Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F8F8FF23AA411EF96E73A95762E951A.roa
File: 0F8F8FF23AA411EF96E73A95762E951A.roa (raw, json)
Hash identifier: gVDKj/F/+SsFuYffAxpsafaeQ8FnjGRHfzc4HJywmhc=
Subject key identifier: 09:32:E9:2B:B2:C0:66:40:AC:FC:EB:F4:92:5A:68:A7:0A:A1:65:4F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CD8E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F8F8FF23AA411EF96E73A95762E951A.roa
Signing time: Fri 05 Jul 2024 07:56:18 +0000
ROA not before: Fri 05 Jul 2024 07:56:15 +0000
ROA not after: Tue 07 Jan 2025 07:56:15 +0000
asID: 63199
IP address blocks: 154.207.106.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52622 (0xcd8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 07:56:15 2024 GMT
Not After : Jan 7 07:56:15 2025 GMT
Subject: CN=6687a722-5c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ba:f8:51:dd:8e:4f:3b:4e:ac:93:cb:e6:c0:
76:e9:69:c5:12:1f:ed:a5:60:f6:e6:2b:6a:c6:47:
22:56:a9:fd:a4:23:8b:da:f1:8b:7b:d1:af:23:fc:
b3:62:43:39:ea:e8:4c:36:e9:0e:10:b8:78:d2:fb:
d8:87:e1:20:30:c3:05:15:e6:0a:a5:ba:4f:b8:83:
6a:7e:5f:b2:7b:b0:81:79:c3:a6:6c:34:b2:f0:e7:
20:96:18:3d:19:20:f6:59:65:f0:ca:74:cf:48:f8:
a8:33:6e:4e:40:7d:91:74:cd:78:8a:0e:9b:7b:28:
e7:cc:ed:43:d4:c8:51:9a:ff:d4:86:97:54:b0:73:
cc:79:a9:99:3c:3a:c3:86:92:39:eb:cc:86:90:1a:
24:65:23:cc:7c:be:c6:d5:91:17:9b:66:c6:7a:45:
58:aa:03:70:4b:bd:3c:d8:58:26:ce:7d:79:21:fc:
65:d8:c7:a6:81:c8:eb:3f:0e:7b:2a:85:9c:9e:77:
85:e4:16:88:d4:4b:45:20:d0:48:2a:eb:8a:63:99:
f3:47:5f:62:62:64:05:ea:23:17:f2:66:bc:60:d9:
7d:ae:c9:9f:71:90:ed:36:b1:e9:bb:c2:c2:00:7e:
00:16:64:a0:64:be:ec:3b:d2:73:37:70:86:a0:b7:
2b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:32:E9:2B:B2:C0:66:40:AC:FC:EB:F4:92:5A:68:A7:0A:A1:65:4F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F8F8FF23AA411EF96E73A95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.106.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:f8:fb:66:20:c3:fd:c0:95:d0:85:ec:bd:cc:6d:c5:34:81:
50:cf:a3:ae:52:63:14:c6:65:c8:5d:b4:04:4e:a6:5f:f3:f2:
52:68:e4:e6:83:4f:3e:30:b7:73:f0:b4:e3:c8:08:34:13:00:
f2:a0:de:ce:1f:b4:73:9a:48:ef:46:04:dc:08:af:b1:3f:d4:
6d:e8:7f:f0:2e:2c:de:05:4f:de:52:0f:96:08:f7:33:36:83:
33:98:6f:7c:04:14:14:33:af:e8:5e:9c:64:50:66:a6:70:9c:
9c:7d:8e:1b:40:3e:3d:0e:30:22:d1:d1:e0:4e:66:a6:25:66:
dd:93:43:9d:04:15:4a:b9:b5:c8:dd:89:4a:9b:30:f2:80:89:
cc:68:44:02:43:25:91:26:96:f7:00:34:39:79:de:e4:e5:1c:
c9:91:6d:8a:d7:67:62:32:88:59:84:79:b5:fe:1a:a6:df:7e:
d6:12:fd:58:99:f7:52:13:99:4a:52:31:5c:05:83:e9:e5:a2:
ad:d5:57:5a:d0:f8:d8:ce:a1:36:b7:fe:95:ef:84:56:f2:d2:
aa:93:86:c4:c3:49:37:63:79:36:68:f3:a4:40:da:92:a9:a3:
6d:19:fa:78:a2:a7:a5:19:8b:6d:23:ba:9d:0e:0a:16:fd:43:
20:94:5d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:54 2024 by rpki-client on console-ams.rpki-client.org