Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2206A26047E211EF87B4F79F762E951A.roa
File: 2206A26047E211EF87B4F79F762E951A.roa (raw, json)
Hash identifier: pMuEFgZTNor2C4gXcTSWQ8RU9PA3478mwkMijLQecpk=
Subject key identifier: 5B:C2:65:AE:C9:3E:27:13:A3:9F:3A:EC:EE:25:7A:FB:49:7C:AD:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D48E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2206A26047E211EF87B4F79F762E951A.roa
Signing time: Mon 22 Jul 2024 04:23:23 +0000
ROA not before: Mon 22 Jul 2024 04:23:20 +0000
ROA not after: Tue 09 Dec 2025 04:23:20 +0000
asID: 273147
IP address blocks: 154.197.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54414 (0xd48e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 22 04:23:20 2024 GMT
Not After : Dec 9 04:23:20 2025 GMT
Subject: CN=669ddebb-3f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2c:89:29:b2:ad:51:02:80:90:15:a7:b0:16:
c7:83:82:ff:33:e5:fe:06:a1:6a:24:30:d5:b8:9a:
76:e5:34:01:23:05:c8:f5:4b:e7:5f:b7:c6:92:10:
97:75:95:88:3f:74:9c:cf:35:e8:4b:fe:9f:87:90:
79:0f:fb:68:b0:6b:24:e1:ec:c7:92:64:07:6b:7d:
b4:57:7f:51:4b:2f:46:af:de:14:08:6a:a8:06:df:
1f:4b:86:53:4b:2f:82:3f:69:36:b4:cb:9a:ab:28:
dc:04:b8:06:7b:25:d8:d5:81:c4:28:5a:fe:dd:2b:
e0:13:e6:ba:23:0c:b3:a4:85:37:09:ad:f9:43:a6:
b9:00:e3:86:7b:f8:01:30:cd:03:05:a9:71:f8:ea:
1e:8c:db:e3:f2:1c:2d:a1:c4:fd:bc:cc:a0:11:e6:
79:71:82:eb:a0:61:c0:5e:01:be:40:40:8b:62:8f:
08:53:f1:e9:fb:67:2b:73:ad:21:ec:c1:2a:8d:58:
4c:97:9f:e1:fd:8d:8b:33:07:d5:23:33:63:42:74:
22:9a:8c:98:e9:c8:5c:6d:13:f0:7a:40:48:d3:6b:
b2:68:21:59:88:be:06:94:22:a9:e1:4b:2b:9e:04:
53:93:a4:2c:1e:f0:17:12:dd:aa:a3:60:6b:5a:27:
bd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C2:65:AE:C9:3E:27:13:A3:9F:3A:EC:EE:25:7A:FB:49:7C:AD:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2206A26047E211EF87B4F79F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.77.0/24
Signature Algorithm: sha256WithRSAEncryption
24:a6:f5:b2:2d:20:af:70:2d:9c:c6:4f:69:6a:fd:3f:51:b3:
8f:de:fd:71:88:2d:4e:a9:04:da:6d:77:b0:a9:a8:90:71:5b:
19:b3:31:58:97:5a:64:f4:2e:f2:96:b6:39:4c:88:03:12:e4:
e8:a0:45:86:ce:a5:a9:5a:71:d6:b0:00:07:89:cc:4e:50:bb:
1b:de:0e:20:a4:15:5c:25:e0:ef:22:de:51:a6:a4:f2:4d:99:
7a:c0:87:e9:cf:d9:d3:72:73:3a:15:ea:db:bb:db:d2:06:f8:
66:17:bc:24:04:41:0d:54:85:64:4a:ef:48:4c:a7:5a:08:91:
61:54:97:f8:67:e4:1a:ba:91:b5:06:cd:4d:25:bc:2a:66:5f:
9e:dd:50:b2:2d:61:59:e3:7e:29:fb:b6:6d:8e:ed:2d:e5:8c:
af:61:8c:96:1f:7d:57:48:e2:3e:a2:9c:2b:ab:7f:2b:c1:f0:
ca:98:c5:7f:10:d2:3d:5c:d3:46:9f:26:0f:f3:ce:92:b5:cd:
ab:dc:b6:76:d7:7d:35:94:c2:4c:e6:c2:45:f5:b0:fa:29:7b:
fc:08:86:9b:f1:9f:9a:f9:52:43:ab:90:2c:02:0e:a7:a3:bf:
ab:c2:c4:31:26:96:ce:39:1b:a5:8c:b3:25:71:c0:95:aa:d5:
f7:de:94:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:56 2024 by rpki-client on console-ams.rpki-client.org