Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE9EF512F7BE11EEA7B1381D017001B1.roa
File: EE9EF512F7BE11EEA7B1381D017001B1.roa (raw, json)
Hash identifier: LxyKSrAC/5Oz+fCAJxhnRaeoyJ78coBpkBiT7UnZAbI=
Subject key identifier: 8B:02:42:F9:52:78:AE:04:7C:97:C1:84:2A:AB:28:6C:03:A5:53:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AB17
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE9EF512F7BE11EEA7B1381D017001B1.roa
Signing time: Thu 11 Apr 2024 04:49:51 +0000
ROA not before: Thu 11 Apr 2024 04:49:48 +0000
ROA not after: Sun 19 May 2024 04:49:48 +0000
asID: 138915
IP address blocks: 154.93.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43799 (0xab17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 04:49:48 2024 GMT
Not After : May 19 04:49:48 2024 GMT
Subject: CN=66176bef-cb0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8e:df:28:05:87:7a:59:6f:be:ee:33:ac:57:
1c:ab:03:4d:b8:85:5c:f5:eb:38:0a:a2:61:70:da:
03:6d:71:c8:f1:bf:f5:ef:ce:6e:e9:1d:8a:4e:5b:
bf:03:0a:f3:16:68:de:18:5b:71:bc:f9:e7:ba:c6:
31:d1:41:06:e2:fe:f1:62:4e:fd:15:44:4a:b1:af:
b1:7f:b3:ca:5e:e4:8d:d5:f8:6e:90:c4:1c:44:f4:
f5:88:4f:84:97:78:3e:18:3d:03:2c:0d:cb:ec:89:
ed:cf:c4:15:8c:14:66:73:03:15:4b:e4:cc:b0:79:
e0:e1:d2:13:3e:41:a7:77:43:d2:cd:62:dd:2b:f7:
5f:e5:b3:08:43:e5:71:3e:24:b0:a8:80:f4:70:87:
aa:a8:9d:8a:e5:48:d0:0f:f8:b0:58:66:bb:d5:c2:
e7:5e:bf:4b:e2:e2:cb:8e:33:66:af:70:cd:40:b7:
47:a9:74:2d:7e:ce:50:cc:cd:f2:21:38:b3:cf:ed:
23:91:fe:bc:fc:25:7c:36:70:4b:22:78:3b:48:cf:
04:37:9f:d2:e1:dc:01:b7:db:90:ef:0c:87:2d:ff:
39:0d:84:c9:d2:07:68:96:90:a1:3c:59:f4:e6:41:
d8:2f:60:ec:a6:c0:2f:ca:b1:08:22:73:2e:21:78:
e6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:02:42:F9:52:78:AE:04:7C:97:C1:84:2A:AB:28:6C:03:A5:53:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE9EF512F7BE11EEA7B1381D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.60.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1b:a4:5a:27:4f:dc:d6:19:27:a9:00:8c:d9:38:66:8a:19:
84:e9:65:ca:63:b4:bd:38:a5:a0:52:98:7f:d2:13:59:43:e6:
67:d2:fb:68:e4:f3:01:13:ef:c7:2e:e2:b2:c0:3d:b6:8c:cc:
f5:a2:d7:d2:5c:3e:ad:14:69:57:e0:82:10:a3:48:65:45:6a:
dc:41:9e:95:de:c8:b6:c2:c7:64:2a:7c:ce:93:9d:79:19:9e:
05:b2:ac:c8:13:e5:86:0d:a2:e2:2b:c0:f6:f4:1d:e8:5e:38:
47:25:18:2d:b4:fd:4c:4f:c1:3c:c0:d7:9c:57:70:66:0a:61:
0a:1c:47:dc:8b:94:22:44:c8:68:fd:6e:3c:e5:bc:3e:48:1d:
d6:70:e3:70:83:39:cb:0d:98:e3:0f:3b:3c:96:c6:7c:60:5d:
d6:47:85:8a:dc:4d:c3:4d:d6:9c:e4:9f:f0:a7:82:22:28:76:
33:07:0c:02:93:04:3e:25:f9:3c:3a:b7:a2:bd:3e:0c:1a:1d:
25:de:ef:b0:11:f2:d8:4b:66:7e:79:26:b2:9e:69:88:fc:1a:
0f:41:fa:8c:e1:45:15:80:ed:39:53:4b:d5:90:69:de:ec:9f:
7d:37:80:5e:48:6a:b3:ed:a8:af:5f:21:e4:be:e6:8e:66:49:
6e:d9:52:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:23 2024 by rpki-client on console-ams.rpki-client.org