Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5703EB005EEC11EFBC46E471762E951A.roa
File: 5703EB005EEC11EFBC46E471762E951A.roa (raw, json)
Hash identifier: sMSSk51y0N7NK67naA7gfZz9K8t+bk7U5Ku9LIJ+C+Q=
Subject key identifier: 75:17:6F:4C:07:02:8B:30:C7:5C:BD:FF:18:96:4B:76:9A:99:77:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E1FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5703EB005EEC11EFBC46E471762E951A.roa
Signing time: Tue 20 Aug 2024 12:04:24 +0000
ROA not before: Tue 20 Aug 2024 12:04:20 +0000
ROA not after: Wed 27 Aug 2025 12:04:20 +0000
asID: 138995
IP address blocks: 154.197.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57852 (0xe1fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 20 12:04:20 2024 GMT
Not After : Aug 27 12:04:20 2025 GMT
Subject: CN=66c48648-454e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:86:32:ed:3a:ec:00:f2:bc:b1:19:fd:8a:61:
4a:f3:d0:cf:a6:d3:e2:2d:60:67:19:3b:c8:0f:a0:
ac:cb:f2:ee:b2:41:b4:65:32:f0:46:61:50:de:b2:
7d:92:69:ff:a6:a9:10:d7:0f:7e:84:ff:a5:5f:fa:
89:04:16:0b:84:ec:ea:8d:c7:8a:9f:e2:64:cf:cd:
5b:a8:6d:0c:d2:03:52:b4:6d:c4:c0:39:0d:1c:07:
a7:4f:8a:55:6a:b9:25:86:57:2b:82:16:b1:c7:03:
5a:1a:8d:9d:cf:7c:92:4c:5f:5c:a4:88:c8:f8:37:
62:6d:29:11:be:0d:e6:e6:9b:99:f7:70:e8:c6:ab:
2c:ee:a4:cf:f1:51:01:5f:c9:8e:e8:52:1e:b5:bb:
80:3c:76:ed:79:ff:e8:db:ce:e0:35:0e:2a:1a:7a:
d5:7a:f2:9c:eb:69:ee:20:67:fd:02:9f:34:6d:ba:
49:1e:2f:38:30:19:be:f8:de:90:de:33:4e:f1:ad:
d9:06:b2:0a:3c:89:36:f1:7f:b9:e6:df:f8:cc:b5:
10:03:fb:a1:f0:e1:24:17:a5:b7:91:56:60:34:a7:
34:8d:49:be:35:28:77:ed:92:f1:64:ac:6a:96:00:
73:b4:4d:d0:41:85:3c:de:6a:54:46:cb:2f:7b:ff:
14:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:17:6F:4C:07:02:8B:30:C7:5C:BD:FF:18:96:4B:76:9A:99:77:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5703EB005EEC11EFBC46E471762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.33.0/24
Signature Algorithm: sha256WithRSAEncryption
84:1d:fd:3a:dc:e3:85:fb:18:c5:82:8b:de:96:50:7b:40:17:
ab:ac:d1:87:1d:f7:1e:e1:63:78:6d:c3:15:8b:f1:25:7c:80:
c7:3e:87:f2:e0:18:01:2a:7f:d5:dd:11:a0:aa:68:7f:c5:6d:
b8:f2:f8:63:03:51:c6:57:c6:41:af:c6:cf:99:79:30:7a:36:
f9:aa:90:9d:1c:2f:85:45:b9:f0:71:ed:c4:ec:8b:ce:4d:0b:
40:8d:a1:39:46:23:64:01:3c:f7:39:8b:5e:10:b4:60:cb:ca:
34:5a:04:26:80:91:7e:b0:ec:82:b1:63:31:93:f5:e0:fc:7f:
e6:d4:47:f0:b2:f8:09:ee:36:49:33:66:28:e0:74:08:e9:6b:
1f:06:57:52:d9:2a:9b:88:22:35:bb:dc:e3:07:f4:b8:52:21:
01:53:2f:cd:17:82:c4:7c:2c:63:5e:cb:f9:33:b7:55:13:a9:
0a:ba:a0:a9:64:02:90:1d:d3:7b:e9:63:f7:b1:e1:69:b6:5a:
60:26:52:6c:74:bb:8c:41:57:ce:02:60:ed:66:3f:e9:f5:60:
d6:4f:6f:68:7b:4a:89:e1:ec:8c:1a:91:c1:af:13:c4:e2:2a:
d4:82:29:4b:d9:6d:2d:ab:8e:9b:3b:15:3a:06:3c:b6:94:46:
0b:de:cb:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:07 2024 by rpki-client on console-fra.rpki-client.org