Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1616D57C4FDC11EFA50C3476762E951A.roa
File: 1616D57C4FDC11EFA50C3476762E951A.roa (raw, json)
Hash identifier: 9hX/s2JcWPbZabdDV/1iZ8XyKWdlG9WckWcinwhl3EU=
Subject key identifier: A0:D9:32:41:82:C8:55:E5:28:4C:99:87:12:34:74:EB:8E:4B:61:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: DAD7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1616D57C4FDC11EFA50C3476762E951A.roa
Signing time: Thu 01 Aug 2024 08:00:15 +0000
ROA not before: Thu 01 Aug 2024 08:00:12 +0000
ROA not after: Mon 04 Aug 2025 08:00:12 +0000
asID: 9287
IP address blocks: 154.85.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56023 (0xdad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 1 08:00:12 2024 GMT
Not After : Aug 4 08:00:12 2025 GMT
Subject: CN=66ab408f-5d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:26:0f:c5:09:22:ff:9b:39:c0:69:2e:5b:f1:
f5:9d:32:87:bf:15:99:60:c7:15:81:39:57:94:a2:
f3:1e:52:0b:b9:c1:f9:81:87:17:3f:b1:75:76:17:
71:69:00:87:dc:43:9d:29:d4:6b:a5:6c:c6:cf:8f:
6f:31:0d:50:01:78:c0:e5:2e:b4:41:1d:c0:3e:c9:
84:28:77:7e:c3:e6:6d:d8:11:8f:1c:e1:e4:eb:59:
8c:12:36:a6:a5:79:3f:3d:18:70:06:fb:df:e8:87:
26:d1:54:5f:f2:47:d5:43:b3:65:51:0e:6a:d9:22:
7f:55:76:a4:99:75:44:be:ef:ff:11:a7:b0:8d:9c:
d5:a0:4f:54:b5:b4:b5:6f:cf:a6:a1:c5:1e:a6:2b:
20:25:09:7f:65:d4:f3:f1:1b:42:3b:97:15:b4:5d:
44:b4:27:d0:5f:55:9b:36:c8:8e:93:e6:72:03:4f:
ef:43:ee:9c:e9:03:f3:9b:b2:2f:14:e1:20:2d:c4:
3a:e8:b2:57:2c:5d:30:c4:de:07:11:15:b9:3a:f2:
71:73:29:36:5e:20:d8:a0:65:43:e8:2a:e0:de:cd:
61:51:fb:45:89:da:4b:fd:09:0f:98:92:c6:d0:39:
46:21:0c:31:b9:91:f4:7b:92:2f:6f:10:d0:e3:01:
81:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D9:32:41:82:C8:55:E5:28:4C:99:87:12:34:74:EB:8E:4B:61:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1616D57C4FDC11EFA50C3476762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.96.0/24
Signature Algorithm: sha256WithRSAEncryption
78:eb:1c:0b:b5:76:f1:5e:f3:65:46:3a:73:62:2e:d4:9d:53:
d8:b7:9d:54:5e:39:ab:3a:62:e3:39:8c:83:c7:f5:18:f2:65:
9c:db:b7:25:29:3c:de:93:1a:9c:9f:a5:9a:42:a7:a5:03:f0:
e3:6e:79:e1:3b:0f:73:c3:dd:f2:7f:b4:ce:9a:e8:ae:35:13:
3d:77:89:e0:66:82:b0:4c:a9:db:d6:1a:9f:d9:e2:c8:77:ef:
bb:cb:9f:42:c6:b1:05:77:ed:81:df:74:57:f5:8a:8f:4a:b5:
fe:1e:73:be:a6:52:d1:cf:50:fc:95:70:c0:55:a9:43:90:69:
38:22:8d:7a:70:8e:48:6c:36:04:eb:b0:f7:4c:3a:66:ee:2a:
58:f0:0c:97:b1:df:fe:71:b7:8b:1a:ff:b0:e5:ac:22:20:96:
94:ca:5a:2f:d3:71:29:8c:bc:3f:7d:7f:78:88:a7:f4:57:e0:
cf:1d:74:20:fd:92:c8:4f:bc:f9:34:6b:8a:14:29:60:c9:3d:
68:4c:7a:74:1c:f6:4b:ec:86:e4:15:ec:c0:54:54:0c:a2:f2:
22:4f:b7:69:64:b1:f7:ff:5c:7b:c3:f9:9a:4e:f3:f5:a7:96:
96:c0:b6:81:4e:d7:7a:89:a3:81:87:0e:a4:49:ab:de:c8:4f:
d8:a6:70:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:03 2024 by rpki-client on console-fra.rpki-client.org