Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/004730E2561311EF9E8E16B7762E951A.roa
File: 004730E2561311EF9E8E16B7762E951A.roa (raw, json)
Hash identifier: 7fZcyyBUtsGbVt/83CLMlSLdd+98wSHTbsjfq96deAQ=
Subject key identifier: 31:B9:74:4F:23:EC:20:4B:DE:26:2C:2E:0D:A5:5E:17:D3:50:D9:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: DD9A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/004730E2561311EF9E8E16B7762E951A.roa
Signing time: Fri 09 Aug 2024 05:48:28 +0000
ROA not before: Fri 09 Aug 2024 05:48:23 +0000
ROA not after: Thu 31 Dec 2026 05:48:23 +0000
asID: 17561
IP address blocks: 154.88.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56730 (0xdd9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 9 05:48:23 2024 GMT
Not After : Dec 31 05:48:23 2026 GMT
Subject: CN=66b5adac-8cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e1:19:d5:74:ee:44:9f:40:f6:dd:b3:0d:dc:
20:44:44:3b:17:3c:b6:f9:4e:76:d6:c0:33:94:6a:
41:b4:dc:a7:e8:7f:e0:98:c0:2f:5b:23:ef:1e:b0:
9d:10:28:e2:49:e1:ab:64:3b:3f:72:71:a0:ff:fc:
c2:d8:50:8d:0d:17:91:5a:ad:cb:72:38:2b:e3:ab:
eb:81:09:f3:e5:fb:dd:e1:64:21:c8:e6:8c:59:0d:
69:c9:33:5d:ce:55:7a:45:8c:e8:4e:52:bf:c5:98:
fc:16:d5:84:71:33:62:5e:3f:32:f7:cf:1a:2c:55:
71:b3:f1:14:72:10:ce:a4:1f:68:f2:ae:ef:3e:f1:
e1:54:95:f2:45:b3:7a:81:20:09:d2:07:5e:a6:28:
5a:2f:09:2d:50:03:e9:48:2b:3d:08:32:48:af:8f:
18:e1:ee:a3:3b:1c:ad:4f:08:57:5c:4a:cf:f2:04:
25:42:9c:ef:19:26:d1:60:18:55:9b:01:29:01:89:
7c:78:ec:6f:70:ff:33:e1:01:cd:7c:79:c3:f1:8f:
d0:7f:fe:e5:29:d1:7f:29:8d:5f:3e:b1:44:f5:79:
aa:61:93:79:a5:bb:cf:8b:c9:9e:3d:f5:65:28:8a:
cd:e7:40:2e:9b:0e:f7:e3:27:20:bb:b9:20:ba:bf:
b5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B9:74:4F:23:EC:20:4B:DE:26:2C:2E:0D:A5:5E:17:D3:50:D9:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/004730E2561311EF9E8E16B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.8.0/24
Signature Algorithm: sha256WithRSAEncryption
23:d3:fb:4b:ab:94:75:c4:8d:9d:87:e8:4b:7d:0d:5d:1c:cf:
58:90:f8:ac:06:8d:d1:86:76:09:ae:96:7f:0e:67:6c:29:9c:
1f:27:d2:ed:44:c4:ad:82:e6:04:c9:9d:38:44:de:29:c8:87:
4d:83:29:80:47:08:7d:5c:58:df:2f:9b:54:87:ff:c6:a3:c7:
dc:17:5f:b1:a5:a7:81:1a:a6:e8:6a:3e:0c:03:8f:f9:7a:ca:
f7:8f:c1:c5:cf:7a:e2:6f:51:a9:64:7c:3e:31:2d:8e:7b:19:
0c:ab:3e:31:91:28:8e:e5:bd:90:54:2c:8a:ca:5f:ee:49:d5:
09:f5:4d:a3:b8:28:37:4c:77:8f:84:6c:db:1e:6d:f7:af:de:
e3:c7:fe:b7:f0:e5:4b:60:00:1e:c9:8b:31:5d:a6:98:fe:f4:
8d:69:5e:a5:16:62:9e:ff:2d:44:31:59:72:78:06:39:45:9c:
d6:98:71:94:08:91:27:4b:1c:5d:e2:d9:2e:ef:1b:f2:50:2f:
e5:cb:f4:89:21:08:6d:a7:2b:f5:e8:87:4c:62:f1:7d:03:30:
78:9d:84:a9:34:76:bb:4a:61:e7:1a:66:f7:7f:d7:dd:60:db:
c0:cb:ca:8f:25:ee:cf:a8:6d:e7:61:10:b5:70:68:de:0f:9d:
35:1d:a2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org