Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A618D908ACC11EF954DE15E762E951A.roa
File: 1A618D908ACC11EF954DE15E762E951A.roa (raw, json)
Hash identifier: 7/kv8g/9bOJxNOrIkcGVavUywbSB8GBqDlgHxjiDM2w=
Subject key identifier: EE:F4:A6:D1:9D:D5:5A:3A:B8:73:82:02:61:BD:F7:D3:E8:4A:C7:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A618D908ACC11EF954DE15E762E951A.roa
Signing time: Tue 15 Oct 2024 08:04:29 +0000
ROA not before: Tue 15 Oct 2024 08:04:26 +0000
ROA not after: Wed 27 Nov 2024 08:04:26 +0000
asID: 20473
IP address blocks: 154.197.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65078 (0xfe36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 15 08:04:26 2024 GMT
Not After : Nov 27 08:04:26 2024 GMT
Subject: CN=670e220d-ce98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:62:47:56:1c:7b:45:74:ec:f8:93:a1:dd:b3:
02:25:8c:49:9c:9e:e4:af:c6:9b:3b:ec:0b:a9:38:
ea:ee:0a:2e:53:5e:57:00:8d:de:a6:09:27:06:66:
7b:59:89:8e:f4:96:d2:49:5d:a3:74:5a:7d:90:f7:
6d:88:00:4d:c8:37:f9:15:bb:30:63:fd:6e:a9:e6:
10:0f:25:e1:b6:84:32:aa:5d:c9:de:2e:8b:77:02:
dd:da:05:b5:9b:9e:10:5b:5c:52:99:53:7d:1f:94:
12:85:bf:64:15:28:6c:ca:00:88:12:82:f6:24:73:
63:3b:ec:a7:3a:e5:75:5c:f6:98:55:c9:08:27:7e:
29:53:02:13:a4:34:d8:82:5e:ef:36:8c:8a:84:29:
33:eb:57:9d:28:06:ac:e0:d8:fb:53:a4:a9:ee:e2:
c7:76:84:51:3d:b2:22:ac:10:f9:f3:b8:af:5e:9a:
e2:c3:25:cb:06:d3:b7:72:fb:e7:41:c1:12:7f:76:
7b:26:62:02:b5:69:0a:b2:11:e1:8a:fd:39:3d:34:
6a:dc:47:92:bb:2e:0d:04:cf:32:a1:b5:c0:a3:ed:
bc:a6:3a:0d:10:24:cc:60:e6:f0:67:3a:44:aa:c3:
31:76:6e:05:af:f2:e5:41:d4:39:cd:a3:77:af:ca:
29:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F4:A6:D1:9D:D5:5A:3A:B8:73:82:02:61:BD:F7:D3:E8:4A:C7:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A618D908ACC11EF954DE15E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.32.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:83:24:6a:21:dc:3e:04:17:fe:aa:6e:28:b6:fb:df:3e:c7:
e7:9c:4c:95:4a:6e:7c:2d:81:c2:8d:da:12:c8:3c:96:08:16:
7e:ea:5d:47:d0:4b:0b:b6:fd:aa:89:83:4a:89:ee:ef:87:c0:
3d:12:d0:e9:c4:0f:1a:d1:f6:96:dd:c8:14:af:80:3d:d7:b0:
2c:de:0e:fc:61:8d:87:33:49:11:43:76:8d:ee:70:1c:72:a6:
5b:7e:0f:c2:2f:b6:0d:5f:b8:1d:16:e9:a9:ac:8a:74:83:82:
ad:99:2f:4c:6e:20:6c:23:8e:5d:4f:3d:41:55:11:11:32:52:
a2:f8:f0:e9:58:74:01:d0:c5:c7:a8:01:b4:88:03:a9:d5:3e:
e1:f9:5e:a8:7e:23:6f:41:aa:dc:df:ee:41:29:83:bb:67:3b:
14:ef:77:38:91:e6:4a:b2:c7:b8:35:5f:80:d0:91:bd:91:3e:
ba:11:ef:18:6e:60:71:c0:a3:6a:38:52:75:02:2e:a1:25:ba:
f6:00:69:23:19:6e:47:59:01:77:73:0d:17:cb:13:c2:e1:08:
e7:e0:c7:8d:d1:e6:44:bb:3a:1a:2d:9d:fc:82:d4:0f:24:cb:
2f:f7:70:ad:d0:45:b1:a9:3b:46:e0:a7:37:a3:41:6b:e8:27:
18:82:8e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:32 2024 by rpki-client on console-ams.rpki-client.org