Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/3C767B72D58F11EE82B7017B775412E6.roa
File: 3C767B72D58F11EE82B7017B775412E6.roa (raw, json)
Hash identifier: znTplPDJDP2GRQbe+a3ddTqszpGpH7kL0+SOMcpCmpE=
Subject key identifier: AC:77:45:C8:D7:B5:47:AA:DA:83:C4:F5:6D:08:F8:AA:33:78:2A:06
Certificate issuer: /CN=F368B07FAF/serialNumber=78825B2BC908A40FEF62B26482D61A98575FCBD3
Certificate serial: 095C
Authority key identifier: 78:82:5B:2B:C9:08:A4:0F:EF:62:B2:64:82:D6:1A:98:57:5F:CB:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/3C767B72D58F11EE82B7017B775412E6.roa
Signing time: Tue 27 Feb 2024 16:42:47 +0000
ROA not before: Tue 27 Feb 2024 16:42:43 +0000
ROA not after: Sun 01 Mar 2026 16:42:43 +0000
asID: 37314
IP address blocks: 154.119.64.0/20 maxlen: 20
154.119.64.0/24 maxlen: 24
154.119.66.0/24 maxlen: 24
154.119.76.0/24 maxlen: 24
154.119.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.mft
rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2396 (0x95c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368B07FAF/serialNumber=78825B2BC908A40FEF62B26482D61A98575FCBD3
Validity
Not Before: Feb 27 16:42:43 2024 GMT
Not After : Mar 1 16:42:43 2026 GMT
Subject: CN=65de1107-ac6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:15:96:64:c4:2d:20:a0:d3:20:49:bc:e1:87:
09:47:6f:b8:ba:b5:d4:c5:55:a6:f9:90:52:9a:a2:
c1:53:36:86:d5:8d:72:7a:86:e0:21:4c:17:c3:00:
97:8e:39:34:27:b5:93:1e:72:bc:ee:9d:05:00:7e:
c5:2b:1a:67:b9:d1:c3:1c:31:bc:a9:f7:ce:2f:37:
ca:55:52:6e:60:5f:b2:7c:5f:88:b8:20:83:0b:22:
57:d1:3d:98:46:55:e0:99:20:56:4f:ce:d5:f2:ee:
61:4c:ff:b9:e0:63:0c:0b:4c:88:ac:fa:6b:36:ed:
e3:2c:28:5d:f3:6e:7e:ad:b7:4f:f8:a9:c9:c3:23:
3e:4c:36:fe:6c:08:ff:82:89:bf:13:c8:23:33:00:
0f:fc:2a:52:68:6e:00:08:ef:b5:c3:62:e2:da:b5:
03:04:46:6c:67:17:a8:d9:70:32:46:32:26:85:6a:
01:98:18:43:11:0a:67:a1:de:5b:9b:6c:d3:45:2c:
4a:31:86:6c:88:fa:d0:f2:43:ed:53:8e:4d:ee:12:
00:6d:e0:3a:72:cc:68:c8:35:ce:25:c6:ed:b1:85:
9d:16:ae:00:26:2e:8e:f5:1f:9c:9d:ba:a6:d4:e8:
d4:37:06:da:b7:9e:37:8b:18:3b:bb:35:bb:5f:46:
6c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:77:45:C8:D7:B5:47:AA:DA:83:C4:F5:6D:08:F8:AA:33:78:2A:06
X509v3 Authority Key Identifier:
keyid:78:82:5B:2B:C9:08:A4:0F:EF:62:B2:64:82:D6:1A:98:57:5F:CB:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/3C767B72D58F11EE82B7017B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.119.64.0/20
Signature Algorithm: sha256WithRSAEncryption
65:05:66:e5:75:e6:db:da:df:a9:d7:8f:1a:c7:0e:e1:a1:12:
b7:43:b5:d2:ae:74:10:30:41:40:e6:a7:76:dc:fe:a2:40:7e:
f0:0f:b9:70:ca:a2:c4:7f:7b:a4:45:62:08:ef:3e:6e:c3:ca:
15:b4:70:30:c1:e9:22:37:e5:7f:0e:f9:4f:7b:20:28:77:10:
c9:f1:7a:71:1f:3c:53:7c:30:a7:da:d9:43:48:58:35:35:69:
44:d8:10:a8:64:f8:89:27:28:e3:89:55:21:91:8d:b0:29:4a:
e6:c0:da:5b:b6:b4:ee:02:a0:ae:c4:08:ff:60:91:90:98:b7:
a4:a1:0d:f5:b9:3a:8b:fa:c1:65:a4:17:b8:a2:17:1b:14:14:
0f:68:7a:f9:bc:80:3c:ea:8d:f3:a4:25:e7:0c:91:09:83:fe:
58:53:b3:86:35:95:d4:8e:a1:e7:d6:80:86:8e:e5:7d:42:bb:
c8:2e:74:6c:6f:50:35:db:8e:aa:f2:5e:64:2e:56:f1:5b:cb:
a2:2c:b0:69:cd:9d:cd:36:a5:7b:ee:7b:6e:2f:7b:b5:28:e1:
ff:6b:ac:e7:0a:03:1d:9a:44:9b:a5:86:10:b6:8f:25:cc:af:
26:bb:db:77:c2:d9:7a:da:bd:12:9b:40:93:ae:5c:b3:ba:93:
1b:75:47:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org