:C6:D9:2A:43:86:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0440D5C0B4311EFBBE1C120017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.0.0/24
Signature Algorithm: sha256WithRSAEncryption
68:f2:a8:d6:65:47:c6:13:b2:3e:80:90:c1:b8:be:da:a2:d4:
b4:f1:e6:3e:28:35:ab:86:17:9c:3a:ce:09:da:d9:bd:e5:70:
fa:7f:ae:aa:c8:f2:02:30:dc:cd:a1:ea:25:27:bd:6b:62:e8:
88:72:e1:bb:8d:6e:96:b3:c9:be:70:28:6d:d8:f7:8b:3f:e1:
8c:35:1a:c4:32:16:00:17:0e:07:a8:9f:e5:dc:b2:38:9f:34:
0f:b1:f6:df:0b:99:ba:84:12:e6:5d:f4:28:7c:30:7b:3f:dd:
9b:fc:81:b2:5d:f0:6a:84:da:f7:6a:27:4b:36:0c:90:ad:51:
ef:ff:13:2c:a9:22:e2:4f:a7:95:82:e5:79:88:f7:1c:30:46:
33:c5:34:5b:36:06:77:f6:9a:3a:1d:5a:c9:25:93:3f:70:59:
64:08:85:cb:de:74:31:f2:58:68:df:5f:b0:99:11:62:16:f7:
1d:c9:e7:74:96:d0:23:80:71:8a:62:16:5b:36:8d:00:52:e9:
53:13:14:c4:ae:34:ec:19:65:b3:88:a4:ce:4d:75:85:93:49:
df:33:89:f3:82:3c:85:c5:e7:11:c8:05:0e:f1:9f:72:5e:d4:
be:38:14:4b:35:39:67:2b:5c:33:cd:f1:a5:51:d9:d0:24:2f:
0c:55:5c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 01:47:02 2024 by rpki-client on console-fra.rpki-client.org