Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38DE893A976A11EFBEAD755E762E951A.roa
File: 38DE893A976A11EFBEAD755E762E951A.roa (raw, json)
Hash identifier: Rydr+AdaWhe3QqXdShArRYEFyc2Ai1x3pRrubA03Xyk=
Subject key identifier: 8D:CF:1E:CD:21:FA:9C:AB:6E:C1:27:B7:51:A2:6E:D9:34:64:36:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01048E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38DE893A976A11EFBEAD755E762E951A.roa
Signing time: Thu 31 Oct 2024 09:26:35 +0000
ROA not before: Thu 31 Oct 2024 09:26:31 +0000
ROA not after: Thu 19 Dec 2024 09:26:31 +0000
asID: 138915
IP address blocks: 154.90.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66702 (0x1048e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 09:26:31 2024 GMT
Not After : Dec 19 09:26:31 2024 GMT
Subject: CN=67234d4b-b54b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5a:e5:0b:00:92:cd:49:5e:29:56:c4:0f:54:
0d:18:34:77:fe:08:3b:28:09:49:d2:1e:37:48:24:
45:66:40:57:8a:82:7f:aa:62:de:99:1a:b0:62:bc:
68:f7:40:d4:1d:4b:c0:ed:bc:43:12:a9:28:89:4f:
dd:14:98:a0:a7:90:45:04:3c:f6:77:e8:47:b6:9a:
53:3a:2e:27:36:b2:b2:25:8b:19:5a:7a:55:66:53:
3f:07:3d:ef:3e:f6:b8:71:2d:2d:42:8c:31:d0:e7:
96:ff:2e:d9:96:e1:74:ee:41:94:7d:06:b5:2d:07:
1e:ff:dc:ce:d5:b1:5b:71:64:66:78:99:ed:a8:2b:
e5:b5:d4:2a:3c:36:4a:85:17:a6:72:6d:88:de:3c:
5f:92:49:c2:76:a6:4a:85:05:ff:02:79:78:8e:00:
92:17:a3:f7:cc:4b:9e:7e:f0:ca:a6:60:a0:63:ef:
d5:10:b7:0a:b6:46:98:c8:bc:b0:38:7d:c9:c4:93:
47:a5:fb:b9:ee:a4:c9:79:ed:9b:88:33:a8:23:e1:
7d:fd:be:47:b1:2e:1c:74:57:cc:04:ec:ff:2c:63:
a6:b5:19:c3:15:f8:02:74:c4:61:5d:22:0e:6a:e4:
da:0b:5e:71:ca:03:46:1c:9d:2c:15:83:aa:39:bb:
d1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:CF:1E:CD:21:FA:9C:AB:6E:C1:27:B7:51:A2:6E:D9:34:64:36:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38DE893A976A11EFBEAD755E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.32.0/19
Signature Algorithm: sha256WithRSAEncryption
5c:de:17:d7:70:89:08:04:fd:10:a0:db:4e:2a:f4:64:1c:f2:
a0:84:b2:16:37:82:52:a0:31:70:86:5f:d3:dc:5e:53:29:78:
de:66:c2:fb:0b:0a:b8:9b:5b:bb:21:75:a5:c8:8f:44:6b:91:
69:29:f4:54:f5:0e:aa:b5:bf:e7:f9:fe:5f:87:9c:a3:81:8f:
4f:34:fa:84:3e:d5:1c:f2:d3:9e:d9:62:09:fe:ae:0c:ea:22:
9c:66:8e:c0:d0:af:b5:00:1b:74:04:b8:3e:4e:db:6b:64:97:
c6:ee:b9:2c:5a:b4:1d:d7:b9:11:b8:5b:6f:36:5e:5a:ab:91:
8d:aa:0a:c3:e9:e5:cd:c9:84:67:38:19:81:34:9d:66:9a:49:
00:49:c7:c4:e7:4c:77:0c:ae:35:ff:71:de:c7:93:1c:e6:a9:
02:b5:77:69:54:97:91:fb:75:5b:3f:f6:b7:a7:2f:54:9d:52:
1f:8c:21:19:f4:88:76:7b:d4:7c:89:72:e3:c5:47:ac:00:82:
14:7d:2c:83:50:52:68:80:78:7c:cc:41:83:21:76:11:78:b5:
c3:51:ff:39:27:0c:bc:34:01:c7:b2:55:fc:ed:b7:72:5a:f2:
1d:12:9e:f5:36:58:dd:b8:af:f0:2a:41:e9:f0:89:b2:62:96:
0f:a5:ae:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:27 2024 by rpki-client on console-fra.rpki-client.org