Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE938D5E385411EE8954051F4AD9E6FC.roa
File: FE938D5E385411EE8954051F4AD9E6FC.roa (raw, json)
Hash identifier: Uf/sZ360cg7adaz6ZI6O8zHSBoGEqYMWtjamcFn/AYg=
Subject key identifier: FC:AD:72:F2:37:9E:30:3D:E5:9F:A0:38:94:3A:CE:76:27:A2:B0:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3608
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE938D5E385411EE8954051F4AD9E6FC.roa
Signing time: Fri 11 Aug 2023 14:40:20 +0000
ROA not before: Fri 11 Aug 2023 14:40:16 +0000
ROA not after: Thu 13 Jun 2024 14:40:16 +0000
asID: 139811
IP address blocks: 154.91.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13832 (0x3608)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 11 14:40:16 2023 GMT
Not After : Jun 13 14:40:16 2024 GMT
Subject: CN=64d64853-9e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4d:32:d1:65:79:91:5f:8e:d7:f1:87:ab:27:
de:03:fb:69:26:92:e3:6b:82:8d:b5:ee:84:5c:be:
a5:d4:63:77:6c:f6:09:ab:10:13:ca:d5:24:00:c7:
3f:03:b2:37:f9:37:66:3c:f0:76:e1:6e:d0:04:e6:
6c:4d:62:06:27:4c:ca:9a:82:20:57:53:bd:7e:ba:
b0:6b:65:80:70:7a:2c:d5:98:37:c5:0a:d4:e6:cd:
a5:a3:18:aa:3d:3a:16:ea:c2:b6:f5:40:fa:a3:2a:
24:90:3e:7a:f3:ba:72:67:b0:42:06:e0:66:aa:52:
09:67:ea:b8:2f:75:0b:f9:db:00:2f:f8:d2:51:b8:
90:85:76:72:07:92:b6:74:50:1a:0d:0f:5a:7e:ed:
ba:84:3e:ea:c8:8e:b1:3e:a9:21:ba:e9:30:73:35:
d4:b7:67:ab:21:c6:bb:22:7e:aa:62:66:91:05:69:
16:e1:2a:df:be:77:4c:4e:f9:da:12:7a:11:d5:42:
da:f1:c6:78:78:0c:36:c8:0e:51:38:e3:d0:65:8c:
20:10:04:6b:d2:6a:5b:91:e1:2a:04:23:12:4c:c6:
17:27:3e:1b:b6:d2:e3:ab:9b:50:b9:a4:83:b9:e2:
a3:b1:2a:b2:da:34:44:f4:d6:34:7b:71:0f:30:4c:
a5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AD:72:F2:37:9E:30:3D:E5:9F:A0:38:94:3A:CE:76:27:A2:B0:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE938D5E385411EE8954051F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.39.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:ad:d2:06:c7:9d:7c:5c:e2:f0:be:77:a3:f5:ef:fa:d8:18:
aa:bb:1e:00:7f:7a:ff:dd:67:54:17:bc:f7:1e:1c:3f:86:e7:
c4:67:81:d0:b0:5c:0c:e6:89:8c:65:f8:0e:d9:22:7e:90:da:
e0:f0:c1:9b:d5:66:83:7b:50:ec:ac:ad:69:e9:af:be:ed:0c:
7b:c4:00:1b:5e:30:a9:11:15:5f:a3:76:fe:9d:87:cd:ea:8b:
09:8c:ab:1f:4d:8b:32:db:39:20:a8:db:ae:95:8a:f0:c4:e2:
b2:56:9a:04:db:25:d0:5e:c6:2c:44:93:7c:f6:dd:c4:66:38:
59:26:ee:9f:d2:b9:dc:86:7f:4a:fc:55:b5:5d:a9:e4:0c:fd:
7d:ff:27:c4:32:49:9f:e4:9c:72:a8:cc:1f:d6:20:e6:7b:f9:
19:73:90:05:ee:2a:db:e7:65:c3:d3:24:31:d5:d7:bd:8e:1a:
5d:f6:a5:86:cd:9b:dd:65:81:ac:be:e3:54:ee:72:3b:87:93:
ff:56:8a:cf:30:c1:91:a0:14:7e:03:fe:a2:f3:83:b3:d2:25:
ac:84:09:ed:73:f9:d8:27:42:64:fb:05:5b:a4:f3:7e:85:ec:
b5:e5:ad:54:d0:ff:bc:fe:69:e8:4c:91:a9:8b:27:30:e2:24:
15:f8:db:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:36:24 2024 by rpki-client on console-ams.rpki-client.org