Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/032A15DAB34411EE8A490669775412E6.roa
File: 032A15DAB34411EE8A490669775412E6.roa (raw, json)
Hash identifier: 9cobczEBRfduX0fny5kBhq+Elo5NB+l4ODWjAd9jBUY=
Subject key identifier: 6B:CF:8F:43:2B:C3:F4:A9:FE:13:4A:98:6B:AE:69:54:0E:43:E1:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7520
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/032A15DAB34411EE8A490669775412E6.roa
Signing time: Mon 15 Jan 2024 01:18:39 +0000
ROA not before: Mon 15 Jan 2024 01:18:35 +0000
ROA not after: Fri 13 Dec 2024 01:18:35 +0000
asID: 8796
IP address blocks: 154.205.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29984 (0x7520)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:18:35 2024 GMT
Not After : Dec 13 01:18:35 2024 GMT
Subject: CN=65a487ef-4193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:56:04:11:7a:2b:ac:47:d1:b2:be:fc:a7:77:
57:d8:2c:00:ac:92:04:4e:1a:b4:e1:de:25:d5:4c:
12:2f:37:08:19:5f:2e:68:71:90:02:30:11:61:96:
d5:56:b8:e5:96:56:40:df:9c:36:bf:7c:1e:17:d8:
02:26:7a:f7:1d:c9:5e:f4:c3:6c:8e:ea:41:89:ce:
97:11:02:70:e8:bd:ff:c3:4d:0a:42:2a:61:6f:a8:
12:97:58:f2:a3:90:78:44:dc:17:08:27:92:97:33:
12:63:98:f7:7b:d4:01:a9:15:2d:36:3c:e2:c2:89:
aa:d1:4d:48:ac:ac:1e:a8:56:eb:6a:5c:4e:79:61:
3a:af:03:0f:76:d6:59:d1:b8:c2:85:26:9e:74:2e:
d9:61:37:9b:02:b3:af:72:87:0c:9c:04:8c:21:43:
97:ab:1a:9b:4b:8e:1d:e6:a9:51:4e:5b:7e:e9:b5:
7d:6d:4a:10:e9:e7:e5:81:77:2c:23:e6:fb:91:9a:
50:79:6a:71:2c:22:54:09:9a:3c:7f:86:b6:4f:e5:
ca:c1:c5:2a:0d:60:be:20:d6:a3:3c:68:9b:2f:19:
9f:82:da:a9:31:93:8f:ab:0b:f5:1e:87:9b:ce:3a:
93:2f:ac:f6:b7:af:7e:b6:c9:e6:b0:30:95:45:d0:
b0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CF:8F:43:2B:C3:F4:A9:FE:13:4A:98:6B:AE:69:54:0E:43:E1:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/032A15DAB34411EE8A490669775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.221.0/24
Signature Algorithm: sha256WithRSAEncryption
38:92:59:cd:8d:55:eb:92:4d:8b:ea:7b:7a:bb:db:dc:47:7e:
14:6b:a7:0a:73:36:f8:8a:a0:24:24:55:e9:b8:22:9f:4e:e5:
fc:79:eb:c0:97:43:51:d9:79:cf:fa:25:d4:46:8d:ea:b4:74:
9c:d1:4f:5b:c2:88:1b:9a:40:d1:83:50:26:02:e7:77:79:26:
04:9b:66:ca:bc:b1:43:81:3e:34:b6:8c:c7:43:a2:96:27:02:
ee:07:ea:6c:51:b7:6f:33:ab:42:cd:aa:6a:34:c1:90:ab:2a:
75:3f:b6:8f:7e:3e:bc:13:1c:0d:db:95:80:58:2f:e1:79:0a:
4d:be:fc:b6:f9:c9:64:cf:16:4d:a2:b4:16:4d:54:88:77:13:
c2:0a:0d:5a:14:09:d5:60:b9:98:8a:89:ff:7c:f9:fe:45:aa:
54:c6:73:83:63:7c:20:19:6e:35:87:b1:fd:74:b0:57:37:a4:
0e:f4:b1:f8:1c:20:e7:98:1d:e0:b8:39:61:46:2a:d1:bc:9d:
13:f2:b0:10:54:7a:0a:bd:84:52:1a:0c:b3:11:13:44:97:cd:
2a:f5:fe:75:33:f8:a6:f8:d4:6c:66:30:13:47:61:cd:d8:84:
e1:a7:15:d6:33:54:a8:e9:fd:77:75:b4:4b:81:33:9e:a3:4b:
21:4f:3a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:53 2024 by rpki-client on console-ams.rpki-client.org