Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4756E76A911A11EF8F2D6595762E951A.roa
File: 4756E76A911A11EF8F2D6595762E951A.roa (raw, json)
Hash identifier: Svc3BVWrZIsgEWzbU/ddrsDPqFDAvtQ9djavgbBrRI8=
Subject key identifier: C3:54:F1:A5:99:07:CF:AF:76:6C:56:1E:33:C8:22:C1:DC:BD:7E:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4756E76A911A11EF8F2D6595762E951A.roa
Signing time: Wed 23 Oct 2024 08:39:12 +0000
ROA not before: Wed 23 Oct 2024 08:39:09 +0000
ROA not after: Fri 24 Oct 2025 08:39:09 +0000
asID: 136744
IP address blocks: 154.211.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65744 (0x100d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 08:39:09 2024 GMT
Not After : Oct 24 08:39:09 2025 GMT
Subject: CN=6718b630-7701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f9:9f:da:cc:0e:65:92:90:2e:24:64:02:80:
4e:fc:4b:10:f2:9d:9c:40:32:e5:de:45:41:b3:e9:
34:91:cc:ba:6d:e8:84:a3:72:19:be:82:8e:ee:a8:
bb:32:a2:4e:6a:f2:c8:05:3c:8f:f3:bd:a0:3a:e3:
1e:a7:09:d8:cc:2a:0d:23:a3:ea:3b:49:ef:86:f4:
d4:b4:78:24:b4:8b:2a:e0:46:d5:9f:b4:aa:c4:69:
1b:80:77:cb:2f:97:4e:29:fb:56:84:6a:64:2c:57:
5f:5d:38:6c:fb:25:bb:66:3a:93:e5:94:b4:72:8c:
96:1c:ec:3b:f5:55:eb:e9:84:7c:7d:a3:b9:a1:07:
d1:2a:65:45:49:5b:b7:f6:ee:11:0f:c4:24:91:bc:
c2:2b:81:af:8c:d2:c7:94:17:e0:2d:69:e6:74:57:
44:34:30:15:ef:f1:35:9b:9f:bf:77:fe:41:ed:f8:
94:52:06:1b:94:2e:1e:d1:77:e4:23:7a:5c:4e:9d:
97:5b:aa:25:3c:88:c4:81:0f:1a:76:ed:03:75:49:
2b:a1:d3:64:38:a4:4b:34:4e:28:3d:92:2e:2b:82:
48:ad:53:0b:68:b4:e1:eb:d0:cb:df:39:42:40:b6:
43:9a:e9:7b:3d:3a:73:86:6d:51:7c:46:be:b8:2e:
a8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:54:F1:A5:99:07:CF:AF:76:6C:56:1E:33:C8:22:C1:DC:BD:7E:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4756E76A911A11EF8F2D6595762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.210.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:9e:76:b6:0e:d4:18:26:9f:eb:e1:9d:a5:2b:70:62:df:78:
57:56:62:d2:6f:1e:a5:0c:bd:02:45:9e:77:05:5e:72:41:69:
cb:b2:25:8d:10:0b:98:10:a0:fb:f3:5d:15:69:d1:8d:24:75:
9a:85:c4:c5:71:ab:0a:d5:8f:d8:15:04:95:07:8f:01:96:d5:
cb:f5:2b:85:db:68:a7:23:af:26:79:6b:72:79:c9:ac:5c:41:
9e:47:02:d9:e0:9d:39:3d:26:ca:6f:e5:84:f7:37:bb:d4:56:
85:2b:f7:61:2f:7a:92:da:18:c3:26:e8:6a:a8:7c:30:f6:f7:
90:4e:b0:3d:3c:1a:20:89:2a:52:db:a5:72:c7:8c:e3:91:4f:
be:e6:ff:84:80:30:06:3e:94:d8:6b:c8:e4:6b:62:43:75:95:
47:dd:13:cd:4b:58:49:10:d6:61:53:5d:c3:44:ff:47:2d:9d:
b4:b9:ac:2c:83:b6:b2:f5:e4:85:88:b3:f9:88:0b:95:72:ee:
09:6a:fc:a2:4d:f6:d9:9d:36:d9:5f:95:7c:1f:17:f3:88:f1:
38:5d:0a:c6:c5:09:78:1c:81:80:3a:b5:7c:33:9e:44:3e:99:
54:a3:f7:9b:db:11:b4:7a:ed:0f:ad:2d:cd:c5:bc:d8:86:3c:
63:58:d1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:05 2024 by rpki-client on console-fra.rpki-client.org