Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52354DC66A5E11EFB3280F41762E951A.roa
File: 52354DC66A5E11EFB3280F41762E951A.roa (raw, json)
Hash identifier: kb57UfYAZiTiZOIytWGwknCKPDP/RPR8NEjNtCL8xFI=
Subject key identifier: FA:FD:D1:FE:53:1E:1C:A8:81:E6:71:73:21:B3:E5:BC:2B:A8:AC:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E9F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52354DC66A5E11EFB3280F41762E951A.roa
Signing time: Wed 04 Sep 2024 01:38:01 +0000
ROA not before: Wed 04 Sep 2024 01:37:57 +0000
ROA not after: Mon 30 Dec 2024 01:37:57 +0000
asID: 17561
IP address blocks: 154.207.142.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59895 (0xe9f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 01:37:57 2024 GMT
Not After : Dec 30 01:37:57 2024 GMT
Subject: CN=66d7b9f9-952e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:88:8a:19:ec:16:5d:e9:37:5b:4c:45:24:
ec:50:09:9c:67:cb:7c:06:59:2f:94:e6:fc:c6:9e:
f8:be:0d:ae:a0:f3:c9:4f:90:45:92:ee:9d:5d:78:
94:d5:a1:1e:f7:8c:2d:27:b9:d3:b4:5b:0d:c6:54:
b3:87:2a:71:71:7e:a0:6b:ff:70:7e:0f:40:7d:d8:
31:a8:c0:b3:3b:f7:50:ad:29:01:f7:ad:73:b8:fe:
1f:67:e4:77:b7:31:f0:ea:84:31:ac:e2:17:7d:39:
6d:54:8e:30:f8:d0:3d:38:62:9d:02:8b:08:f1:1d:
b6:f5:92:ac:d2:5d:76:23:d0:61:56:3f:78:9f:4f:
3e:57:62:ef:98:22:04:11:10:4e:4d:99:0c:c7:56:
ec:72:eb:2d:7e:e9:d6:ea:49:06:ba:d0:f4:1b:67:
87:d3:2e:0b:9e:b4:22:e1:5c:83:a5:72:60:68:cd:
d1:e7:b3:7a:e3:81:62:31:41:e5:cf:78:67:25:00:
56:f1:d4:e5:eb:10:6d:af:b0:61:18:49:c5:1c:fd:
d8:c9:b2:41:76:7c:7a:da:7d:f5:42:bd:06:2d:75:
b2:1e:c7:f8:c0:d5:41:f4:c5:22:20:5d:8d:1f:67:
63:43:ae:74:a0:be:d5:8d:b1:7d:12:e5:20:49:81:
eb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:FD:D1:FE:53:1E:1C:A8:81:E6:71:73:21:B3:E5:BC:2B:A8:AC:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52354DC66A5E11EFB3280F41762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.142.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:9e:d0:d7:85:4e:a1:f5:94:34:13:be:ee:b6:9e:93:46:dd:
72:9c:a4:f7:80:68:d0:25:1b:3b:fb:7f:e1:05:a8:93:50:19:
76:6e:f5:a1:77:4a:3b:bb:0f:0c:b6:24:86:8b:81:15:d7:5b:
f5:79:ef:cd:4d:fd:5c:21:19:13:b8:fc:37:4b:f8:40:6b:c6:
8f:e9:a6:f4:1b:02:a7:c5:1a:74:6c:1a:f7:4b:ba:f4:37:67:
7e:28:43:89:3d:a2:e1:f3:54:6f:ad:ad:74:13:df:ee:a7:8e:
c6:6d:11:5a:f8:d6:d8:3f:d1:4e:8c:6e:43:6a:53:0a:19:58:
ea:d7:e1:0a:49:3e:0e:ee:9c:94:c5:47:76:bb:fb:cf:3d:9c:
06:8e:50:f2:02:cf:2b:cd:cf:36:b3:c5:ca:aa:c8:b6:5d:43:
e8:53:26:86:e2:f7:16:ab:a6:ab:0e:f5:d5:3b:93:95:ab:f3:
8c:a2:53:99:aa:2a:23:87:a1:83:f3:4d:bf:69:ea:73:ec:88:
d4:2b:ca:19:2d:17:63:e4:18:cf:70:4e:cd:7f:6c:51:f9:0f:
55:e0:b5:f7:55:97:a3:61:e9:b2:bf:d7:30:81:e7:5a:10:e5:
0c:2c:9f:3f:cb:5a:da:47:a6:2f:13:c0:bd:65:12:53:b5:b7:
cb:f6:6f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org