Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBF3EF80FAE711EEBD96705C017001B1.roa
File: EBF3EF80FAE711EEBD96705C017001B1.roa (raw, json)
Hash identifier: qwdAYD9w48AXw1gFIOUBnHk3vnjw/rAJfZqoEviuHqs=
Subject key identifier: 1A:8A:D8:5E:55:67:81:40:0A:2B:7D:6F:75:58:E2:B1:A4:99:E1:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC88
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBF3EF80FAE711EEBD96705C017001B1.roa
Signing time: Mon 15 Apr 2024 05:20:50 +0000
ROA not before: Mon 15 Apr 2024 05:20:46 +0000
ROA not after: Thu 09 May 2024 05:20:46 +0000
asID: 141883
IP address blocks: 154.91.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44168 (0xac88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:20:46 2024 GMT
Not After : May 9 05:20:46 2024 GMT
Subject: CN=661cb932-4e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:aa:d6:17:a6:99:b0:97:09:be:ef:d6:a7:4b:
ec:8f:90:2c:ff:86:65:49:22:43:de:94:0e:e1:b1:
cf:1e:31:dc:05:49:64:63:1a:7c:58:98:dc:5c:23:
bc:ad:c8:66:19:30:41:f0:99:09:d6:2b:7e:a2:9c:
1c:56:3e:7d:18:1b:ed:54:f0:72:4b:7c:54:95:d7:
58:29:c0:7e:df:3c:af:d7:67:dc:89:9e:5b:f5:87:
f6:4c:25:a2:cf:5a:00:d0:37:35:7e:cd:02:26:ba:
f6:75:2a:51:40:a1:b1:52:fc:26:99:6c:8f:26:f3:
1a:e9:c3:10:f3:52:f0:fe:95:da:3e:2b:af:f2:2a:
65:0e:76:8e:79:e0:7f:1c:6d:ef:b9:5c:63:57:43:
2d:77:91:c3:4c:e9:ff:5a:31:c6:7b:19:9e:1e:c2:
79:a6:9e:be:09:4b:3b:19:3c:85:de:ec:e1:23:20:
1a:aa:aa:ac:47:e0:80:31:36:4c:c4:12:63:e9:62:
9d:d5:2b:9b:fc:38:37:61:46:e9:bf:e1:94:9e:37:
df:d3:f7:78:1c:7f:08:1a:fe:27:6c:4a:ec:e8:44:
7c:6e:cb:c1:84:04:00:1b:7f:82:22:b4:cc:b0:1c:
4b:2f:02:2d:07:e7:07:5e:cc:49:47:8f:4d:a8:69:
a2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:8A:D8:5E:55:67:81:40:0A:2B:7D:6F:75:58:E2:B1:A4:99:E1:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBF3EF80FAE711EEBD96705C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.254.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:02:ca:b5:cc:a5:3f:62:ad:aa:c2:29:ed:49:f9:57:1a:16:
48:b3:65:2e:2e:99:56:56:53:41:7d:e4:50:95:2d:53:a6:67:
f1:fc:2a:4a:ee:3d:c2:17:e3:04:bf:9c:6b:12:01:fa:27:8a:
8a:74:1a:4d:f7:86:a9:29:57:f6:ac:ae:ef:da:71:16:21:b0:
37:3c:aa:54:62:75:12:8f:31:fa:a3:f7:96:56:89:5c:eb:04:
9c:06:44:d2:02:9d:d6:23:48:ae:47:81:a9:18:c5:03:25:e6:
fe:6a:d9:d8:a0:87:70:b2:7b:e5:b1:26:6c:5a:39:22:49:a5:
48:44:cc:c5:e3:77:15:b8:dc:fc:19:49:e8:f4:ef:53:05:a3:
4d:4b:e0:99:4c:b4:b0:85:3a:59:2b:bf:e5:2c:6c:0e:88:9f:
2c:0d:cd:4e:2a:15:6f:83:f5:56:66:1e:75:4b:0e:76:30:1a:
70:24:8a:36:51:a7:2f:f2:e1:16:18:f5:7a:45:3b:0a:7f:1f:
0e:49:9c:f2:01:d5:d4:5e:14:5e:89:b9:f0:67:0a:60:3a:06:
f7:c5:4e:06:10:65:02:e2:f1:18:bd:31:ee:0d:4b:cb:b6:14:
34:f1:9f:55:59:da:7b:42:e6:39:f5:1c:79:df:d2:d8:bd:cc:
4e:69:f3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:23 2024 by rpki-client on console-ams.rpki-client.org