Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4341B324912111EF8431B342762E951A.roa
File: 4341B324912111EF8431B342762E951A.roa (raw, json)
Hash identifier: TRhPDnzAojRCytfzKEq4C/JLqwPbu5RNHaML9kOldrc=
Subject key identifier: 55:BE:FC:22:DE:74:7A:5B:51:81:8B:A1:CE:E0:68:91:2D:8E:CA:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010102
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4341B324912111EF8431B342762E951A.roa
Signing time: Wed 23 Oct 2024 09:29:12 +0000
ROA not before: Wed 23 Oct 2024 09:29:08 +0000
ROA not after: Fri 29 Nov 2024 09:29:08 +0000
asID: 203020
IP address blocks: 154.223.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65794 (0x10102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:29:08 2024 GMT
Not After : Nov 29 09:29:08 2024 GMT
Subject: CN=6718c1e8-80c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:58:96:f9:cf:8e:da:ec:56:35:db:48:3f:d0:
f5:52:e9:26:b9:62:96:22:a6:18:c2:b6:66:5f:bd:
c0:1c:23:56:49:0e:62:6a:bf:41:9b:ab:8f:9d:27:
d8:0b:c7:57:23:11:2d:07:4e:dc:13:70:15:97:fb:
00:f7:e1:1a:17:08:49:2d:a9:51:65:1a:08:61:f7:
c0:e9:3f:69:ee:77:50:22:12:81:3b:61:f1:97:b5:
45:17:3c:59:5b:16:5a:d9:cf:ab:66:80:8d:7b:33:
31:db:e9:da:07:f1:f1:16:7d:bd:ce:7d:47:06:b4:
e3:7b:0b:6e:08:64:5c:1b:be:0b:ec:9d:7f:db:9a:
53:cb:aa:a2:2b:f7:19:61:53:e4:bb:4e:ed:80:04:
45:fc:64:c3:e7:64:94:30:3e:a7:8d:ce:64:f2:60:
d5:af:88:c3:d2:dc:44:ae:a0:cd:c2:d3:d8:13:31:
a0:d6:33:ee:7d:8b:82:a0:0b:ab:55:3c:fa:f8:d8:
ab:25:bd:38:28:0b:51:47:ba:1e:43:1b:26:2a:60:
88:bb:8b:77:80:5d:ed:20:bb:52:81:ce:05:d1:38:
34:9f:b6:a4:d0:e3:5b:2c:0f:20:84:6f:23:5c:75:
e9:c9:81:bb:59:c4:75:73:a7:3a:07:4c:1f:d8:12:
d0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BE:FC:22:DE:74:7A:5B:51:81:8B:A1:CE:E0:68:91:2D:8E:CA:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4341B324912111EF8431B342762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:7f:bd:ec:43:c3:c7:a4:ea:49:f4:d9:74:da:c9:93:2d:f1:
53:cc:68:78:a8:ae:da:d9:f5:45:22:1a:05:3d:48:38:26:a3:
91:76:4c:d6:40:6a:ef:53:38:e8:5f:cf:44:cc:7e:71:9d:a6:
b0:1f:61:17:04:f9:e2:60:50:5c:77:d9:94:f4:57:0d:27:e5:
17:60:26:a8:c4:0f:b8:79:e6:09:8e:62:22:6e:7b:98:45:15:
34:af:46:ba:04:2b:33:8f:9a:33:f2:0e:7c:05:cf:30:00:75:
4d:ab:1d:c9:c3:a4:ad:86:65:3a:d1:80:11:30:71:99:08:95:
8e:c5:24:59:0b:74:d2:3c:80:dd:a1:4c:6a:f2:e3:fe:1e:2c:
05:0d:f6:a8:1f:0d:5e:e3:3d:15:a9:68:a9:fe:f3:21:4b:87:
a0:9d:23:af:e6:0f:3b:4c:d4:f8:7c:4b:79:12:ee:ef:a7:b5:
88:e2:fa:43:7b:3f:6e:0f:b4:55:03:07:f8:c8:8a:67:6d:8c:
4d:f1:ed:4b:64:49:cc:af:96:1e:9f:45:dd:f3:a7:e9:38:41:
ee:f6:2f:5a:7f:81:20:59:a6:e2:6b:35:be:02:ed:c5:60:e3:
1c:3e:4c:59:c8:80:c5:58:dc:15:a5:56:ee:03:f1:c4:ba:f8:
fc:c6:8b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:02 2024 by rpki-client on console-ams.rpki-client.org