Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2A936F4F0BC11EEAE3C7856775412E6.roa
File: E2A936F4F0BC11EEAE3C7856775412E6.roa (raw, json)
Hash identifier: xRaJ5hmhohVRDKozKKYONtmn5CeIhRMHH2MvQyWmMnA=
Subject key identifier: B6:10:6A:4E:B0:7C:F7:EC:7A:26:B8:2C:19:7A:47:91:D3:08:B0:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A8BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2A936F4F0BC11EEAE3C7856775412E6.roa
Signing time: Tue 02 Apr 2024 06:47:34 +0000
ROA not before: Tue 02 Apr 2024 06:47:31 +0000
ROA not after: Mon 29 Apr 2024 06:47:31 +0000
asID: 139646
IP address blocks: 154.208.26.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 06:47:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43195 (0xa8bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 2 06:47:31 2024 GMT
Not After : Apr 29 06:47:31 2024 GMT
Subject: CN=660baa06-7c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fb:84:ba:90:48:20:70:ff:e2:a3:36:da:4f:
fd:29:91:42:0b:68:1d:c7:fe:e4:b4:67:e6:04:c3:
e2:67:e8:81:e5:70:88:95:4d:2b:5b:ef:9c:ae:45:
49:78:0c:63:5f:7c:b6:b4:ea:97:38:a4:95:91:f5:
19:b2:62:bf:ba:10:0d:91:a1:26:1c:11:bd:f2:e4:
7d:79:c0:f6:31:9b:c0:28:dc:06:62:18:69:7c:d0:
46:f7:5f:97:c2:cf:16:e0:89:15:8e:26:4b:72:e6:
7f:2c:08:b5:66:5a:b4:96:33:b9:12:3e:f8:b1:de:
83:fa:fd:c6:89:81:e1:67:a3:53:e9:78:4d:d9:df:
a8:3a:53:8e:b5:42:8b:dd:c9:06:da:14:5a:f4:e2:
3c:ae:4b:c7:74:91:57:bf:e0:11:f4:74:2b:f9:b5:
99:33:2c:84:fa:75:33:33:ff:eb:11:dd:21:ff:c5:
2f:36:a8:27:0f:45:ee:4f:49:41:4a:20:95:52:70:
59:f8:b4:d0:00:26:ed:0f:e3:3e:be:7b:f1:31:ac:
36:87:30:84:4e:a6:47:6c:37:52:c0:6b:11:d0:60:
8d:8e:22:11:8b:ba:37:0b:84:64:80:fd:ae:21:ea:
c3:44:7a:d1:d9:73:21:c9:cf:00:52:d8:dd:97:bb:
5b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:10:6A:4E:B0:7C:F7:EC:7A:26:B8:2C:19:7A:47:91:D3:08:B0:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2A936F4F0BC11EEAE3C7856775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.26.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:07:39:12:16:9e:fb:0a:93:0c:14:4f:cd:90:f8:49:44:7c:
c1:b6:a7:6a:0c:62:d3:2e:1e:e2:0d:f9:62:f6:fd:4c:2d:41:
6e:e8:73:b8:9a:00:5c:00:80:41:7d:f1:b3:4f:a5:f0:5b:31:
d5:2e:22:5f:32:72:ab:84:dd:a6:9a:a7:5b:30:76:cf:ee:ca:
35:66:54:fa:d5:35:99:69:96:14:76:d9:3d:eb:d9:07:22:10:
a3:48:6f:2a:a3:15:1e:e9:94:2b:f8:b2:f0:32:d0:b3:9a:05:
f7:08:87:36:80:5f:5f:e1:55:24:51:00:7f:d7:6a:28:1f:74:
60:bb:d9:a4:4c:8b:09:70:57:c7:a2:0e:f2:02:5e:8e:ad:41:
68:4a:d5:62:91:85:81:fb:e4:ee:63:d6:0c:3f:d8:62:5e:22:
ed:23:0b:d9:ad:7b:87:ab:5d:65:20:b8:c5:11:07:08:17:8c:
ce:42:6b:9e:1b:10:93:39:7d:2c:9c:b9:c5:b0:98:5b:36:c7:
5f:17:55:af:86:95:c6:59:bb:93:36:f5:99:38:8d:05:09:ce:
90:95:54:7e:0d:23:1f:7b:1c:ae:5d:c2:21:31:52:c2:9a:ee:
e6:26:07:fc:c9:75:73:0f:b2:6d:1d:e2:ba:59:dc:1d:9e:ef:
fd:80:88:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 05:25:27 2024 by rpki-client on console-ams.rpki-client.org