Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE5913EAE78211EEA4606C9B775412E6.roa
File: EE5913EAE78211EEA4606C9B775412E6.roa (raw, json)
Hash identifier: 4GtaNvOjTmUGa+CqVoGFg6SrvkS6eJfj7AbRXWRIP+4=
Subject key identifier: 6F:1F:9C:91:05:1B:72:42:4C:33:EA:DB:25:FD:CE:77:7B:A5:69:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A585
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE5913EAE78211EEA4606C9B775412E6.roa
Signing time: Thu 21 Mar 2024 13:00:03 +0000
ROA not before: Thu 21 Mar 2024 12:59:59 +0000
ROA not after: Tue 23 Apr 2024 12:59:59 +0000
asID: 44559
IP address blocks: 154.210.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42373 (0xa585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 12:59:59 2024 GMT
Not After : Apr 23 12:59:59 2024 GMT
Subject: CN=65fc2f52-e28e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:07:a1:ac:06:84:02:00:d0:4a:cf:b6:eb:
0d:e4:c8:9a:a4:74:99:f9:6d:7c:a3:fd:9f:0e:45:
6f:a5:ac:8c:88:57:5b:96:97:a8:fa:6c:b0:79:7b:
e3:7d:62:33:ec:a9:12:8b:27:db:d2:24:9e:6a:14:
24:25:19:dd:b5:cf:c7:b1:97:ac:e3:f9:d9:cb:71:
ac:be:be:d1:04:f5:9e:05:43:23:0e:2c:4b:0c:31:
b8:8d:02:e8:22:70:df:02:ad:54:23:3d:2b:7d:08:
e2:ca:57:dd:9a:e0:7f:49:38:e6:d9:5d:08:4f:84:
65:7d:8c:ed:c2:e3:2b:56:49:88:85:63:9c:af:76:
24:a7:5c:3f:70:08:31:f3:51:71:5b:9d:1f:59:bc:
71:8f:70:e8:cc:db:e8:c8:51:2d:31:9f:68:e8:8e:
1b:95:e5:60:b6:50:6f:43:37:14:5a:c4:92:be:ea:
b8:ff:d1:20:4d:1e:fa:c5:2f:f2:a1:73:4c:3f:eb:
19:53:ed:10:78:39:2e:61:e4:9f:9f:89:01:b6:12:
ba:b7:b8:2f:1f:b0:b8:80:73:48:92:eb:15:83:de:
d3:8b:80:6e:48:f6:48:a3:25:3b:01:fa:91:23:36:
7b:ac:88:92:fd:9b:6d:b3:5d:18:e9:8a:b7:8f:c4:
ef:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1F:9C:91:05:1B:72:42:4C:33:EA:DB:25:FD:CE:77:7B:A5:69:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE5913EAE78211EEA4606C9B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.90.0/24
Signature Algorithm: sha256WithRSAEncryption
09:e7:c8:d1:51:aa:1b:ef:6e:bc:18:0c:4e:b6:a7:80:db:37:
77:df:b3:73:e3:7a:c7:40:65:85:9d:4c:e3:7a:7c:1e:79:67:
3f:d6:74:21:90:cd:c4:20:3d:85:8b:3f:82:77:b9:2c:46:b3:
ae:90:69:04:9a:e6:4e:74:b1:f8:55:0e:5d:70:f1:a0:05:26:
2b:99:3b:a0:41:23:03:81:3b:1c:43:12:43:a0:ca:92:cf:cd:
fa:2f:54:be:49:91:d5:2e:ae:93:20:f8:5f:07:f8:3f:08:15:
bf:16:c2:4d:16:8b:fc:ac:10:45:e1:54:45:ec:1c:42:7e:bb:
84:9a:ad:e1:90:ed:63:59:83:4c:1c:6c:68:19:ab:e3:9d:5c:
d0:67:8f:8d:9d:44:12:ee:32:2f:6b:cb:94:ad:5d:40:23:64:
9b:dd:1d:a9:92:5f:71:d9:c9:9b:ad:cc:49:0b:a7:1f:e1:ec:
b9:7b:40:50:0a:04:1f:ec:7d:83:20:b4:4e:5c:78:d0:8f:e3:
08:9e:91:06:f1:25:45:1a:96:7a:20:4c:2a:66:60:2c:19:e7:
ab:1b:9a:c3:c5:8d:e3:d3:85:ad:d5:93:8d:07:30:05:5a:00:
87:05:72:67:30:33:bf:8a:db:c8:33:50:da:25:18:cc:60:cc:
90:e2:9e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 04:04:26 2024 by rpki-client on console-ams.rpki-client.org