Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26DAF0A8A9CF11EFAA4BD555762E951A.roa
File: 26DAF0A8A9CF11EFAA4BD555762E951A.roa (raw, json)
Hash identifier: SGnf80PIImFDBm66Ndf+JZsxc17Kc/5cU2+pvAHqkDY=
Subject key identifier: FA:3E:84:E0:CE:FD:13:95:AC:91:F3:8D:15:21:8E:F6:B3:D1:86:EE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01120A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26DAF0A8A9CF11EFAA4BD555762E951A.roa
Signing time: Sat 23 Nov 2024 19:14:25 +0000
ROA not before: Sat 23 Nov 2024 19:14:21 +0000
ROA not after: Mon 02 Dec 2024 19:14:21 +0000
asID: 3561
IP address blocks: 154.197.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70154 (0x1120a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:14:21 2024 GMT
Not After : Dec 2 19:14:21 2024 GMT
Subject: CN=67422991-01bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5e:8d:61:3d:73:04:47:9c:4d:9c:da:4f:a5:
44:66:81:01:56:65:32:10:cb:4d:5d:d6:e8:e3:c4:
69:06:18:1a:83:63:4c:9a:38:df:9b:7b:05:db:a1:
5a:ec:97:07:ff:bd:ff:e5:f1:38:20:38:0f:f6:0f:
ca:5b:72:6c:63:16:25:a7:25:e9:b2:eb:fc:39:d2:
f6:4d:a3:87:0a:e1:25:0d:8f:23:28:ba:17:33:f0:
81:82:95:b3:e3:aa:5a:32:86:da:88:03:fc:f1:cf:
91:ad:85:4d:72:dd:22:6e:c0:f0:87:a1:2e:ef:b1:
82:42:4a:91:e8:de:d7:9e:79:07:55:b4:44:60:f7:
b0:a6:6e:97:b0:bf:8d:a1:1a:d3:bc:f0:7e:88:3b:
cd:a6:91:68:ca:04:05:7f:67:09:e5:d2:c3:9e:a0:
b5:50:3b:98:ee:eb:ec:19:4f:bd:9b:cf:82:02:42:
3d:29:93:30:af:e2:88:7e:5d:6d:8b:41:f1:76:0c:
f7:09:cb:06:e3:08:54:5c:fc:9a:bb:d0:da:e0:00:
a7:8b:2b:51:55:4a:df:6e:dd:fb:2c:41:d7:6e:c7:
88:32:96:4a:ce:14:ac:1c:75:85:80:fb:8a:71:a0:
26:d0:36:64:f9:5b:cb:86:9a:39:89:ba:57:0a:f7:
17:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:3E:84:E0:CE:FD:13:95:AC:91:F3:8D:15:21:8E:F6:B3:D1:86:EE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26DAF0A8A9CF11EFAA4BD555762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:98:06:9c:4f:cb:31:73:c3:c2:1f:a9:43:8a:e8:88:02:93:
9c:9b:eb:23:84:a6:f5:d5:7a:f7:85:5b:f8:e3:71:a1:7e:62:
ab:e1:41:d5:cc:e3:f4:88:27:b6:2b:e6:70:09:23:48:64:1a:
23:79:4c:b4:a1:18:ed:1e:da:67:38:2e:f6:22:19:9c:a0:2c:
1f:a4:4e:63:05:f6:99:de:ac:0a:1d:a9:c8:de:0b:a7:e2:8d:
30:61:ab:ae:68:6c:73:e7:27:93:2b:3b:c1:d1:74:43:ab:be:
e1:03:73:df:d6:1e:ce:0f:e6:2e:15:dc:cf:f8:72:cc:b3:2e:
cc:fc:e5:4f:d1:d3:48:9f:87:d7:e0:d7:f7:9f:3f:cb:03:5a:
ba:fa:15:c4:0a:71:62:ca:75:fb:1c:16:bd:d3:5a:d6:08:cf:
fd:f5:cc:74:fe:e2:bc:1f:3c:73:95:79:f0:68:c7:08:00:23:
11:19:8d:63:ac:55:16:b8:a4:e4:e5:8f:bc:99:00:75:f4:6f:
2f:81:97:2b:e8:e5:6a:50:53:54:c1:7a:e9:b1:89:12:5c:a1:
aa:f6:0c:42:c1:d8:e8:30:c0:f1:8c:c6:15:81:04:87:b1:94:
9c:8a:47:49:90:f4:c0:13:4f:01:e3:fb:ae:c2:9a:ce:94:a2:
d1:a5:61:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:24 2024 by rpki-client on console-fra.rpki-client.org