Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EBED974AEC811EE81263A57775412E6.roa
File: 0EBED974AEC811EE81263A57775412E6.roa (raw, json)
Hash identifier: YQYNUux2wSh6klrJT2Dp+3HhVV0l5cUDdnSzDzJ0LhY=
Subject key identifier: A6:8B:87:C2:15:0D:EA:BC:FB:F1:A6:37:2C:53:AC:5E:86:D9:8B:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EBED974AEC811EE81263A57775412E6.roa
Signing time: Tue 09 Jan 2024 08:21:16 +0000
ROA not before: Tue 09 Jan 2024 08:21:13 +0000
ROA not after: Sat 11 Jan 2025 08:21:13 +0000
asID: 138995
IP address blocks: 154.198.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29409 (0x72e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 9 08:21:13 2024 GMT
Not After : Jan 11 08:21:13 2025 GMT
Subject: CN=659d01fc-70b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c9:a3:f6:04:dc:5d:1d:ec:d9:22:07:aa:a0:
9d:b0:12:0d:68:4d:9e:f4:53:e0:ba:34:37:34:d1:
69:4e:59:e1:b5:81:6e:d2:71:9d:8b:ad:6d:34:dc:
52:56:e4:6f:e4:ed:60:9d:16:e3:b2:70:44:c7:af:
04:32:03:e1:c4:d2:12:35:65:a6:b7:5a:b9:9c:03:
04:9a:9e:5e:93:7d:74:7e:ab:cc:59:5a:bf:66:30:
5d:c4:57:e9:7e:f1:e8:5f:16:7a:a5:86:7f:39:29:
7f:dc:dd:3c:38:71:9a:6d:d4:71:4e:28:5f:5a:f9:
61:f8:54:8c:81:3a:d7:a7:55:a7:b7:2b:90:83:24:
12:43:00:bb:01:2d:32:3d:a9:be:75:ba:b9:2e:63:
85:34:0d:6e:b4:ba:e9:e4:8f:1b:43:c5:da:7c:38:
30:0e:28:a4:bb:ad:46:92:59:92:89:c3:e7:0b:4d:
c0:34:af:ba:73:b5:ab:0e:b4:f9:37:57:43:05:6c:
ef:46:fb:1c:9c:ae:bc:fb:0b:c8:62:61:57:40:01:
f4:cf:f9:b3:71:8d:ef:97:54:26:bb:9d:17:40:cf:
d2:0b:85:07:43:b5:d0:e1:4a:88:fe:c2:37:0b:e0:
40:b6:0a:9b:6a:e7:89:58:cd:5d:10:e4:1d:f9:75:
05:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8B:87:C2:15:0D:EA:BC:FB:F1:A6:37:2C:53:AC:5E:86:D9:8B:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EBED974AEC811EE81263A57775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.51.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:34:b5:f3:3f:26:42:28:c3:c3:bf:3b:28:7d:1f:be:8f:70:
f8:8d:a3:57:88:22:29:65:a8:70:92:ea:84:6b:3a:46:9f:bf:
1a:ee:df:87:ce:5a:28:79:2f:0d:4a:26:0f:0b:8e:10:b9:93:
63:85:58:da:da:eb:99:22:e4:5d:38:3d:b3:25:82:9e:94:98:
3b:55:6c:2e:8e:58:d1:4f:a5:22:c1:ee:3e:1d:0f:17:d1:14:
01:54:9d:e3:d8:1f:f7:f8:f8:ca:46:39:13:ad:78:b2:f5:23:
d8:cd:0a:b3:54:e5:a8:fc:df:d7:07:19:41:dd:30:a4:78:29:
dc:b4:d8:2a:58:de:1b:80:bc:5c:6c:c1:93:51:c5:c7:d6:7b:
9a:b3:35:0e:98:51:e5:3e:8a:5a:8e:f4:5f:fc:3e:b8:f9:2f:
89:16:f8:91:6c:bf:1c:a0:74:fd:88:83:2e:86:95:f9:4e:5a:
a2:32:4d:b4:c0:f3:d1:77:6b:11:e4:10:0f:6d:3a:08:b9:14:
bf:c9:b3:cf:45:e7:35:46:ef:14:38:98:19:5f:47:60:b8:a5:
f6:71:7b:c0:6c:b9:f1:ad:2e:c0:0e:3d:01:29:fd:1e:54:bf:
59:5f:a8:a3:d6:8a:da:26:d6:f4:22:9d:10:5c:ab:66:92:de:
3b:b9:50:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:54 2024 by rpki-client on console-ams.rpki-client.org