Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/08F1D7D0C99E11EEAE79B16A775412E6.roa
File: 08F1D7D0C99E11EEAE79B16A775412E6.roa (raw, json)
Hash identifier: WiJwwLdNdFaMsxNqsHzgy8OEyHtwMAs7d1aXr8Hkrgc=
Subject key identifier: 44:EB:93:C0:43:28:C0:9B:CF:9B:82:24:AE:D9:1F:7F:39:8D:24:D5
Certificate issuer: /CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Certificate serial: 058F
Authority key identifier: 3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/08F1D7D0C99E11EEAE79B16A775412E6.roa
Signing time: Mon 12 Feb 2024 11:58:29 +0000
ROA not before: Mon 12 Feb 2024 11:58:25 +0000
ROA not after: Wed 12 Feb 2048 11:58:25 +0000
asID: 37098
IP address blocks: 154.66.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1423 (0x58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B33A4AF/serialNumber=3E0CE63D60455BD65BAA3154BE81206C67E69D44
Validity
Not Before: Feb 12 11:58:25 2024 GMT
Not After : Feb 12 11:58:25 2048 GMT
Subject: CN=65ca07e5-9793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fe:4b:cf:81:9e:17:5e:69:ef:81:24:a0:a9:
ab:0a:53:db:ea:0d:ee:64:d6:88:9e:08:67:3c:3a:
c5:18:34:ca:65:11:16:63:35:f2:c3:66:e1:0f:d8:
58:48:61:58:c0:d4:cb:77:a2:bd:2b:ae:4b:8d:4d:
2c:e8:ed:8c:cf:ad:ba:df:c9:8d:0c:fb:07:42:6d:
2a:18:0e:d3:0c:00:02:ac:7f:92:45:25:af:98:6a:
6f:2b:29:2a:cc:7d:19:ae:29:9e:d8:98:f0:a2:93:
c9:56:24:21:8a:b2:6d:a3:80:b5:5a:0d:b6:1d:6e:
21:4d:20:e0:71:13:9b:be:e2:6e:6f:50:ba:50:46:
1b:7f:9e:23:8a:1f:98:77:36:57:95:5d:04:56:a3:
83:a6:cf:bb:f1:2b:d3:d7:2b:87:88:5a:d6:7e:86:
b8:7c:b4:a0:0a:18:da:bf:42:a3:48:58:93:71:68:
f4:10:04:0c:64:ca:63:00:48:bb:37:45:2b:5a:85:
ae:a5:c5:53:f8:7b:8f:1c:af:8f:00:d8:06:3e:95:
37:e9:63:ba:36:0e:41:e7:ee:8b:96:de:a9:e5:d7:
ee:01:ad:2a:25:f3:3a:df:93:18:6b:21:66:33:82:
18:cc:a7:3d:11:9a:e4:52:b6:b4:e8:ed:b6:49:4e:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:EB:93:C0:43:28:C0:9B:CF:9B:82:24:AE:D9:1F:7F:39:8D:24:D5
X509v3 Authority Key Identifier:
keyid:3E:0C:E6:3D:60:45:5B:D6:5B:AA:31:54:BE:81:20:6C:67:E6:9D:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PgzmPWBFW9ZbqjFUvoEgbGfmnUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B33A4/2E743782A1AC11EA9FEBC374F8AEA228/08F1D7D0C99E11EEAE79B16A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.66.125.0/24
Signature Algorithm: sha256WithRSAEncryption
22:4d:f2:08:75:7b:d1:b6:dd:ba:dc:a6:cf:54:51:8c:aa:ca:
88:38:e7:50:8b:33:bf:91:6c:88:de:ce:52:54:af:17:6e:6b:
4d:9d:16:92:08:89:58:2a:24:4e:2c:1c:76:72:87:28:61:ec:
ba:71:cc:e0:3b:d7:c1:ed:04:42:62:b2:d7:92:be:be:4f:cc:
67:f0:f8:35:c0:c8:2c:e3:0f:2c:fb:f3:68:86:7c:7e:ce:e7:
3a:4f:9c:3f:c9:29:b4:49:04:a4:74:a4:d9:fd:da:f6:82:5b:
a4:db:4c:6e:fa:80:b0:db:10:fb:4a:82:6f:84:cd:e0:9f:43:
f4:a5:0f:51:2a:55:64:f7:06:90:8e:e4:81:25:a5:6c:09:9d:
10:1a:0e:84:7a:45:43:1e:9e:b3:75:66:da:a8:af:2b:cc:42:
98:e3:2a:b9:47:68:90:f1:48:9d:18:91:1b:f2:f9:03:1c:12:
f2:9b:98:4d:25:69:34:a9:01:99:d8:cc:8e:21:43:e8:a8:ef:
c5:56:6c:5f:89:66:3a:6b:b2:6b:e5:22:f7:18:20:e3:9e:d5:
7f:89:c8:39:dd:d2:55:e4:fc:75:69:8f:c8:8e:3a:3e:ef:15:
58:14:4b:4d:fb:8a:55:73:c2:e2:c9:3f:a7:63:2f:e2:53:99:
6a:a2:7b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 03:40:49 2024 by rpki-client on console-ams.rpki-client.org