Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4A2AF7AE4F611EEAFF0F14E775412E6.roa
File: E4A2AF7AE4F611EEAFF0F14E775412E6.roa (raw, json)
Hash identifier: Lhl5MrN4mxrPWkZSmVunXlQCjRyhueNtTxKn8o6zLvI=
Subject key identifier: BE:1C:90:33:38:54:B8:D7:C0:B6:FB:BD:6E:CA:46:ED:8A:76:54:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A2B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4A2AF7AE4F611EEAFF0F14E775412E6.roa
Signing time: Mon 18 Mar 2024 07:12:34 +0000
ROA not before: Mon 18 Mar 2024 07:12:31 +0000
ROA not after: Sat 20 Apr 2024 07:12:31 +0000
asID: 39600
IP address blocks: 154.90.16.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 07:12:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41649 (0xa2b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 18 07:12:31 2024 GMT
Not After : Apr 20 07:12:31 2024 GMT
Subject: CN=65f7e962-a81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:a2:38:b1:40:9d:97:59:6d:e8:51:75:cf:
3a:24:1a:c9:71:19:9a:7d:bb:25:13:0b:22:c6:5c:
e1:e0:af:13:b9:96:1b:ec:80:79:d6:dd:56:d0:80:
92:ec:0c:f9:b6:25:39:49:a4:ec:eb:37:8a:c5:1f:
15:0a:58:98:5b:cd:8d:14:5f:1a:c1:60:2b:0c:7d:
91:9b:5c:b5:e3:61:9c:f5:ab:81:b4:01:b3:65:d9:
82:bc:9a:69:ed:7c:fe:8d:08:f8:b6:85:a7:fb:50:
a5:e9:96:b9:9a:58:c1:51:83:b6:32:2b:35:4a:7f:
5d:81:3d:99:a6:8b:0b:2d:f7:ac:de:02:99:0f:b1:
93:f7:29:ad:5b:d1:6a:cd:cd:0e:40:19:c9:7f:b5:
05:7c:94:50:c3:bf:57:20:49:a5:d9:d5:f7:09:90:
ac:77:59:f8:1e:f3:91:95:8f:85:a3:c6:b9:f3:4b:
9a:f4:2a:f5:bb:b3:9f:93:3c:31:e6:1b:1e:cf:d5:
00:f8:c1:77:9e:2b:42:3b:e7:40:92:f3:41:2d:50:
d0:c7:e0:b4:11:3d:8f:2f:5f:26:6b:b1:44:b2:2f:
66:32:d4:21:0b:48:a3:2c:2d:93:5e:42:e2:c3:58:
7d:e1:73:c9:dd:7f:74:85:4a:95:ab:22:13:7f:34:
09:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1C:90:33:38:54:B8:D7:C0:B6:FB:BD:6E:CA:46:ED:8A:76:54:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4A2AF7AE4F611EEAFF0F14E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.16.0/21
Signature Algorithm: sha256WithRSAEncryption
c9:b5:a3:08:74:17:53:f5:d7:23:2b:32:52:60:66:80:82:e5:
60:4a:d0:b7:1b:c6:9a:49:13:b9:c1:30:66:46:89:e3:ba:e8:
43:02:ed:3a:5a:2d:19:af:25:a0:f2:4e:70:93:d7:c6:21:12:
8f:6f:15:fc:8f:91:97:db:37:0f:1a:b1:48:13:97:e7:2e:f4:
26:6f:2d:a8:62:1f:78:25:a8:de:38:5f:41:d9:97:84:06:bc:
fd:e1:24:1d:08:60:cf:01:27:c4:55:b5:6a:db:20:f1:08:62:
45:d7:93:0c:4d:f8:ae:a2:df:09:e1:4e:0e:19:eb:df:4e:2a:
4d:03:68:36:35:8f:37:2f:e5:f8:05:a2:f3:25:b2:35:6e:f6:
69:1c:c1:4a:d2:e5:54:f4:9b:61:20:a6:07:50:20:a2:00:66:
28:fd:ed:2f:e2:ae:a8:de:be:0c:ea:05:2d:43:a2:45:7e:4b:
0e:bd:22:17:d3:28:10:94:8c:c9:33:ea:c2:40:ac:8b:89:75:
45:13:e6:62:e2:3f:42:1c:3e:b4:cf:8d:c1:3d:e1:3f:2e:92:
23:a4:ce:c2:17:5e:49:b5:fe:07:3b:83:a8:53:08:d7:63:d0:
e5:00:4b:74:40:80:bf:c3:b5:74:eb:b7:34:95:8a:18:6d:53:
cc:e1:ac:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:38 2024 by rpki-client on console-fra.rpki-client.org