Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/032044FEA8F011EFB527DD5A762E951A.roa
File: 032044FEA8F011EFB527DD5A762E951A.roa (raw, json)
Hash identifier: AxsbKd9iD/EBmpr7kzrF+vFnhBoFJe8dXqvHzte6zD4=
Subject key identifier: 1A:5A:51:DC:DF:85:60:CB:65:4A:AD:03:9C:07:29:8E:5C:3D:CE:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011147
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/032044FEA8F011EFB527DD5A762E951A.roa
Signing time: Fri 22 Nov 2024 16:37:07 +0000
ROA not before: Fri 22 Nov 2024 16:37:03 +0000
ROA not after: Tue 03 Dec 2024 16:37:03 +0000
asID: 62240
IP address blocks: 154.195.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69959 (0x11147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:37:03 2024 GMT
Not After : Dec 3 16:37:03 2024 GMT
Subject: CN=6740b333-881a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ca:a0:53:ee:e8:98:f9:ed:98:42:1e:2c:6b:
4d:4b:c3:f0:b7:55:d9:1c:12:ae:31:e3:9c:b5:5b:
64:95:12:99:e3:a1:e5:49:38:7b:c3:71:ed:fd:0b:
ef:a1:fb:b4:f8:7e:ce:d8:4e:69:b0:58:ca:88:d5:
d2:89:ee:8d:45:fc:21:2b:dc:0e:49:28:ae:3e:22:
90:42:b5:7d:21:4d:87:21:3d:bd:2b:c4:39:18:3c:
9a:70:71:e2:bc:73:be:ec:e5:9e:d8:64:b8:de:d6:
aa:28:f7:7a:90:16:2a:9a:9f:a1:87:47:86:56:9b:
48:27:7f:40:47:f9:1e:f2:9a:92:df:62:95:f0:92:
e5:c6:1e:df:12:30:7b:f8:e0:ad:1a:fc:ba:dd:66:
2f:58:21:84:a5:c8:36:56:c1:9e:99:19:dc:f2:f5:
5c:51:dc:22:2e:73:35:7c:64:d7:39:35:0c:d3:24:
52:1c:a5:2a:de:19:42:2e:13:e6:54:fe:7b:7e:8a:
86:fa:4b:57:cc:b1:18:04:5b:90:5d:21:59:ee:5b:
ab:78:83:49:87:17:6c:1a:1e:60:7f:9a:69:d5:c4:
5f:11:47:9f:eb:05:ee:a8:ad:72:27:28:fd:f4:d7:
be:8e:90:67:ef:9a:62:96:48:ad:51:ab:be:ce:2a:
8b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5A:51:DC:DF:85:60:CB:65:4A:AD:03:9C:07:29:8E:5C:3D:CE:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/032044FEA8F011EFB527DD5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.158.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ce:98:a8:8c:2e:d1:fa:59:cf:1a:4e:57:e9:ef:5a:f3:48:
fb:12:e6:7a:05:19:a2:30:d8:ed:5f:ef:0f:e2:e1:3e:4d:9b:
f5:74:5e:04:0b:7e:1a:97:76:ee:86:e4:ed:9c:70:b2:76:e7:
34:09:8d:df:d6:29:11:a5:fa:9d:7f:ae:c3:6c:8a:61:bd:5e:
58:ec:89:fd:ba:0b:e2:eb:2f:98:bd:ed:b4:1e:f7:2c:c7:b2:
c6:c8:9c:93:fb:4c:50:c3:65:c5:ac:7b:b2:c9:8c:c9:41:ff:
0d:38:6b:35:c3:a2:c8:da:13:cd:bd:e5:f1:86:b5:f2:1e:7f:
50:aa:1a:37:b7:82:1a:d8:69:b1:61:b2:c2:d4:ba:4a:51:ef:
f7:ec:3d:9c:f8:38:5b:dd:0b:f7:c1:7e:d5:77:b2:58:77:07:
34:59:57:1a:24:4b:2f:6e:8d:e1:be:d7:21:14:69:45:da:98:
7c:ee:c6:36:60:ac:e6:63:03:fe:eb:74:ea:77:fb:0e:68:2a:
0d:28:66:8a:e8:07:bf:ba:82:62:23:05:89:4f:ce:d1:24:30:
26:7d:3b:23:18:11:e4:48:2a:4b:15:0b:5f:17:80:3a:f7:3d:
14:ae:a8:e8:96:27:7e:41:ce:91:f8:75:08:13:f1:79:81:8b:
f6:48:a6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:53 2024 by rpki-client on console-ams.rpki-client.org