Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03121A0469DB11EF9CAAA38B762E951A.roa
File: 03121A0469DB11EF9CAAA38B762E951A.roa (raw, json)
Hash identifier: AkFQ6/F3c/jnY14XFOMhMD9BiBb1IVaAxONnOU38+GI=
Subject key identifier: 89:C4:57:7E:0C:56:61:99:92:25:8B:DD:2C:26:E4:2D:46:5E:E3:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E954
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03121A0469DB11EF9CAAA38B762E951A.roa
Signing time: Tue 03 Sep 2024 09:58:04 +0000
ROA not before: Tue 03 Sep 2024 09:58:01 +0000
ROA not after: Sun 30 Mar 2025 09:58:01 +0000
asID: 21859
IP address blocks: 154.89.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59732 (0xe954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 3 09:58:01 2024 GMT
Not After : Mar 30 09:58:01 2025 GMT
Subject: CN=66d6ddac-e7e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ac:3f:fb:d5:79:0a:d2:56:2e:e9:62:ed:d0:
8e:c9:93:11:15:24:9d:ca:1b:fb:12:97:71:49:87:
ad:22:f7:43:e7:ae:8d:33:9c:b4:91:f2:81:3c:e6:
42:68:35:3d:14:68:2e:a9:c2:6f:f6:08:97:0e:92:
34:b0:f3:c6:2e:ed:44:c4:7e:20:a6:68:37:6a:2c:
b5:aa:ea:9d:43:3a:54:ff:ec:35:c1:62:47:68:af:
5e:67:5b:50:0c:b1:74:a4:31:29:31:c3:7d:18:13:
c7:42:9b:36:82:61:a2:0f:be:bc:4b:62:46:cd:6f:
72:08:a5:ca:7e:e5:26:eb:30:bc:ea:0e:74:8c:78:
d8:72:8e:b0:09:26:58:51:d7:02:65:e2:84:fa:ab:
ec:7b:8e:77:a0:ab:73:30:3b:8a:98:7a:ba:6b:93:
e3:6b:6a:72:38:93:07:8a:d6:2a:b2:1c:da:a2:3c:
fa:52:12:26:6b:a7:ae:33:8b:cb:ef:c7:ca:e9:79:
0c:83:03:10:95:b4:9e:51:44:3b:ea:c1:ad:6f:74:
6d:96:f7:4f:7c:8c:0a:be:f1:ef:cf:8a:55:36:8d:
cf:05:f6:2e:4b:be:12:ef:e3:13:d8:b3:7a:fb:d3:
f7:0e:f1:b3:8f:e8:d0:b9:e4:36:c7:00:f6:8b:8a:
e1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C4:57:7E:0C:56:61:99:92:25:8B:DD:2C:26:E4:2D:46:5E:E3:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03121A0469DB11EF9CAAA38B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.5.0/24
Signature Algorithm: sha256WithRSAEncryption
50:71:8a:fd:a0:dd:ba:b7:74:81:f7:a6:1d:06:99:08:6d:e1:
2f:28:5d:c9:d1:c6:e0:33:72:7b:69:7a:aa:c2:4a:42:44:1c:
82:7f:48:07:e4:9f:88:a1:1d:cd:91:0c:72:15:f8:34:4c:af:
e7:99:a5:31:fa:0d:8b:23:a7:ed:05:8c:9e:de:56:4d:b1:53:
0d:e7:6b:c1:b5:5c:d3:dd:df:0c:0a:a9:33:b4:d6:b1:8d:8c:
d7:dd:23:03:83:3b:33:31:38:73:e9:29:36:7d:dc:c7:60:18:
b2:2d:7d:fd:6c:5c:92:85:ca:cc:3a:02:8b:4c:34:6d:71:fa:
e2:69:6b:da:cb:2e:38:69:3d:64:26:c3:d3:43:cd:7d:25:91:
d0:44:7f:0e:c6:87:8f:67:b1:5f:93:09:52:39:7a:da:99:e0:
4d:d3:56:97:94:a8:ae:34:96:21:01:78:c4:dc:66:24:0e:94:
e7:82:1a:ab:ff:ea:9c:b2:34:7b:c5:f5:b6:03:49:61:c3:d7:
5c:be:83:d2:30:a4:4a:52:1e:e2:e5:a5:39:97:f0:81:e0:fb:
b6:b8:83:11:8b:f7:1c:74:75:77:ff:74:5a:ba:b6:64:9c:1a:
09:0a:06:17:8d:ca:37:d3:5c:dd:0d:b3:14:1d:f3:fc:f6:c3:
4e:6f:e9:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:35 2024 by rpki-client on console-fra.rpki-client.org