Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E456BBE082B511EEB72580224AD9E6FC.roa
File: E456BBE082B511EEB72580224AD9E6FC.roa (raw, json)
Hash identifier: /yRxOcBSw6ywYnDPuy7Vtcvalq539yxhvL4VLSPu5aw=
Subject key identifier: 35:DC:A6:D3:D3:0A:86:67:33:26:4B:1C:C9:F0:F6:DC:72:95:0A:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4FAE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E456BBE082B511EEB72580224AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:20:23 +0000
ROA not before: Tue 14 Nov 2023 06:20:19 +0000
ROA not after: Tue 12 Nov 2024 06:20:19 +0000
asID: 397630
IP address blocks: 154.202.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20398 (0x4fae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 06:20:19 2023 GMT
Not After : Nov 12 06:20:19 2024 GMT
Subject: CN=655311a7-8340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4d:76:9f:41:1a:d5:f1:c9:8c:37:89:11:10:
95:65:fc:44:68:6b:84:51:ec:44:9f:77:4a:9c:8e:
ea:07:5a:e4:bb:d0:84:d5:9e:66:e0:5a:f4:1f:b1:
8a:8b:5f:06:b3:37:6e:05:44:cd:81:22:7a:11:91:
cb:4c:62:d0:dd:8f:c9:5d:9c:f4:0c:c1:58:b7:53:
52:ad:a3:35:23:51:e7:bf:2b:15:08:3e:f0:06:a0:
92:a5:be:e2:2f:3a:97:0c:f4:1e:27:ca:9e:ff:18:
f6:40:79:89:46:11:3a:e4:43:21:af:cc:04:77:f4:
9e:2a:73:90:1c:46:bc:69:f9:fb:fd:52:58:28:1b:
9b:1b:72:c0:37:21:e9:17:ed:66:7d:02:9d:7f:65:
74:24:cf:5d:28:97:66:43:7d:37:7a:da:a4:05:0a:
62:14:a3:f2:23:27:86:d4:ab:64:24:bb:8e:8c:07:
c4:66:e7:6c:b8:47:09:3d:a8:b2:50:08:73:ec:d6:
17:fe:a8:c7:e0:cf:ed:41:a1:3a:41:69:42:30:fd:
8c:b3:32:20:72:7e:fe:f9:1a:05:82:d7:cf:b0:92:
ae:ff:99:55:65:00:d1:f4:92:67:f6:e8:3f:68:2e:
a3:96:f9:ce:6c:0a:8d:14:49:31:1e:c8:32:65:1e:
75:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DC:A6:D3:D3:0A:86:67:33:26:4B:1C:C9:F0:F6:DC:72:95:0A:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E456BBE082B511EEB72580224AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.109.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:d5:56:67:9a:3b:18:97:cd:5d:a8:95:f9:96:6c:bf:0b:8f:
0b:dd:cd:8b:de:6c:cd:b6:30:72:8b:6a:3d:3e:37:70:cd:78:
89:6c:ad:48:00:14:6a:1c:1a:df:28:33:a9:8c:43:68:5f:14:
7b:97:6f:40:8f:7c:58:f5:ef:4d:9f:52:12:39:06:d7:e1:e7:
6d:29:71:73:98:03:9c:d4:ec:7d:d7:14:cd:32:0b:b3:fc:fd:
7e:94:17:12:f9:05:a1:44:4e:d3:8f:eb:1d:ed:bd:12:a0:4c:
4a:53:60:a9:eb:5b:58:d7:2e:a7:f2:7a:84:01:9e:06:4c:42:
5a:af:48:0c:80:39:84:8e:05:a9:f2:01:a6:f2:e7:e6:b2:32:
ca:b2:c1:c2:c3:89:08:81:df:7f:ee:d0:03:09:94:5b:5e:89:
52:a6:b3:e3:c5:f8:6a:70:cb:c3:9c:0e:23:de:0c:39:26:69:
da:41:5d:ee:a4:8e:36:d9:2d:a7:ab:8e:e9:1f:b1:be:86:7b:
08:e9:bb:61:53:20:61:42:1e:39:61:d4:de:85:6c:d6:8f:6f:
39:c5:f6:83:f1:30:76:cf:40:e7:8f:09:c2:27:cd:b0:95:33:
ea:52:b6:8d:76:25:40:80:8f:76:c7:75:81:4a:04:7b:5c:a2:
18:e3:97:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:41 2024 by rpki-client on console-fra.rpki-client.org