Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD175EAA75411EF90C58DB8762E951A.roa
File: 2CD175EAA75411EF90C58DB8762E951A.roa (raw, json)
Hash identifier: thG1Y0QLAw7KEXeJPHRWCWKaKgUNbQklN0LRP02e0Bw=
Subject key identifier: 9D:E5:D1:B1:97:DD:9B:9F:76:24:A9:1F:CC:03:29:E2:21:F9:BF:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FD1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD175EAA75411EF90C58DB8762E951A.roa
Signing time: Wed 20 Nov 2024 15:29:04 +0000
ROA not before: Wed 20 Nov 2024 15:29:01 +0000
ROA not after: Sun 01 Dec 2024 15:29:01 +0000
asID: 135097
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69585 (0x10fd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:29:01 2024 GMT
Not After : Dec 1 15:29:01 2024 GMT
Subject: CN=673e0040-a143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d7:73:d7:3e:6f:83:3d:4a:99:5f:83:1d:ed:
06:f7:2e:28:0e:6d:41:c2:c2:bb:bb:bf:64:c0:55:
7c:dc:e8:4b:ca:d8:9d:7a:76:61:32:c0:a1:38:ec:
cb:06:98:24:6b:e8:99:75:dd:05:f5:bb:de:9a:32:
0b:75:89:0d:53:4d:45:0a:6e:5e:fe:f4:1d:07:57:
da:1f:a7:67:ee:e8:28:5f:3e:cc:9b:ae:21:7b:c1:
a8:d9:6f:1d:b1:5e:65:cd:6e:f2:bf:fb:fc:e4:8c:
fd:c3:d2:06:62:b6:f6:bc:ad:00:a3:55:89:18:f5:
01:cb:35:56:06:de:c6:3c:1e:cd:85:18:e0:82:0f:
c4:7b:1d:fd:39:cd:07:58:c5:7d:6b:57:22:06:64:
85:87:83:62:9a:7e:83:6b:b8:4b:14:a5:b3:b3:ec:
1a:48:6d:35:99:21:89:b4:e4:cd:76:fa:40:96:2e:
8b:28:51:60:54:c9:bf:4e:a1:f3:e1:62:e7:5e:e0:
52:95:d4:94:e3:7b:d6:cd:20:85:97:42:be:76:95:
78:09:15:b0:4e:43:97:ae:0e:40:e3:a8:bb:6a:e2:
89:2d:b7:c7:f5:04:23:9a:93:75:07:70:ee:24:db:
b9:c7:d2:5a:d9:07:24:dd:fb:fb:58:2f:06:a7:2f:
64:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E5:D1:B1:97:DD:9B:9F:76:24:A9:1F:CC:03:29:E2:21:F9:BF:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD175EAA75411EF90C58DB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
57:67:ca:44:71:9f:14:96:d6:a4:3a:dd:5d:9b:d7:3f:97:26:
0e:a9:2e:55:ae:29:40:e2:5d:03:a8:f7:b0:d3:e2:25:30:8b:
fa:66:4c:6d:2c:29:e1:ac:9e:c0:28:dd:db:4a:3f:70:45:13:
0d:f2:d2:e8:ac:f9:77:18:5d:f4:3b:7b:00:d1:09:14:f2:bf:
af:58:a7:8c:22:01:f7:00:7e:dc:30:12:a6:ae:1a:56:75:95:
d2:88:6b:15:a1:47:c2:00:73:81:19:42:37:7c:a4:e1:01:ef:
a7:7a:fd:13:ab:4f:8c:76:9d:f2:f9:94:67:e2:00:95:d2:5e:
04:d2:12:15:06:01:6e:a8:ca:54:21:2d:ee:74:cd:d4:8e:17:
ca:26:e4:30:98:9f:20:a0:0c:f0:2f:9d:8e:e8:2e:41:df:77:
32:84:3d:11:eb:6b:a6:35:b8:f9:3e:c4:be:0b:e2:69:06:01:
e8:d3:67:51:d3:89:08:19:e1:5e:8b:d9:6d:97:ed:d3:bc:2a:
14:64:97:63:82:ff:3a:0b:c4:b5:03:dd:23:03:6e:66:66:79:
9b:2c:ab:34:da:93:2a:8b:fb:b6:40:46:39:69:90:74:2e:d7:
3e:3a:fb:89:60:4e:22:03:8e:5f:7c:97:38:fb:a0:79:56:e1:
f0:b3:a8:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 10:56:28 2024 by rpki-client on console-ams.rpki-client.org