Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25DEB2407E3F11EFB56C36B7762E951A.roa
File: 25DEB2407E3F11EFB56C36B7762E951A.roa (raw, json)
Hash identifier: 519KANrDUWj3Fn98PSJm+n8cjunvZIjHyOS+sit0VLI=
Subject key identifier: 5A:D7:D6:B5:37:2D:EB:C7:9E:5C:31:17:24:0A:3D:D9:BB:A2:38:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F4A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25DEB2407E3F11EFB56C36B7762E951A.roa
Signing time: Sun 29 Sep 2024 08:45:16 +0000
ROA not before: Sun 29 Sep 2024 08:45:12 +0000
ROA not after: Mon 30 Dec 2024 08:45:12 +0000
asID: 17561
IP address blocks: 154.201.48.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62626 (0xf4a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 08:45:12 2024 GMT
Not After : Dec 30 08:45:12 2024 GMT
Subject: CN=66f9139b-39e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:4f:67:a3:de:c4:c9:36:ab:fd:19:30:75:
74:0a:65:84:94:d5:92:9e:10:59:0b:18:d1:b2:79:
89:00:19:2f:df:27:22:49:09:64:5a:f0:9f:06:b3:
cb:80:68:22:a1:e2:d9:e2:3a:d1:e9:4d:94:f2:c1:
56:7c:42:8a:0d:7e:25:f5:b0:1e:74:5c:1e:f0:de:
99:ee:7a:1e:3d:48:c6:21:94:32:94:1f:a8:77:d1:
a8:db:69:da:4c:ff:81:c1:c7:a1:76:21:f3:64:17:
25:f2:0e:35:98:1c:f9:16:8c:68:92:41:4f:e7:90:
60:f7:57:31:b9:e6:c6:9a:09:8e:c5:ca:3a:ac:83:
ea:93:16:1b:ac:a0:b6:e0:21:3c:a4:2e:c9:56:2b:
06:29:41:be:0b:51:49:cd:de:44:09:af:ae:58:2b:
97:ff:fa:21:46:cf:f9:72:94:61:48:7c:28:c7:df:
a5:3a:ec:20:88:3c:7a:55:94:de:aa:a1:23:9e:d9:
27:22:18:38:1b:18:76:c0:47:0f:3a:5a:db:19:65:
83:d2:61:34:b3:90:de:f6:0c:78:a9:19:2b:c8:0d:
f2:ce:85:1a:e7:cf:c3:05:4a:fb:c1:51:de:7b:7a:
9a:0d:93:c7:88:a1:74:f1:ff:de:f8:60:bc:fc:9c:
5a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D7:D6:B5:37:2D:EB:C7:9E:5C:31:17:24:0A:3D:D9:BB:A2:38:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25DEB2407E3F11EFB56C36B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.48.0/23
Signature Algorithm: sha256WithRSAEncryption
87:00:fc:d1:e0:75:2c:57:6e:57:c4:e4:61:7f:1a:d2:32:eb:
33:88:1d:33:25:d3:f0:c0:bc:1a:22:ac:16:0c:3e:08:8a:53:
f0:8c:4a:43:4e:4f:28:ea:fc:4c:d0:87:82:f8:52:31:c6:41:
3a:9b:d9:6a:7e:76:14:09:b8:76:a7:a2:ac:19:52:03:bf:2f:
0d:43:d0:d3:f6:06:a4:fe:a7:7c:e0:cf:6a:8c:9b:12:99:6e:
51:be:3c:fc:40:29:a7:0f:1c:6a:88:14:4e:30:be:59:a5:d2:
86:06:1e:2d:87:7d:50:f9:49:81:90:37:45:28:dc:77:9e:57:
8c:5a:9b:86:83:9d:dc:df:f0:b8:e4:81:7e:db:74:be:c7:bb:
d8:bc:4a:6c:ef:ea:6b:0c:40:5d:bb:5e:5b:6d:c9:f6:78:02:
22:78:25:dc:2b:90:8f:de:24:40:f4:e9:fa:e9:47:c9:2d:d0:
c3:8e:4a:cf:5c:86:1b:9c:bc:71:71:8a:9b:b2:c0:80:e0:82:
88:f6:64:67:cd:52:ee:e2:9e:69:ca:02:e1:3f:11:c2:64:dd:
ae:61:97:0d:fb:32:d5:fa:47:5b:88:c1:1c:cb:a8:94:4f:bd:
0d:f1:fb:18:a1:3b:ad:f0:ce:0f:96:5c:04:f2:56:c6:88:37:
09:01:04:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:57 2024 by rpki-client on console-ams.rpki-client.org