Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18C15A16A45211EF8D5B7650762E951A.roa
File: 18C15A16A45211EF8D5B7650762E951A.roa (raw, json)
Hash identifier: XYvanRmfB0MlJsr3tQPHU0lrO5GL8bRR///AQSLW5Is=
Subject key identifier: 32:20:E9:8A:CF:4F:35:FC:4E:58:AF:33:7A:3C:32:80:18:79:37:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E23
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18C15A16A45211EF8D5B7650762E951A.roa
Signing time: Sat 16 Nov 2024 19:36:38 +0000
ROA not before: Sat 16 Nov 2024 19:36:34 +0000
ROA not after: Tue 26 Nov 2024 19:36:34 +0000
asID: 53835
IP address blocks: 154.196.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69155 (0x10e23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:36:34 2024 GMT
Not After : Nov 26 19:36:34 2024 GMT
Subject: CN=6738f446-f19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ad:53:1b:d5:35:45:b7:12:61:ef:b6:96:cc:
fd:1c:0e:e2:8c:25:c5:2d:a1:e5:88:4d:1c:5c:a6:
07:26:ca:0a:94:0c:63:20:cd:fc:d4:52:32:8f:12:
29:09:96:7d:6c:43:d9:5d:6f:3b:41:4c:40:77:64:
b3:d3:fe:51:00:c3:3a:e3:ec:21:27:5b:13:1e:79:
cb:d9:76:f4:58:13:46:66:18:99:52:c7:fe:1a:3c:
7b:42:a3:d9:be:54:6c:c2:19:0a:60:83:aa:da:05:
b7:34:0e:43:2b:ca:1a:57:4e:3a:8a:39:df:22:e6:
fc:7e:51:d9:b3:bc:7f:8b:54:39:91:5b:91:ac:42:
b2:ac:28:3b:80:b9:a6:4a:ef:28:5e:df:c3:d0:5b:
10:53:f5:1a:d9:f7:b9:44:9d:39:fb:3c:2f:b3:fa:
28:1d:14:7a:22:2a:5b:f1:90:97:ee:0f:1f:40:6e:
1c:17:05:a3:72:8f:ba:16:13:8d:76:69:f7:e2:2e:
8b:44:fd:8c:5a:01:99:b9:ca:85:ab:d1:ec:7d:26:
2b:cc:13:e8:09:3a:93:52:c3:25:c3:29:68:58:1e:
46:78:94:5e:6d:ea:f4:2d:cb:d3:64:9d:be:38:89:
1c:0b:d4:5f:69:9a:20:97:27:c5:e8:3d:05:0c:97:
b3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:20:E9:8A:CF:4F:35:FC:4E:58:AF:33:7A:3C:32:80:18:79:37:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18C15A16A45211EF8D5B7650762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.244.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:55:c5:b2:99:85:89:e8:c0:6c:46:69:e9:ad:3c:48:00:d8:
ae:c7:e9:4b:9a:06:97:bd:9f:a7:0f:f1:6f:33:8f:43:8f:21:
96:25:57:65:9a:56:12:02:54:02:fd:3f:8d:30:8f:82:36:46:
e9:9f:a1:dc:10:f0:69:ca:8d:dc:54:cf:a8:26:cc:19:3e:22:
52:f0:ab:df:ec:f8:95:cd:75:27:c3:87:1d:45:36:99:3f:96:
88:1f:8e:ab:11:18:47:25:bf:d9:b6:13:a0:c1:50:cd:ac:6a:
bf:4d:50:6d:8f:e9:8d:5f:30:50:33:55:dc:e5:8a:42:10:a8:
70:47:74:f1:4e:e2:be:e6:29:8f:10:36:a6:bb:89:51:6c:48:
cb:94:50:fe:39:94:63:75:fa:ec:cc:0a:ff:bb:c7:a9:94:2a:
20:91:0a:9b:f2:8a:77:c7:3e:d1:af:08:d2:68:a3:9d:1e:fb:
94:d2:11:8b:0a:50:58:53:8c:20:ba:52:10:3a:bb:25:f4:f6:
5f:e7:08:35:05:d3:e1:86:b6:7f:7c:26:4f:79:9f:57:ae:a1:
19:c5:3a:53:ea:9a:14:6f:d9:2e:74:dc:81:19:43:ce:9d:47:
e4:ce:00:83:e4:17:bc:83:0e:39:77:ea:df:8c:b2:c1:e5:62:
b6:88:e1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:00 2024 by rpki-client on console-fra.rpki-client.org