Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DF8699073FB11EF9A2A679F762E951A.roa
File: 4DF8699073FB11EF9A2A679F762E951A.roa (raw, json)
Hash identifier: +c4rJ8ALKcYTBhYDJVBBEJaHbbp6qorP3MlccsDprzk=
Subject key identifier: A1:46:62:29:95:24:BA:86:C4:B3:3A:43:2C:AD:C1:59:D0:98:2C:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF75
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DF8699073FB11EF9A2A679F762E951A.roa
Signing time: Mon 16 Sep 2024 07:14:25 +0000
ROA not before: Mon 16 Sep 2024 07:14:22 +0000
ROA not after: Sat 30 Nov 2024 07:14:22 +0000
asID: 142403
IP address blocks: 154.211.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61301 (0xef75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:14:22 2024 GMT
Not After : Nov 30 07:14:22 2024 GMT
Subject: CN=66e7dad1-bbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:00:24:94:7b:b5:dd:16:80:52:5b:b9:c3:e7:
4a:54:ed:c6:80:41:26:06:a4:51:a0:17:cc:27:fd:
b8:57:24:7d:20:78:ed:02:63:ad:15:54:53:e6:39:
dd:ba:2a:16:af:6e:b8:c5:ad:12:bf:00:1e:59:b3:
8a:0b:dd:52:c3:57:41:9c:2d:57:af:ab:d0:b7:6f:
9a:01:96:9c:96:6a:00:91:5f:83:14:6f:39:e7:8a:
28:46:77:14:c7:06:20:1b:da:20:ba:af:0a:b3:d9:
e0:17:fa:d6:41:0d:79:20:00:8a:9c:f1:67:d6:8a:
9a:9b:0c:58:c3:75:b7:19:e8:6e:2a:de:ea:b5:e5:
31:bf:21:98:a4:16:9f:9c:06:0a:71:9d:0d:52:47:
10:fb:b3:39:14:ad:28:f7:90:25:f5:31:cc:7a:25:
19:ea:a4:44:a1:02:5e:8d:66:d5:d8:20:c2:40:34:
1d:5c:9f:09:c6:35:e0:22:51:5a:31:d4:cc:3c:fc:
7d:88:63:98:45:c6:4b:f4:15:c1:c6:ff:4b:bf:4d:
3b:92:cb:81:cb:d3:86:5b:eb:0d:cd:ed:0f:13:2c:
e5:e8:55:4e:a9:0d:1f:c7:f5:56:75:97:16:be:e7:
96:e9:e6:8f:0c:ea:61:13:10:c0:16:63:b3:cc:d9:
47:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:46:62:29:95:24:BA:86:C4:B3:3A:43:2C:AD:C1:59:D0:98:2C:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DF8699073FB11EF9A2A679F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.13.0/24
Signature Algorithm: sha256WithRSAEncryption
79:de:1c:bf:18:50:7e:94:d6:78:27:3d:03:d0:3b:33:0c:d7:
51:35:cf:d8:80:d9:83:d9:0f:ba:aa:44:e8:28:d9:5b:14:14:
df:9d:c2:6f:65:53:ec:a1:02:01:69:29:af:d0:27:c6:95:80:
36:42:09:cd:9b:78:1e:c8:f6:ac:ae:6e:c8:09:10:21:0a:39:
42:0e:de:98:3b:5f:0b:d1:9c:cc:bd:0c:58:ba:91:f0:2a:f6:
e7:92:65:fa:cd:34:49:93:7f:12:32:7e:a2:ba:b5:f7:13:16:
46:44:f4:6b:60:15:68:d9:c6:64:ae:51:35:5d:a8:1d:9b:63:
e5:f1:9d:be:4e:30:29:f6:be:6e:6f:19:e0:a1:22:80:50:2a:
ee:1e:9b:3c:d4:0c:6c:14:93:d4:13:68:60:0f:2e:e9:28:3d:
99:33:01:ca:9f:df:9e:89:c5:cb:60:8e:4b:fe:12:5d:6b:71:
fa:9a:8c:6d:4b:a8:70:9a:d2:06:86:bc:5e:a2:b0:78:2e:17:
c0:da:32:29:4e:3f:0c:49:49:c1:51:41:f3:de:44:d7:dd:00:
f1:d9:86:49:14:d0:fc:12:ff:b7:97:2d:b3:b9:68:5f:76:d8:
b1:bb:c1:a4:7c:e7:91:c2:f4:82:ad:ff:21:32:fb:23:2e:d5:
e2:7f:d7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:02:36 2024 by rpki-client on console-fra.rpki-client.org