Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C33090A8F8F11EF9D5A635E762E951A.roa
File: 2C33090A8F8F11EF9D5A635E762E951A.roa (raw, json)
Hash identifier: YkCxSIAfacBoerAUpgGx7VZ6dc964SLaYZT4U1dCF58=
Subject key identifier: 28:92:68:5A:5B:74:8C:BC:C9:28:46:AA:9F:78:CA:2B:5A:2F:2E:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010064
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C33090A8F8F11EF9D5A635E762E951A.roa
Signing time: Mon 21 Oct 2024 09:30:56 +0000
ROA not before: Mon 21 Oct 2024 09:30:52 +0000
ROA not after: Sun 02 Feb 2025 09:30:52 +0000
asID: 132839
IP address blocks: 154.195.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65636 (0x10064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 21 09:30:52 2024 GMT
Not After : Feb 2 09:30:52 2025 GMT
Subject: CN=67161f50-a9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:22:7a:74:a2:f7:80:37:93:70:7f:c1:c0:8c:
d0:18:4e:07:aa:c4:10:08:9b:32:06:cf:5b:e0:42:
3e:b3:7b:53:08:6d:36:f4:2d:b7:9b:7b:40:f0:18:
5b:d7:7b:eb:a5:85:8a:9c:66:e5:6d:0e:1c:5b:9f:
83:72:66:4b:cd:12:7a:ad:7e:92:28:d1:ab:64:1c:
43:58:4c:e2:61:ba:0e:39:78:80:a0:f1:ab:3a:18:
bf:2c:5b:28:1e:7e:24:a3:97:79:eb:ab:79:76:47:
08:19:53:f9:f9:d5:83:74:56:5a:e6:4c:11:5b:bc:
3b:09:82:83:83:33:ce:ce:2f:9d:7d:6e:c4:3e:eb:
92:0c:28:75:f4:25:0d:8e:92:c0:8e:64:eb:97:88:
ff:40:0c:cd:69:22:b6:01:2f:e9:22:2d:25:33:05:
a8:6d:bc:dc:c6:41:17:09:f6:40:6f:12:8b:60:9a:
ac:42:95:dc:84:56:27:e2:8f:c2:3e:4b:48:49:13:
1a:7c:91:9a:03:44:6e:3f:94:f7:d6:00:1c:e1:f9:
d4:a9:e7:95:d0:f6:2d:ec:1a:25:d4:9d:da:0e:66:
05:01:fc:fe:1b:f5:17:8b:ef:64:2e:c2:83:74:a3:
bb:1b:fc:7f:78:46:87:00:34:73:58:29:cd:52:b0:
0e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:92:68:5A:5B:74:8C:BC:C9:28:46:AA:9F:78:CA:2B:5A:2F:2E:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C33090A8F8F11EF9D5A635E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.192.0/19
Signature Algorithm: sha256WithRSAEncryption
ce:bd:5d:d3:6f:8e:c1:81:8a:57:28:5b:30:b7:b3:47:14:a5:
c3:d3:da:b7:c2:6b:bc:ec:a0:89:f9:28:e5:3d:d7:85:cd:9b:
ba:65:9b:13:22:6c:22:9d:15:d7:c5:04:68:51:22:62:63:c4:
5e:ab:2c:75:52:bb:aa:85:33:70:4b:d0:db:49:34:05:2e:56:
7e:08:65:a1:ae:4b:d0:fe:83:3a:b8:c5:e2:47:b1:4d:96:a7:
b4:f0:5a:7b:a1:8d:08:ac:ef:6c:9b:eb:0f:11:21:f0:4e:9d:
28:a8:6e:b2:7a:14:64:06:98:53:7c:cd:20:27:4c:b7:2c:72:
b0:00:12:85:30:9f:25:a3:2f:2b:7f:d4:08:ec:a4:e5:d4:aa:
84:6e:3b:b4:3d:f5:eb:8e:03:b7:c8:fa:1f:7a:06:a0:ac:b1:
ff:0d:7f:93:4b:e7:06:a0:16:a1:65:f0:02:0e:97:b4:a5:9b:
3f:f8:4d:98:54:53:a3:8c:35:27:27:12:5f:77:40:ca:5e:63:
72:ae:82:07:be:fd:9f:80:07:95:5d:6c:02:30:01:fb:e1:86:
7c:5f:9c:aa:8c:0c:4f:49:53:d1:5e:83:30:6d:49:84:9e:67:
33:4d:ce:6e:f4:28:19:8d:c0:ee:e5:27:fe:a8:ea:80:38:3b:
28:9a:57:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:58 2024 by rpki-client on console-ams.rpki-client.org