Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2560FF22A0DA11EF812D4855762E951A.roa
File: 2560FF22A0DA11EF812D4855762E951A.roa (raw, json)
Hash identifier: AbwZcELfLnkbaXMS18wTyGnvyFpAHgk+6zwil6MXWmg=
Subject key identifier: 31:F7:0A:37:16:0F:FF:8A:D1:60:98:FC:B3:4B:FF:C3:37:BD:63:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2560FF22A0DA11EF812D4855762E951A.roa
Signing time: Tue 12 Nov 2024 09:40:26 +0000
ROA not before: Tue 12 Nov 2024 09:40:22 +0000
ROA not after: Sat 07 Dec 2024 09:40:22 +0000
asID: 138915
IP address blocks: 154.223.72.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68642 (0x10c22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:40:22 2024 GMT
Not After : Dec 7 09:40:22 2024 GMT
Subject: CN=6733228a-f676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e6:6b:06:84:5f:4a:9c:88:a9:ac:db:d9:11:
1f:ca:04:b1:61:cc:46:be:c5:f8:e6:ca:41:9e:12:
c0:b4:74:88:d2:d7:91:a2:24:07:16:cf:d4:2d:01:
3b:50:dd:1a:d6:46:24:1c:4b:d6:d6:ba:18:ff:30:
2b:d7:03:39:44:83:c5:50:3d:7e:52:35:26:1f:2b:
d6:58:5d:5c:62:d3:d5:61:a8:54:1d:4d:c1:df:92:
d2:4e:89:9c:0a:89:8a:f8:b2:fd:4e:78:1e:95:41:
8e:4f:21:29:86:6c:91:e1:36:39:4b:33:c1:bc:02:
45:86:39:56:68:12:90:4e:a9:f2:38:f7:2e:c9:e4:
e1:ae:b5:a4:56:66:68:d0:45:eb:32:fb:ea:01:1a:
89:11:cf:26:f3:e9:e5:6a:55:43:bd:31:8c:6a:34:
b9:1c:dc:8f:05:fd:9b:1c:98:f6:d3:45:7f:d5:ab:
35:f9:c9:21:a6:16:ef:ad:93:b9:5c:83:ad:b5:a1:
ee:07:98:a8:a0:8c:4d:d0:57:c8:22:c5:c9:28:83:
a2:7e:07:dc:9a:f9:85:d2:ea:be:25:6f:f7:ca:1d:
e8:0d:9e:28:ba:4a:e0:d1:d0:64:9a:83:8c:f0:f3:
33:02:a5:1f:05:be:1a:e6:cd:d0:f9:23:6f:40:b0:
bb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F7:0A:37:16:0F:FF:8A:D1:60:98:FC:B3:4B:FF:C3:37:BD:63:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2560FF22A0DA11EF812D4855762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.72.0/23
Signature Algorithm: sha256WithRSAEncryption
69:4a:a7:8c:57:d6:8d:0c:fc:a3:cb:06:d6:d3:7e:81:aa:44:
e0:4c:ce:37:c6:db:30:3d:52:8b:8b:de:33:ff:5a:71:e1:ea:
30:ad:ac:2d:5e:7f:37:8a:9e:4c:9b:fe:2e:98:8a:ca:62:38:
0d:40:0b:d6:b8:d8:72:f8:f2:fd:ad:6f:6d:6c:31:93:57:b3:
14:73:6c:03:f4:d9:51:c4:0c:c8:4f:f4:ee:0b:d9:73:94:b0:
c9:1b:64:e1:50:8d:81:0f:94:28:3e:df:7f:8a:56:75:8a:57:
6e:5f:d1:4f:ef:ea:9d:49:98:f8:32:e0:ef:cf:d3:ce:7a:c4:
20:a7:20:5e:50:45:01:14:dc:22:cc:cd:69:44:ff:f2:84:9d:
64:94:3a:69:0a:ba:97:68:57:38:13:32:d9:f5:32:01:85:fd:
79:1a:2a:18:bc:ec:5d:e8:10:3d:fd:58:fe:89:8b:77:2e:a0:
d6:96:cd:b3:d7:ed:cc:bf:a5:ee:1f:2d:4f:6f:4a:01:e1:f7:
74:c5:43:ce:4f:05:3d:61:eb:5e:6a:8d:0b:7e:07:58:a2:cc:
57:1d:8c:22:c7:14:27:60:fe:57:8b:fa:b9:f4:b7:60:62:47:
11:34:d5:6f:b3:e9:94:bf:be:cb:b5:4e:b3:58:9c:c5:1b:8c:
95:48:36:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:00 2024 by rpki-client on console-ams.rpki-client.org