Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AB828389CE611EF8BDB9B7A762E951A.roa
File: 4AB828389CE611EF8BDB9B7A762E951A.roa (raw, json)
Hash identifier: qrja/rPwneZEWBfoM34GnDHBQdQmBAUyijJb5IXUzQY=
Subject key identifier: 3B:3C:E9:EB:13:4F:F9:7F:64:26:0B:AF:A9:34:98:C9:BA:CF:9B:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01092F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AB828389CE611EF8BDB9B7A762E951A.roa
Signing time: Thu 07 Nov 2024 08:57:18 +0000
ROA not before: Thu 07 Nov 2024 08:57:14 +0000
ROA not after: Tue 07 Jan 2025 08:57:14 +0000
asID: 139057
IP address blocks: 154.85.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67887 (0x1092f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 08:57:14 2024 GMT
Not After : Jan 7 08:57:14 2025 GMT
Subject: CN=672c80ee-eba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:b6:68:f1:13:d0:89:50:51:2f:66:5a:2d:
46:97:f2:49:b0:55:99:37:64:ac:b1:e4:a8:a6:33:
35:16:70:b8:bb:4b:85:a7:86:1d:9b:70:e9:99:e8:
39:52:f9:2f:ac:99:fe:e2:5b:f6:61:3b:b1:cf:f9:
7e:c0:e7:e5:55:27:1c:c6:13:07:91:ed:b0:1f:ae:
b3:92:7b:c3:62:c6:16:95:42:df:99:b6:68:93:4f:
b0:dc:dd:6b:e6:f2:7c:78:d0:59:9c:64:70:a0:bc:
b7:7b:cc:18:fc:e2:bb:09:9d:11:93:ae:6b:da:df:
fa:02:28:40:88:06:f7:7d:84:10:16:bb:86:02:d4:
f9:64:d9:9b:21:d0:93:bc:5d:9e:13:55:e7:3f:a6:
b6:15:e6:ad:1e:3c:ca:cb:47:9a:53:6d:b3:4e:cc:
ae:04:ae:1e:21:db:ee:a6:d4:f5:38:e4:8e:d7:87:
64:a7:33:81:4d:a0:ea:39:c4:96:11:fb:a7:67:14:
83:f4:ed:f2:54:13:ac:d7:8e:09:99:21:5f:b5:2c:
ba:cd:dd:7e:26:49:d6:93:ff:7c:9e:11:b9:e0:2f:
af:17:bb:1b:5f:49:74:8c:d8:14:4d:30:c1:82:9f:
30:df:80:02:b3:d5:5d:2f:68:2b:cb:ac:f6:be:26:
99:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3C:E9:EB:13:4F:F9:7F:64:26:0B:AF:A9:34:98:C9:BA:CF:9B:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AB828389CE611EF8BDB9B7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.83.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:8f:7e:24:e0:17:69:79:3a:9d:98:a5:0a:85:ed:86:c7:28:
0d:d2:15:4e:07:11:6d:ce:13:77:76:66:1b:d0:62:d9:bb:ea:
cd:e4:a2:a4:21:2d:bf:2b:5d:4e:a7:4d:a3:0d:c5:ce:c1:ae:
ce:48:1c:f0:d5:a2:9f:8a:02:28:c0:4b:49:b3:6b:cf:8c:0b:
78:57:cc:0a:9f:37:11:85:4c:99:b1:e6:54:ba:7c:44:f2:2a:
2c:ed:ce:ff:52:5c:a2:c8:54:e5:5d:1a:11:e0:12:b5:0d:89:
32:01:c9:d7:bf:09:f6:89:63:06:f3:58:64:78:b0:01:4a:a6:
f6:da:95:e0:8f:34:5e:a6:2f:41:de:ee:96:a7:f0:53:dd:5e:
c5:df:6c:58:de:4d:e1:1e:c0:b8:58:c1:ff:3b:bb:cf:ab:75:
e3:47:56:99:c4:e2:0d:e9:5f:8d:14:d7:cb:a9:43:05:bc:b6:
df:3b:db:ce:e8:b8:a9:56:30:07:9f:35:79:3a:c4:bc:43:19:
45:d0:b0:26:64:29:6e:70:0a:43:ce:1a:19:73:4a:b7:21:07:
e5:c4:4d:68:0c:ec:15:e9:48:44:bc:10:f5:25:93:48:ef:bf:
b9:8e:d8:18:52:c9:2b:d2:fb:e9:2b:2a:f0:2d:83:ef:df:38:
64:be:a6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:03 2024 by rpki-client on console-ams.rpki-client.org