Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B4FF9F65F1511EFB83E1B88762E951A.roa
File: 4B4FF9F65F1511EFB83E1B88762E951A.roa (raw, json)
Hash identifier: R1ql+1Mz5VrH/FNqiG+S4yFKvF7DW9uTCpKpXIcpKfc=
Subject key identifier: 28:58:77:C2:F4:8B:BC:67:6E:17:C3:60:66:13:85:1F:F8:16:4A:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E33C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B4FF9F65F1511EFB83E1B88762E951A.roa
Signing time: Tue 20 Aug 2024 16:57:33 +0000
ROA not before: Tue 20 Aug 2024 16:57:30 +0000
ROA not after: Sun 01 Dec 2024 16:57:30 +0000
asID: 5065
IP address blocks: 154.86.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58172 (0xe33c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 20 16:57:30 2024 GMT
Not After : Dec 1 16:57:30 2024 GMT
Subject: CN=66c4cafd-132e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:44:8a:38:b8:cf:81:ac:ce:47:d2:3f:f0:cf:
4d:28:9b:9a:aa:ca:d1:80:85:4c:a6:37:cc:31:1f:
99:ea:c5:31:33:0a:6c:1e:7a:9e:a1:6f:c6:18:f7:
de:a1:a7:20:da:a5:be:81:7a:ef:73:c5:57:06:fe:
ea:b5:c9:a8:0a:55:96:4c:7e:05:fa:ea:56:7f:9b:
5d:10:33:56:9a:5f:e0:9d:23:2d:e1:8d:0e:3e:bf:
c7:dd:cd:09:80:35:9f:48:42:16:30:82:bc:d7:7f:
54:c2:33:58:e4:a6:98:8e:54:cb:b1:96:72:aa:2a:
3a:c2:03:83:61:20:65:f5:9c:57:87:4c:9f:b9:45:
34:51:42:05:d3:72:75:04:d7:f7:1e:f6:4f:be:e6:
05:eb:2c:91:59:6d:d0:11:6d:3f:fa:45:6d:b9:bf:
08:9f:6f:50:b7:04:6c:e5:93:41:72:63:61:62:d3:
f4:55:fb:35:51:ca:76:e7:3c:9a:b2:2b:36:85:ef:
b1:d9:be:e4:70:31:fa:00:c9:ae:c6:f0:24:a4:ac:
b3:bb:98:98:f4:31:2f:08:b8:0f:a0:75:97:73:a9:
b8:9a:4b:01:12:fc:bd:d4:4a:3d:8b:c2:5b:f7:b8:
d2:7d:67:f3:9b:37:d2:18:2a:25:c6:cd:df:ac:a9:
0b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:58:77:C2:F4:8B:BC:67:6E:17:C3:60:66:13:85:1F:F8:16:4A:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B4FF9F65F1511EFB83E1B88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.10.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:81:16:02:a2:d8:f6:c5:28:28:14:4b:92:4b:21:ee:53:23:
1f:e4:1d:fd:78:17:5f:f9:8e:0b:c1:3c:08:1b:9d:fe:53:84:
d1:8d:d0:ce:a6:7d:5b:cd:87:a2:c7:5d:f7:d1:a6:69:e9:c6:
4a:1d:70:d0:66:79:a0:5a:66:23:a0:97:13:48:a3:16:c3:13:
d3:e3:c1:91:7e:12:2c:4d:b4:fb:2e:48:1e:06:6b:b8:24:16:
63:54:00:79:63:e2:a7:12:47:ec:18:a6:84:63:08:f5:71:54:
b9:20:1e:b9:83:78:b3:0a:3d:73:6d:6e:6d:9d:35:7c:9d:6c:
e3:ca:ad:74:6c:df:05:30:e0:7e:87:3f:ca:69:f4:aa:6e:f6:
0c:44:ce:30:21:87:b2:51:af:54:89:61:b6:d0:24:62:a4:fd:
36:5a:de:56:4f:d9:1a:b1:91:ec:60:cd:af:8b:24:81:fc:3e:
9c:9c:6c:72:9b:a6:59:6a:e4:54:4e:74:6c:e9:0c:23:a5:58:
dc:fe:87:2a:ae:71:1d:5b:d1:bb:0f:d4:4f:8f:09:21:40:af:
f5:bd:e5:8e:56:a5:c8:42:ee:78:7b:a1:a9:1c:b6:2a:a6:7f:
f5:03:c2:ba:4e:d4:5f:3b:30:e6:04:a6:48:52:db:29:79:38:
fb:81:9b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:45 2024 by rpki-client on console-fra.rpki-client.org