Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E86ADA26E1CA11EEA4100B5A775412E6.roa
File: E86ADA26E1CA11EEA4100B5A775412E6.roa (raw, json)
Hash identifier: 67PpKql7Yo0oVTxCF9kv3YxuCXET1yTmc8fMYtVS6qw=
Subject key identifier: 22:23:5C:02:35:99:7F:42:76:EF:98:8D:1C:F8:0D:CA:2B:79:5F:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A116
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E86ADA26E1CA11EEA4100B5A775412E6.roa
Signing time: Thu 14 Mar 2024 06:20:09 +0000
ROA not before: Thu 14 Mar 2024 06:20:06 +0000
ROA not after: Fri 24 May 2024 06:20:06 +0000
asID: 135377
IP address blocks: 154.197.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41238 (0xa116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 14 06:20:06 2024 GMT
Not After : May 24 06:20:06 2024 GMT
Subject: CN=65f29719-d463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bc:6a:7d:32:f2:10:5c:a5:79:06:99:a1:e0:
67:fe:6a:99:0d:f5:16:b1:7e:cf:54:c7:1d:c9:6f:
73:29:ca:66:3f:d2:a7:35:2b:03:76:a4:bb:ae:53:
ff:d0:ff:4e:d7:8d:d3:8e:30:a0:c3:06:b7:9f:07:
e1:b8:00:e9:60:5a:b3:6d:8e:b4:5a:fd:71:9b:78:
76:df:55:31:8a:82:69:ff:fb:47:a2:33:ed:64:bd:
3c:ba:15:5b:2e:f2:c8:5f:e4:57:0e:4a:e1:13:db:
5d:ca:2c:11:6a:31:49:91:ca:8f:48:fa:82:56:0d:
e4:59:0a:bf:c7:5b:60:65:c7:78:1b:e2:8a:b1:59:
9c:d9:c3:d6:5d:26:05:04:ca:22:a7:50:5c:56:a6:
e0:d8:32:e1:5b:9b:6a:37:c2:9b:c5:65:54:0a:db:
c2:17:ca:a1:f3:1c:68:f7:ea:a1:06:b4:ce:92:91:
0b:39:eb:6f:d8:91:2d:bf:e5:e8:93:0c:6a:3e:86:
21:ab:34:a4:7c:2a:aa:91:8f:ef:30:96:da:66:71:
54:24:60:06:7f:b4:39:cc:07:25:15:d8:77:1e:eb:
66:37:e7:3a:64:86:81:3f:5f:76:29:74:cd:a9:ee:
b1:22:94:33:47:57:fb:9f:04:7b:b9:ec:d9:79:b0:
eb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:23:5C:02:35:99:7F:42:76:EF:98:8D:1C:F8:0D:CA:2B:79:5F:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E86ADA26E1CA11EEA4100B5A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.56.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:38:31:ee:e5:de:8a:88:98:b2:cb:61:a9:64:fb:6e:6f:ce:
bc:ff:48:cf:97:da:2a:e6:73:ad:5c:65:18:87:cc:09:2a:35:
24:dd:a6:b3:63:ee:37:b4:06:cb:36:e6:08:0a:f2:52:49:ad:
e3:d6:88:4c:69:85:bb:4a:1a:e8:57:e3:5b:f1:51:4e:96:a5:
65:05:44:2e:bf:a7:90:09:14:4c:73:1d:48:84:c0:d1:16:f0:
41:d5:9c:ea:b6:dd:f1:5f:65:a4:6d:66:07:cc:27:e7:7d:4f:
e2:fc:d6:5e:5d:5c:0b:96:24:ff:11:c3:16:03:ef:e5:87:c2:
76:30:ea:79:02:66:6a:b0:cf:0d:d3:8d:97:49:4c:00:ab:7c:
a1:9e:a5:78:8e:60:03:11:57:05:85:8e:d7:b9:96:62:8d:27:
f7:6c:45:bb:01:36:f3:a1:9e:de:e8:a3:dd:4e:de:fb:96:53:
cb:64:56:68:d5:8d:2c:1e:25:52:13:e3:7e:58:65:a9:d7:04:
12:f0:66:eb:1e:f8:38:2c:d8:09:8a:25:bc:ba:72:b6:af:9b:
f2:c5:09:70:25:8d:ca:d1:c4:31:54:7f:3c:3d:32:af:a8:6e:
45:78:8a:ac:5f:6a:1a:1c:ca:a9:97:b9:f7:37:e1:cc:04:ee:
2f:a5:d4:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:23 2024 by rpki-client on console-ams.rpki-client.org