Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11B7DC06676F11EF920B795C762E951A.roa
File: 11B7DC06676F11EF920B795C762E951A.roa (raw, json)
Hash identifier: d9FdSG70e9wAAmEmthDFGjZZz/rClFgBJqUCm1mbpuE=
Subject key identifier: 5A:0A:FE:5F:58:87:E3:D6:CF:2C:7B:D2:AC:B7:46:20:19:3B:83:82
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E815
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11B7DC06676F11EF920B795C762E951A.roa
Signing time: Sat 31 Aug 2024 08:00:21 +0000
ROA not before: Sat 31 Aug 2024 08:00:17 +0000
ROA not after: Mon 01 Sep 2025 08:00:17 +0000
asID: 140659
IP address blocks: 154.222.64.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59413 (0xe815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 31 08:00:17 2024 GMT
Not After : Sep 1 08:00:17 2025 GMT
Subject: CN=66d2cd95-c187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:fd:00:5c:eb:00:df:49:27:16:3c:c8:3c:
85:4c:87:84:50:24:00:2c:bd:31:03:2a:cd:04:37:
ea:d5:a8:97:66:df:25:6a:e7:95:c5:db:41:1b:d3:
cc:55:15:fd:63:e8:9b:ec:15:65:31:82:5a:a5:11:
71:6d:2a:6d:28:90:eb:d7:fc:3a:0b:d9:27:66:25:
4a:86:cc:1b:5d:2b:c6:2e:f1:e6:c8:c4:47:e0:d8:
b0:83:18:15:33:cf:2f:c5:18:36:e6:c0:a5:d9:c7:
dd:31:61:31:2c:3f:89:7b:0d:96:17:03:01:44:c5:
33:e5:e4:17:73:e6:1d:13:69:20:95:78:d2:ba:ff:
0b:bd:6a:a7:4f:6e:66:17:f8:b4:75:10:d2:c6:2d:
aa:1b:02:67:9e:f3:8f:40:68:fe:dd:bb:00:63:8d:
b3:f8:fb:72:ef:91:5a:64:b5:57:f1:88:c5:84:8b:
b7:57:b5:a6:2a:d8:4e:79:b3:c8:47:fb:a8:5e:79:
c6:7c:17:7f:dd:d6:7a:b8:3a:83:88:39:b8:b9:5b:
68:d4:e9:21:0c:c9:d7:77:24:33:4f:c5:a2:c8:2a:
2b:e6:e6:1d:5a:58:f2:3e:ba:f2:fe:96:df:ce:fe:
eb:e2:74:ac:12:8e:6f:a2:57:9e:85:93:47:d8:10:
9d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0A:FE:5F:58:87:E3:D6:CF:2C:7B:D2:AC:B7:46:20:19:3B:83:82
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11B7DC06676F11EF920B795C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.64.0/23
Signature Algorithm: sha256WithRSAEncryption
ca:7a:c7:5d:61:1a:7c:27:6b:9c:29:c9:a7:e7:cc:04:e0:56:
2c:69:6f:1a:29:5a:71:09:da:10:7b:83:06:67:a2:d5:2c:38:
48:b3:96:28:87:72:21:7c:e7:d5:15:ef:27:61:7f:43:af:9a:
ff:c7:37:d5:fa:63:6b:80:0c:1f:62:0a:4f:bd:f8:fa:dd:08:
99:cf:4d:ac:c0:ed:32:ea:41:dc:cf:d4:ac:5b:ed:9f:cc:68:
89:ab:97:1d:7f:8b:a7:4b:c0:b7:28:74:c0:92:4b:f4:a7:04:
62:94:6d:db:04:28:df:e6:7a:e8:4c:a1:60:fc:09:97:11:10:
7a:f3:88:b8:ca:c5:d7:a7:73:39:90:75:8b:f9:01:83:c0:ca:
01:b6:09:51:57:a5:5a:8b:98:20:3c:4d:f5:95:13:91:0e:77:
2e:21:e3:ad:7f:5d:e5:b9:79:9e:d0:66:d0:e6:f9:37:f3:af:
12:88:42:86:af:d5:55:23:fb:e1:e4:41:d1:dd:44:99:e2:3a:
ce:e8:75:19:fb:d9:0b:45:8f:a7:2d:e2:e8:2d:67:71:b8:aa:
d6:0d:ea:bc:c5:62:d2:90:97:e0:6b:02:12:59:ef:b5:ef:f7:
08:a5:35:90:97:98:be:be:f8:31:9c:9b:63:29:2b:78:44:6a:
ee:7a:a6:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:56 2024 by rpki-client on console-ams.rpki-client.org