Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06842904A8EF11EF91E76C54762E951A.roa
File: 06842904A8EF11EF91E76C54762E951A.roa (raw, json)
Hash identifier: U9NacEGw4b2trhHf5JZTJczGIDuJhLITvGL5lFETtzk=
Subject key identifier: F2:75:22:C6:20:E4:90:E7:D6:46:4C:C7:D3:16:25:B3:7F:B3:7A:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01113B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06842904A8EF11EF91E76C54762E951A.roa
Signing time: Fri 22 Nov 2024 16:30:03 +0000
ROA not before: Fri 22 Nov 2024 16:29:59 +0000
ROA not after: Tue 03 Dec 2024 16:29:59 +0000
asID: 62240
IP address blocks: 154.195.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69947 (0x1113b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:29:59 2024 GMT
Not After : Dec 3 16:29:59 2024 GMT
Subject: CN=6740b18b-262f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5e:c9:95:69:24:49:53:47:ab:e3:c7:80:e5:
1a:4e:44:94:21:53:5c:6d:38:cf:4d:ef:83:c4:3c:
7c:07:4d:f6:dc:59:c7:84:d5:de:a0:6e:61:70:62:
45:d6:c9:80:78:f3:ff:12:0b:c6:1f:9c:76:0f:36:
b3:03:88:e9:2b:f6:a7:ce:f3:3a:61:ae:3b:e7:0e:
30:e6:fa:9b:03:ea:95:af:fb:65:44:cb:c6:e9:18:
33:07:3f:6e:77:0c:32:eb:44:2c:c4:48:c8:d2:ef:
bb:68:2c:72:56:93:10:f8:9a:8d:47:d0:6e:c6:89:
7d:db:c4:83:fe:16:57:51:6d:d3:9d:dd:a0:f1:78:
38:25:95:11:8c:e8:32:ef:71:64:db:8d:13:8a:67:
9f:b8:db:2e:6b:77:3f:11:99:c7:26:a7:8e:ac:2f:
ee:fd:c0:06:33:3b:cf:da:0a:37:ea:f6:6c:7c:93:
ec:43:f4:17:5f:46:d2:78:d7:14:a7:48:5d:78:a2:
f7:a7:75:3a:87:42:51:53:1a:b8:0e:0a:35:f8:64:
f7:17:01:5b:06:da:1e:76:14:c4:fa:81:2b:4e:9f:
16:16:3b:ed:43:35:f8:6f:49:22:43:90:00:cc:77:
37:3c:51:50:88:ec:3f:6f:f2:9d:59:6f:31:d4:a5:
02:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:75:22:C6:20:E4:90:E7:D6:46:4C:C7:D3:16:25:B3:7F:B3:7A:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/06842904A8EF11EF91E76C54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.152.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:1d:f4:df:8b:4d:6e:c4:ee:96:e5:e9:72:39:8c:5c:2d:b5:
3c:f5:44:96:73:a7:15:45:f1:11:e5:12:89:13:77:dc:3c:a2:
3a:a1:8b:08:fd:80:72:16:69:3a:21:38:ed:f8:79:92:a9:95:
c6:ef:a0:81:d4:f2:6b:7c:12:5b:35:b4:3d:a1:df:73:78:15:
f3:8d:ea:d4:f1:5c:c1:38:22:8e:bf:56:41:76:2d:8c:bd:92:
f7:2a:01:ae:e8:da:58:e3:94:80:cf:c2:9d:ef:fa:b9:c6:28:
80:8b:74:0e:6f:38:2f:a5:3e:cb:18:e2:fd:1c:82:23:ba:3a:
b2:5a:6e:9f:17:68:3f:e9:29:2b:07:27:20:7e:c9:a1:32:91:
27:34:7a:31:30:ae:c6:46:06:58:0a:90:e3:7a:97:a5:de:c3:
1b:ef:25:fc:c6:30:ee:9d:fc:32:9d:33:e5:13:93:1a:d0:e4:
4f:ab:93:b4:43:82:b0:c6:b3:01:d3:c1:41:a4:db:63:f0:72:
b4:b0:9a:7d:d4:28:d4:a4:b6:d4:65:bd:ec:65:56:24:60:94:
a5:a6:b8:63:d7:55:de:0c:00:d5:cc:39:03:33:63:6a:d9:6c:
09:26:a1:a7:a0:f7:ac:82:a5:fd:c9:bb:44:33:ae:6c:63:9c:
db:1a:f4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:54 2024 by rpki-client on console-ams.rpki-client.org