Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05B89362A8EE11EFBAD6C94F762E951A.roa
File: 05B89362A8EE11EFBAD6C94F762E951A.roa (raw, json)
Hash identifier: ZtS3WVgIgWdisC26xQmXggEVh4xD6RbDc8Yps+yNxXU=
Subject key identifier: 5F:A8:79:45:D0:1D:FC:53:80:6C:96:A8:93:03:33:9D:7D:09:7E:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01112F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05B89362A8EE11EFBAD6C94F762E951A.roa
Signing time: Fri 22 Nov 2024 16:22:52 +0000
ROA not before: Fri 22 Nov 2024 16:22:46 +0000
ROA not after: Tue 03 Dec 2024 16:22:46 +0000
asID: 62240
IP address blocks: 154.195.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69935 (0x1112f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:22:46 2024 GMT
Not After : Dec 3 16:22:46 2024 GMT
Subject: CN=6740afdc-ec58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:1a:27:e0:2f:1f:9f:8c:0a:d3:1a:44:0b:
aa:84:80:69:f5:84:85:e1:f6:93:ee:7d:93:45:c6:
62:62:f3:5f:40:34:df:ee:b7:16:97:81:51:30:bd:
c8:5e:db:e8:41:8f:57:7f:8a:ec:ba:83:82:b7:ee:
2f:e5:af:34:85:5d:67:33:57:26:ed:e8:5c:44:2b:
ec:d5:77:81:6b:d4:8e:d9:86:28:2b:2b:19:b3:8d:
13:81:41:08:a1:dc:bd:91:f2:26:97:9b:72:0a:82:
c8:9b:05:d3:14:01:32:72:83:c0:5a:7c:41:66:91:
4f:12:5d:9f:81:69:65:1d:5f:5f:15:a6:f0:ee:22:
9a:c8:db:c0:7f:ad:63:b6:81:f1:ac:55:af:25:a8:
0d:d1:c9:8b:ae:bc:66:0c:9c:ef:b2:dc:f5:7a:d1:
34:56:a2:ab:c7:81:76:49:b0:a0:7f:f8:97:1b:bf:
d4:a7:a4:ec:ff:dd:19:1b:a4:08:15:0e:a7:95:13:
6d:14:f1:c4:10:a7:96:07:28:7f:d8:50:93:1e:59:
ff:0e:a2:0d:7a:bf:ac:2c:ec:77:0f:01:3e:f3:e2:
44:02:fe:7a:a4:7e:d3:f2:c4:14:52:09:ab:08:fd:
01:fe:87:53:9d:37:13:62:b7:98:fc:8b:dd:49:0c:
a3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A8:79:45:D0:1D:FC:53:80:6C:96:A8:93:03:33:9D:7D:09:7E:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05B89362A8EE11EFBAD6C94F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.146.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:6c:36:e3:39:d8:fd:8e:ba:4a:67:40:30:da:91:a4:ff:75:
dd:88:81:43:37:6e:4d:c7:7e:93:5b:e7:fb:81:f0:cf:7b:fa:
63:6b:35:55:e1:00:eb:b8:5a:f2:5d:8a:9f:05:84:46:e7:8e:
db:f8:b5:84:10:b5:3a:e5:4a:3c:db:41:c5:33:0a:46:41:37:
29:dc:2f:a6:42:98:a7:2e:4b:9f:17:b8:d8:19:38:d8:fc:18:
f3:37:b8:40:4c:cb:c0:c6:a3:27:52:d2:9a:6d:94:b9:5e:ba:
7c:62:33:eb:9a:03:8d:6a:a2:5d:6e:8e:8d:49:be:50:3b:36:
8a:45:0f:a6:dd:f7:bd:7d:c8:f4:a1:83:f1:82:cb:77:91:01:
09:7e:51:4a:24:38:51:f0:fe:b9:7e:5a:ce:92:e9:95:db:38:
7b:71:29:09:c5:8d:0b:39:8c:ee:91:de:6f:ce:29:6b:3c:96:
94:96:f1:68:d6:cc:48:ad:be:5e:6b:1e:8d:96:4c:e5:cd:e0:
9e:96:6d:bd:eb:a7:c8:b5:29:ec:f7:09:04:58:e4:05:ce:be:
16:8f:97:5f:54:4f:00:00:8b:d0:44:54:b3:79:26:a5:0a:5d:
ec:3a:f6:3c:8c:8b:2a:1f:ce:65:19:10:ec:2a:94:6a:fd:f5:
13:2a:02:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:20 2024 by rpki-client on console-fra.rpki-client.org