Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/150D716A985F11EFA46DE161762E951A.roa
File: 150D716A985F11EFA46DE161762E951A.roa (raw, json)
Hash identifier: v31IaLDmRnPmprLJ5m74a1Wqgu0vtvi1R7encuuzWk8=
Subject key identifier: 3E:9E:B9:6B:01:E5:0B:10:B1:3D:FB:76:E0:89:4D:D2:41:CA:78:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/150D716A985F11EFA46DE161762E951A.roa
Signing time: Fri 01 Nov 2024 14:39:22 +0000
ROA not before: Fri 01 Nov 2024 14:39:18 +0000
ROA not after: Tue 03 Dec 2024 14:39:18 +0000
asID: 203020
IP address blocks: 154.203.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66777 (0x104d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:39:18 2024 GMT
Not After : Dec 3 14:39:18 2024 GMT
Subject: CN=6724e819-4a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ff:2c:17:c7:05:89:d9:f9:ae:73:97:d8:c5:
77:db:04:e2:4c:c2:d6:3d:7a:f2:b0:5c:12:0b:21:
39:a5:43:7b:96:e3:4b:83:fd:ee:2f:d2:72:81:72:
c0:88:1a:ba:ed:56:0b:76:cc:b2:5b:4f:c1:f9:76:
1d:db:e8:39:54:df:a6:06:6d:d5:a5:5f:a0:6e:db:
31:28:2a:a5:67:1b:57:f8:28:43:de:2d:60:63:bb:
bd:67:9e:14:be:9c:d7:4a:4d:19:19:c6:b4:df:32:
2d:9b:43:3a:7c:00:6a:64:1d:7f:93:8d:bb:54:26:
89:64:e4:1b:55:21:52:97:38:21:93:e9:f7:73:60:
6d:18:d6:8b:b8:5f:a9:5a:61:e1:0e:a7:c1:0f:c7:
85:86:12:0b:90:3e:c0:c4:7e:64:09:54:a8:82:9e:
46:16:be:06:b7:42:18:d7:1f:e2:6a:dc:27:ac:e1:
df:a5:33:fc:8c:78:e0:b5:83:ba:35:f3:00:32:19:
79:f8:a8:b0:61:de:63:fa:3b:fa:4c:2a:eb:bf:5d:
1d:5d:42:ca:30:15:31:cc:b6:6c:fc:de:24:e0:d9:
08:5d:0e:14:05:bb:06:0b:db:49:58:76:34:68:a7:
27:2c:c1:9f:74:d7:84:0e:0b:56:ac:64:57:e1:8b:
41:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9E:B9:6B:01:E5:0B:10:B1:3D:FB:76:E0:89:4D:D2:41:CA:78:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/150D716A985F11EFA46DE161762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.63.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:31:07:6b:18:64:37:a7:a1:ca:72:55:a8:01:1a:6a:d4:7c:
5a:7a:6b:2b:ff:88:73:0b:e8:d1:00:6a:5a:64:0d:59:78:f1:
89:ad:15:01:56:80:c1:bf:0a:36:d3:39:bd:7a:9e:1b:4a:20:
d5:f5:5d:35:18:41:41:a6:40:d2:f9:25:26:88:12:2b:1e:e7:
93:4d:13:82:0e:d3:53:cd:00:78:48:fc:37:ef:54:37:cb:63:
24:8a:03:8e:89:57:7c:c8:26:32:bc:a7:e4:a4:90:27:e5:fe:
11:0c:e1:4e:57:fa:86:d0:60:c7:b3:62:87:bd:74:16:84:e2:
0c:2d:f7:05:f6:bf:36:dc:8d:ac:74:bf:b3:ca:55:97:49:b4:
54:95:64:0e:a9:65:6a:b3:af:f1:db:47:4f:95:4f:66:98:1f:
dd:a1:7a:09:b2:a1:87:ab:42:71:a0:37:e4:f5:29:aa:26:38:
5f:60:09:7f:49:72:b4:c6:67:b7:1c:5b:e3:33:8e:ea:67:0a:
cb:c3:16:a6:db:fb:a0:b1:b6:88:93:d4:b1:ef:ac:bd:c6:4d:
15:05:1f:e8:0c:5c:84:09:22:20:cc:fd:4f:c2:0d:44:36:b8:
2e:42:b9:65:1b:b9:7c:27:9b:3e:d7:fb:20:e7:3f:14:f5:e8:
d3:80:5f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:00 2024 by rpki-client on console-fra.rpki-client.org