Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F3254A696B111EF8DB3584C762E951A.roa
File: 3F3254A696B111EF8DB3584C762E951A.roa (raw, json)
Hash identifier: KvgrjOzx++jvj+Ba5EEVovUU9ID/ZHIbj3TwNTUvNJc=
Subject key identifier: 4F:DA:14:8E:18:4A:39:7B:CA:65:F7:BC:D6:0C:F8:26:CB:24:59:82
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0103FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F3254A696B111EF8DB3584C762E951A.roa
Signing time: Wed 30 Oct 2024 11:22:29 +0000
ROA not before: Wed 30 Oct 2024 11:22:25 +0000
ROA not after: Wed 04 Dec 2024 11:22:25 +0000
asID: 142062
IP address blocks: 154.86.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66555 (0x103fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 11:22:25 2024 GMT
Not After : Dec 4 11:22:25 2024 GMT
Subject: CN=672216f4-2d27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bb:ec:55:95:19:18:30:4c:73:72:0d:f5:69:
eb:26:8d:45:68:b9:b8:9e:bf:4f:ff:41:3a:a2:b5:
9c:93:0e:6a:64:05:a4:74:09:7f:c7:6c:73:6f:c0:
8a:e2:5d:43:ca:5b:04:d1:d0:b6:fd:a0:cb:72:35:
8a:59:36:e0:13:58:89:49:5e:c9:38:2a:5c:bf:95:
9d:69:ec:b0:d2:d2:e0:27:cf:a0:65:6a:ae:b4:76:
a8:8d:1a:c3:3e:81:0a:f7:61:cf:37:02:83:e5:74:
28:02:06:c5:ea:d9:97:4a:b6:8d:3c:0c:fd:6e:19:
9a:d6:ca:08:8a:b3:2b:15:1f:5d:6f:70:f1:a9:5e:
3d:fb:89:50:e9:96:90:b4:39:eb:a4:0b:aa:fa:dc:
ac:57:53:47:74:a0:c2:f3:9b:b7:c3:f6:7a:79:14:
48:55:09:e7:fa:70:bb:10:35:96:0b:ce:f0:c8:8e:
57:9d:a7:37:93:d4:c9:c3:e0:46:74:2f:9f:42:ad:
1a:71:56:ef:73:b4:54:7e:e0:ae:66:9e:08:2d:00:
bc:45:92:4e:25:8b:e0:cc:07:54:8c:9b:06:8e:e0:
b2:56:01:54:d6:b2:3a:6a:dc:a2:50:b1:98:03:4a:
26:4e:a3:a3:66:95:38:c1:45:a8:4d:ce:db:5f:69:
20:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DA:14:8E:18:4A:39:7B:CA:65:F7:BC:D6:0C:F8:26:CB:24:59:82
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F3254A696B111EF8DB3584C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.64.0/20
Signature Algorithm: sha256WithRSAEncryption
78:30:08:92:93:d1:0e:19:75:d3:ac:f5:02:0a:97:b0:72:6f:
c6:a6:a6:47:19:6c:e8:0f:49:37:ed:94:9d:e3:a5:e4:1f:c4:
36:17:91:2a:61:70:8d:d2:ad:04:ae:40:42:e6:55:cd:61:7d:
53:ba:6b:c3:f3:a1:78:e9:20:5d:0a:3d:17:7d:ea:c8:7c:cb:
bd:32:83:4f:ba:43:a4:71:01:40:b6:9e:32:33:87:07:23:98:
aa:cc:b8:e5:bf:63:a1:9a:99:42:b5:8d:e3:f1:c2:78:ce:2b:
d3:a5:0d:fe:b5:b6:79:c0:64:e4:c9:e6:07:bf:8e:64:31:50:
4c:72:74:ac:f5:d5:8a:03:84:56:45:ef:a4:b3:4e:30:f1:ac:
e1:79:eb:18:35:0a:ed:60:43:a9:06:a8:da:fd:9b:ab:36:f6:
fb:26:4c:ac:ea:f1:aa:e4:8c:a4:e5:76:d4:14:68:0c:e1:5d:
38:90:32:5d:2a:42:77:47:29:32:99:2f:ff:c4:fb:66:1c:29:
54:9b:9e:c3:14:c9:24:54:cc:98:6a:ba:34:a1:8a:2c:63:c7:
a8:32:f4:c5:14:3d:7b:58:12:d8:c3:a4:81:30:9c:09:93:d8:
0d:2c:9a:10:a6:75:c1:dd:e5:78:80:cf:35:4e:fa:cb:59:97:
76:80:c8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:04 2024 by rpki-client on console-fra.rpki-client.org