Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51A1C4C8EFEF11EE8CA06088775412E6.roa
File: 51A1C4C8EFEF11EE8CA06088775412E6.roa (raw, json)
Hash identifier: o7ifQzWL/SqyvF6sc2YAyTcr1M4D+6H9hxNUusMu42A=
Subject key identifier: B8:15:D2:16:6D:92:18:4D:37:37:46:D0:DB:5A:99:B2:A6:A4:7A:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A7A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51A1C4C8EFEF11EE8CA06088775412E6.roa
Signing time: Mon 01 Apr 2024 06:16:04 +0000
ROA not before: Mon 01 Apr 2024 06:15:59 +0000
ROA not after: Fri 28 Mar 2025 06:15:59 +0000
asID: 132839
IP address blocks: 154.197.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42920 (0xa7a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 1 06:15:59 2024 GMT
Not After : Mar 28 06:15:59 2025 GMT
Subject: CN=660a5124-a23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fa:21:8b:ba:55:70:95:d3:07:a7:df:64:31:
5f:70:9f:96:89:1f:8b:52:6c:74:d7:72:ec:5d:b2:
12:91:76:50:0b:ca:e1:89:3d:16:1b:f0:d3:60:45:
00:01:8e:e2:d3:e4:dd:47:59:79:bb:c6:24:f3:fb:
eb:32:19:b8:21:73:e8:5e:3a:f4:85:b0:3e:01:5c:
4f:7e:17:c4:eb:60:8f:6f:ea:84:d4:bd:5f:5d:e7:
de:cc:a6:cc:57:df:ee:68:f0:80:b0:61:0a:d1:d8:
02:54:85:ae:52:2a:23:82:bb:6a:1d:b9:01:73:c9:
7c:11:32:42:e3:8d:fd:22:ba:11:a5:b5:b1:99:eb:
30:e6:39:06:03:90:a6:a5:56:72:d5:f7:cf:e1:c4:
73:98:bc:59:63:5e:30:1c:d5:91:ad:95:90:0d:25:
0b:f4:4f:44:54:13:a4:14:e0:1a:76:67:4c:7e:c9:
14:4a:b9:bc:9f:d0:91:88:8f:62:1f:2a:9a:60:39:
0f:c5:de:21:07:53:89:a7:4f:36:af:63:b5:b3:05:
61:c3:b1:98:a5:23:b6:c2:cf:be:02:19:00:9e:a4:
8f:c6:ca:1a:74:0c:03:26:6a:a4:79:f2:ce:f4:f5:
49:e8:b5:cb:a9:e5:3a:19:db:91:2a:b9:68:ac:68:
4e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:15:D2:16:6D:92:18:4D:37:37:46:D0:DB:5A:99:B2:A6:A4:7A:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51A1C4C8EFEF11EE8CA06088775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.67.0/24
Signature Algorithm: sha256WithRSAEncryption
33:64:0e:01:d1:49:de:3e:44:9b:f1:55:4d:af:dc:7d:2e:1b:
13:43:bf:8a:a5:5a:bc:bd:6a:2c:65:96:18:81:7b:c0:f5:f9:
75:6a:c2:fd:fb:67:23:0b:fd:27:46:cb:5e:45:d9:e9:da:31:
65:28:af:75:81:06:69:d3:37:9d:85:92:7e:1c:70:9c:38:13:
8e:a5:43:97:29:63:9d:45:1d:8c:04:8c:42:29:e0:a3:3e:99:
9d:32:ba:66:a2:79:ad:db:ac:f9:46:2a:78:e8:7c:f9:02:40:
93:18:50:e4:1b:5d:a5:7c:4b:9d:fe:b5:0e:0c:79:ea:4a:74:
1a:c3:2a:ad:5c:97:15:db:fe:c4:41:73:71:0e:ac:73:eb:3c:
4e:0e:fb:54:ce:d3:bd:b9:5b:08:bd:b6:08:9e:7e:5c:f5:cc:
58:c3:81:9c:d0:2d:5e:ea:d6:a4:1f:db:5a:2a:52:6b:74:94:
7c:c2:7a:ef:3e:7c:dc:76:ff:50:80:0d:65:18:60:32:29:59:
54:c2:e0:c5:96:8e:13:c2:36:45:a5:bc:af:6d:a1:59:94:43:
78:57:68:31:fd:a4:27:81:79:b9:81:75:d9:e9:5c:34:c0:43:
89:a4:0a:8e:c6:c1:7f:f9:21:d3:71:6f:a2:4f:c7:76:3f:06:
39:f4:4a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org