Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B418A7EA0E611EFB245C99D762E951A.roa
File: 0B418A7EA0E611EFB245C99D762E951A.roa (raw, json)
Hash identifier: zY1wVYRZGpIhvn97A176xIAwhJTKxUquvQP0WS2ZX2Y=
Subject key identifier: 94:CC:30:4E:DC:F6:63:1B:A4:43:73:5D:31:09:7B:1B:69:D1:0B:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B418A7EA0E611EFB245C99D762E951A.roa
Signing time: Tue 12 Nov 2024 11:05:36 +0000
ROA not before: Tue 12 Nov 2024 11:05:33 +0000
ROA not after: Fri 22 Nov 2024 11:05:33 +0000
asID: 21859
IP address blocks: 154.202.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 11:05:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68698 (0x10c5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 11:05:33 2024 GMT
Not After : Nov 22 11:05:33 2024 GMT
Subject: CN=67333680-3b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a6:90:c3:54:b9:60:59:f5:85:6c:fd:cf:53:
32:90:72:5a:bc:9b:ad:eb:f7:7c:ae:0c:1c:e9:61:
fb:03:9a:7f:49:7b:a3:c2:61:4c:20:d0:9b:3d:c8:
ed:21:91:68:0f:b5:4a:30:b4:34:6c:80:f8:1d:df:
fc:f4:48:29:bb:3a:3b:a0:34:6f:76:5a:60:1d:aa:
50:8b:fc:7c:a8:83:cf:fa:10:16:11:9e:fc:1c:09:
a5:46:e9:1e:f2:70:ed:bf:f1:e3:d8:3a:cb:ef:45:
37:e6:94:8a:59:c2:d1:7b:97:ba:06:3f:5e:66:af:
80:cf:d0:d8:f3:7e:1f:8c:6c:0a:ef:59:2a:fc:81:
84:ea:69:83:d8:d6:79:44:a1:3e:2b:b7:86:27:48:
a6:58:73:ce:3f:43:18:10:ba:7b:d6:4e:50:41:d2:
2f:15:b6:ea:dc:e2:0e:70:96:0a:e7:76:b2:87:cb:
b0:10:d0:2e:08:12:23:47:a2:ca:fe:ec:6a:6f:5a:
af:d2:54:d3:2e:05:77:5e:3d:db:bc:84:94:2d:58:
e5:60:42:fd:2d:f5:42:75:f8:69:d3:0a:8f:d8:9e:
b9:59:f9:f0:4e:11:ca:35:c7:11:f2:d4:72:5b:1a:
fc:0b:61:f1:fd:9e:cc:2c:6e:d9:e1:98:dd:3b:9b:
8c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:CC:30:4E:DC:F6:63:1B:A4:43:73:5D:31:09:7B:1B:69:D1:0B:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B418A7EA0E611EFB245C99D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.72.0/21
Signature Algorithm: sha256WithRSAEncryption
44:a4:51:b9:bc:1c:72:9c:3b:9b:93:d9:44:92:41:b2:b1:75:
e1:ba:05:1a:9c:cc:74:16:12:3c:cf:6b:6a:74:09:9d:a8:d5:
06:10:36:ef:f5:d0:e7:65:4c:20:5f:55:f7:60:55:3a:47:5e:
7c:a8:df:ec:45:c7:15:19:d3:5e:a9:e5:3c:72:ed:c5:df:f2:
13:dd:2f:7b:2f:9e:ab:47:db:15:de:5e:6a:81:ab:bd:e5:0b:
04:c4:f7:f9:f5:2c:13:42:4a:72:78:e4:55:85:fc:d7:7e:ef:
b1:5c:6e:c8:00:2d:5b:2c:19:af:d6:e8:de:87:dc:85:be:e7:
1c:1e:ab:79:91:a8:2d:b2:7e:e0:bc:e1:35:d9:e5:03:b2:b0:
4f:db:80:6c:d6:2e:ae:dd:25:ef:dd:33:88:45:bd:9e:d3:da:
73:bd:0b:2c:08:f4:39:54:c8:80:61:8d:39:09:60:83:d6:d6:
31:ec:2a:3d:b9:ac:ed:dd:7c:70:af:da:c5:73:29:85:d1:75:
f5:f3:aa:91:4c:cc:1d:5a:12:a0:5c:c0:8e:13:f7:56:2d:f6:
1e:b3:09:3a:5d:57:51:82:46:ea:e2:f4:9c:3e:b1:0c:c9:f4:
45:e7:5e:d5:1f:9f:17:37:5c:2c:dd:9d:90:05:4c:05:b8:8f:
54:5b:46:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:30 2024 by rpki-client on console-ams.rpki-client.org