Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D6CA9309D1A11EFBAAAA8BB762E951A.roa
File: 4D6CA9309D1A11EFBAAAA8BB762E951A.roa (raw, json)
Hash identifier: D6KEu99sJmLzmlMBrCmDX3nJTiURwMEw+jeXO1jmcFY=
Subject key identifier: 8C:8C:47:11:9D:35:FA:43:D7:3A:E6:F5:55:72:35:C7:43:34:47:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010979
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D6CA9309D1A11EFBAAAA8BB762E951A.roa
Signing time: Thu 07 Nov 2024 15:09:37 +0000
ROA not before: Thu 07 Nov 2024 15:09:33 +0000
ROA not after: Wed 11 Dec 2024 15:09:33 +0000
asID: 203020
IP address blocks: 154.202.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67961 (0x10979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 15:09:33 2024 GMT
Not After : Dec 11 15:09:33 2024 GMT
Subject: CN=672cd830-7b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1a:f3:64:d2:07:1b:a0:4f:95:1a:7c:79:bc:
d8:91:08:23:f5:fa:42:94:cc:85:b5:0d:56:3e:8d:
65:46:49:5a:7b:b5:91:9b:ca:e0:d9:55:af:0b:3b:
d4:9a:dc:92:19:aa:c1:8e:e4:a3:ad:d8:d0:71:25:
39:7d:15:d0:55:95:a7:45:89:f8:26:e1:07:c1:8a:
06:f8:0d:e6:3d:64:07:7d:ca:c0:e1:34:97:dc:de:
a7:34:10:01:bf:53:f4:8d:6c:22:a6:ac:a4:dc:89:
8c:03:95:b8:31:d8:30:d0:a7:ff:03:41:19:c6:c9:
41:d0:c0:53:cb:c2:61:c3:fa:67:3c:67:43:da:4d:
dc:b0:9b:a3:85:82:10:7c:7e:cd:d9:79:f4:fc:cc:
76:53:a2:4d:25:d2:77:b1:68:bb:ab:e7:2e:2e:c1:
78:29:b6:e1:c8:cf:6c:bc:71:af:8b:ce:5d:aa:63:
e1:f4:a7:77:13:2f:ba:95:f2:f3:e3:d4:48:b4:d8:
57:35:cb:26:b0:d7:bd:34:a0:b0:98:71:2a:b6:f7:
03:3c:7b:b8:ac:ee:e2:c2:8b:54:af:ce:7c:ca:d9:
c8:9a:95:af:cf:f6:38:b0:aa:69:62:8a:f8:12:4c:
ac:5f:b2:dc:60:0d:4e:18:17:ae:6e:0a:ef:94:c7:
11:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8C:47:11:9D:35:FA:43:D7:3A:E6:F5:55:72:35:C7:43:34:47:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D6CA9309D1A11EFBAAAA8BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.101.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:cf:f2:ed:89:91:86:03:b9:d6:8d:2d:06:f3:91:a8:a1:bb:
e5:85:88:3c:93:14:43:6e:9e:e2:6c:a5:5d:81:98:3d:6c:f7:
40:1e:d6:63:1a:7e:3b:ae:2f:d2:b2:33:cc:98:65:4a:84:da:
46:b9:c4:61:c7:93:a6:c7:da:93:a3:7e:15:53:c6:37:d6:fe:
b1:c2:df:fc:2a:68:1e:d6:3d:2d:c6:30:52:4c:50:60:92:ad:
e0:4f:0f:cc:96:32:f4:65:56:b6:8d:f5:fe:f5:a1:aa:52:2b:
81:73:86:a8:4a:a3:9b:c2:8e:b1:45:d1:9c:a9:c2:3c:4a:38:
dd:00:f6:ef:2c:55:96:84:80:de:57:d7:c8:8a:06:05:39:6e:
a1:41:55:b4:a8:5b:12:b6:70:c2:28:35:32:2c:3a:b5:5e:2f:
d9:48:08:56:0b:77:f6:0d:9f:61:e4:fb:d9:ea:61:8e:e4:a8:
fc:48:e2:4e:34:67:9e:14:6a:47:bd:54:b7:92:ea:6d:b3:75:
4f:87:5c:1c:73:c5:64:50:16:c5:74:08:40:68:8d:45:e1:6a:
51:bd:8a:6c:a7:b8:94:11:95:4b:38:9e:1b:78:7f:2e:35:a0:
b7:39:fe:c6:c7:fe:9b:3b:6b:37:fb:66:30:23:82:11:6a:bc:
3c:2d:b0:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org