Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C81D4629B8711EF95F4054E762E951A.roa
File: 4C81D4629B8711EF95F4054E762E951A.roa (raw, json)
Hash identifier: MozZK0iCWfL0UJu3l2XO1jNjO7sYHEgEB/H+S6DFuT0=
Subject key identifier: D5:74:46:00:A2:EC:0F:A2:57:E0:D9:A2:91:91:46:24:17:A1:3F:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01081B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C81D4629B8711EF95F4054E762E951A.roa
Signing time: Tue 05 Nov 2024 15:04:48 +0000
ROA not before: Tue 05 Nov 2024 15:04:44 +0000
ROA not after: Mon 09 Dec 2024 15:04:44 +0000
asID: 20457
IP address blocks: 154.198.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67611 (0x1081b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 15:04:44 2024 GMT
Not After : Dec 9 15:04:44 2024 GMT
Subject: CN=672a3410-529e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e7:54:2d:c9:62:cb:fc:6c:89:dd:4f:3e:04:
10:04:53:82:79:4b:cf:31:4d:ae:16:55:72:f1:bc:
aa:19:09:13:85:65:a9:d4:0a:ad:8a:83:83:1e:56:
d2:11:89:f4:03:f0:83:93:73:71:2e:53:0c:66:1c:
61:da:9d:d1:9f:57:47:87:67:b5:97:67:3b:96:f4:
0c:e6:76:97:93:8a:ce:fb:86:8c:33:89:8b:da:0e:
8b:7c:e9:39:65:ca:22:43:ea:ca:92:99:e1:79:6e:
3a:d7:3f:5d:76:48:8d:9a:97:01:b7:8c:4d:a9:01:
69:64:e8:8f:03:17:76:32:f5:ee:49:78:56:27:4e:
88:ab:63:20:90:2a:12:f7:f2:9f:5f:80:17:af:79:
e2:d5:63:53:9f:cf:55:1f:bd:58:7f:01:8e:a6:74:
52:88:72:a3:32:60:dc:42:5c:fa:08:40:a0:56:4e:
d3:ed:24:da:55:dd:f1:27:eb:ea:95:6b:12:08:ab:
f6:16:de:92:bd:c4:f0:8e:7e:bc:02:cd:ec:5a:20:
99:0c:99:64:2b:39:3a:f5:f2:9c:4e:f4:cc:67:9d:
f3:92:04:01:ec:9b:e7:7d:a7:d6:75:9b:6d:40:5a:
4a:31:83:27:ef:7c:b4:ac:02:0f:17:23:fa:56:d6:
68:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:74:46:00:A2:EC:0F:A2:57:E0:D9:A2:91:91:46:24:17:A1:3F:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C81D4629B8711EF95F4054E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.11.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:47:39:2a:8b:1f:03:33:2b:b0:15:d9:f7:af:62:ae:cc:5c:
f3:75:c8:75:7d:90:1c:87:42:78:3d:15:78:60:6a:e5:d6:2c:
f9:5f:7d:cb:9d:af:a1:c1:fb:71:d8:69:83:85:6d:a8:bf:2e:
08:db:8b:ec:68:cd:d9:9f:01:a1:ab:12:1b:05:67:f1:bb:ee:
d0:fd:fd:d3:9a:00:3a:79:53:57:a0:09:e5:cd:f4:9c:ae:7d:
8d:37:d3:c1:5a:ba:6b:13:00:20:49:19:93:c7:ee:39:99:c0:
eb:dc:03:a6:60:b7:4d:9b:8c:3c:2b:82:ce:1f:3f:34:6d:b7:
fb:4c:a2:53:54:55:fe:e8:93:c5:0f:b7:a4:de:81:24:54:e2:
1c:22:e6:da:42:4d:b1:3b:f8:a8:73:8d:18:9f:ae:0b:5b:a9:
06:09:6d:32:b0:9f:d9:9d:ed:fe:c3:80:15:31:d2:a1:4a:36:
80:a2:16:f0:25:0c:d0:70:a1:71:ae:73:73:5d:d7:c9:c9:a5:
20:91:6a:7b:b1:4c:17:0b:43:7f:1b:c0:aa:3f:2a:29:e9:b3:
f7:d6:76:b8:cc:36:29:87:17:77:03:7f:82:bd:d7:e5:f4:8e:
e8:9c:1a:f1:8e:0e:e4:2d:c8:74:94:fc:a9:fc:6c:6b:51:9a:
34:ae:48:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:08 2024 by rpki-client on console-ams.rpki-client.org