Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/516ADF6E9B8211EFB108DBAD762E951A.roa
File: 516ADF6E9B8211EFB108DBAD762E951A.roa (raw, json)
Hash identifier: GUpf51HZavZ05iz5F67rRpq/32NHu7niLdDW0dkb78s=
Subject key identifier: 1A:03:D6:97:BD:84:93:92:7E:5C:57:0F:5E:73:89:E9:6E:35:E5:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107F5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/516ADF6E9B8211EFB108DBAD762E951A.roa
Signing time: Tue 05 Nov 2024 14:29:09 +0000
ROA not before: Tue 05 Nov 2024 14:28:55 +0000
ROA not after: Mon 20 Jan 2025 14:28:55 +0000
asID: 135097
IP address blocks: 154.216.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67573 (0x107f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 14:28:55 2024 GMT
Not After : Jan 20 14:28:55 2025 GMT
Subject: CN=672a2bb5-15b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:c3:10:2b:db:eb:ec:89:57:c3:b3:a9:d1:
b9:c2:fa:4c:1f:58:38:25:41:13:19:76:98:62:7d:
11:e4:dc:cb:e5:64:f4:f9:a9:9d:4c:47:08:30:06:
03:9b:00:fd:36:d7:14:af:b2:61:c6:0b:13:e1:6b:
27:2e:32:9e:ff:81:4f:72:7a:ca:11:0a:3d:61:59:
f9:78:24:db:57:70:42:eb:c8:51:fc:a3:12:bd:0f:
d3:92:ff:98:d4:47:7e:59:ea:bc:e2:d7:1f:ce:c6:
ad:52:2f:cc:54:cf:93:5e:5c:ba:9b:e9:c9:89:9c:
97:ab:71:1c:16:45:2b:7a:d6:dd:3d:d6:d2:7b:03:
af:a8:77:f5:dc:ee:e0:85:b6:60:57:b0:b4:08:00:
24:ff:32:ae:57:d6:ae:34:f7:ea:0a:36:2a:52:d0:
4e:76:fa:14:04:a9:5e:3f:da:79:aa:6b:ae:5d:ca:
e5:f0:32:41:c0:d3:79:0d:70:19:75:db:c4:5f:c0:
3b:89:ef:b0:b3:01:2a:f4:9f:0d:f6:3a:2f:55:55:
40:f3:85:3d:64:76:db:52:5c:9b:ef:e8:fe:16:75:
ce:2b:9d:f2:b9:c8:b9:2e:8c:f7:45:5c:03:f6:e8:
e4:f9:3e:a9:c7:5f:8e:fb:1d:2a:36:16:5f:31:05:
c1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:03:D6:97:BD:84:93:92:7E:5C:57:0F:5E:73:89:E9:6E:35:E5:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/516ADF6E9B8211EFB108DBAD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.4.0/22
Signature Algorithm: sha256WithRSAEncryption
23:f2:97:a9:34:28:52:76:be:4e:2c:e6:03:ce:29:1c:d2:5b:
4d:89:a5:8b:17:9a:a5:d9:44:92:8c:d9:9f:ba:c5:df:60:fd:
e4:9c:2a:b9:44:90:98:ff:51:11:5e:d9:e6:0a:eb:cc:72:00:
98:8e:9a:e0:f9:b4:ba:9b:db:a4:21:bd:87:27:1f:76:88:36:
91:85:cf:5f:07:23:64:17:ad:55:d9:d7:63:28:9e:56:15:82:
53:a3:0d:06:60:a5:6c:0e:b2:47:d8:81:2b:ce:63:34:ce:fb:
f4:4f:cd:07:f4:d7:fa:6b:47:01:81:b5:2f:47:6b:2d:e8:7b:
74:9d:9d:a2:b3:47:df:cd:02:1b:76:77:05:72:33:17:02:51:
ee:9d:a1:90:91:3f:67:75:e3:cc:90:20:48:ff:e1:96:1a:df:
96:db:82:d7:05:2c:ec:b7:fb:80:89:c3:4a:99:3d:d3:d5:54:
c8:ef:05:d9:94:a6:ee:33:c5:d5:cf:93:f6:f3:ca:a0:28:5a:
7b:6a:7f:da:57:9c:fa:7d:72:65:22:46:d9:91:05:c4:39:51:
b5:5a:a9:7c:17:2a:ad:9e:97:0b:e9:bc:92:ea:02:ce:86:b1:
5f:79:d1:22:34:2a:09:5c:3b:8d:8e:94:91:c7:78:bc:e0:a6:
70:c9:ce:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org