Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/579C1736905111EFB689ABA6762E951A.roa
File: 579C1736905111EFB689ABA6762E951A.roa (raw, json)
Hash identifier: JMVQ0HkUOL+q/L233fAr5vuBLI/d7HwbemFARrisapI=
Subject key identifier: 67:5C:EF:65:05:89:83:20:33:58:A8:4A:F2:EB:33:4F:38:58:EC:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01008F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/579C1736905111EFB689ABA6762E951A.roa
Signing time: Tue 22 Oct 2024 08:40:51 +0000
ROA not before: Tue 22 Oct 2024 08:40:47 +0000
ROA not after: Tue 26 Nov 2024 08:40:47 +0000
asID: 395886
IP address blocks: 154.201.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65679 (0x1008f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:40:47 2024 GMT
Not After : Nov 26 08:40:47 2024 GMT
Subject: CN=67176513-a375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c4:6c:8b:de:18:34:53:9c:80:f8:f9:8b:46:
ad:75:0c:9b:5f:75:20:bd:f1:60:41:4c:dc:9e:86:
75:f1:2b:da:12:3f:1b:aa:62:76:6e:fa:c4:94:db:
30:a6:6f:ef:a1:a8:e0:77:82:bc:26:53:48:3d:d2:
f7:14:1f:6b:14:bb:f2:06:f3:25:d6:66:8b:da:36:
49:98:b1:a6:fb:47:54:2b:76:76:49:8e:3a:36:d4:
48:80:49:0e:b6:01:43:6c:eb:55:75:5b:80:78:8e:
cf:89:56:16:45:3f:97:ba:dc:5e:b1:a1:bb:08:c0:
6b:92:80:88:16:df:b2:55:8a:ed:27:4b:e6:3e:a7:
2d:97:61:67:d4:d8:26:f5:fd:4f:bd:9f:69:d2:c2:
e7:55:62:c4:b5:8f:e2:c8:a3:8d:8d:23:cd:c2:df:
60:7c:0a:e5:39:9c:cb:7f:9c:ae:cc:d2:ab:18:3c:
64:aa:04:f8:73:34:ea:87:74:a9:6c:30:7d:50:d8:
b0:98:99:9f:3f:b0:45:21:7d:69:22:e5:02:94:f5:
a6:cd:62:0e:f2:94:c7:0b:f0:16:68:00:2e:9b:8e:
ad:4b:e0:da:3a:1c:34:ca:cb:46:0e:fc:35:16:11:
aa:9a:cc:dc:be:ee:c4:97:d4:d9:a3:84:10:2e:b7:
a9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5C:EF:65:05:89:83:20:33:58:A8:4A:F2:EB:33:4F:38:58:EC:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/579C1736905111EFB689ABA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.72.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:a2:3a:f8:19:79:08:ba:61:3a:c4:dc:0d:d2:c6:ba:95:b7:
81:a6:04:3f:34:0f:c1:cd:1d:b9:5d:72:ad:f7:9e:81:b6:6e:
d8:b8:cc:37:81:8f:81:e6:15:75:6b:f6:6b:00:51:a8:16:12:
59:1c:f2:5d:16:f5:a0:aa:92:cb:4f:21:87:36:74:23:42:ea:
1d:69:45:76:b0:3a:de:35:8c:46:25:84:ec:dc:20:3e:d8:03:
fc:79:fa:65:84:90:b6:5f:72:5c:4d:3d:10:c8:e7:e7:32:b9:
d5:9b:0c:45:e9:8d:e4:0d:b2:46:70:e6:02:f8:bc:9b:8a:56:
9f:83:b3:e5:83:b7:7b:f6:fe:d3:5f:15:02:bd:43:90:ce:56:
33:cb:ab:f0:dc:ef:3e:7a:9f:f2:9c:2e:c5:d1:0e:03:c9:f8:
ae:19:6e:c8:c7:fe:78:7c:e0:21:a6:c0:24:8d:c8:c9:c0:5a:
2e:0a:2c:4c:e7:19:f8:1b:17:f6:64:84:fc:32:9a:70:50:eb:
42:95:30:0b:36:48:84:d0:bd:14:86:f8:b8:b1:0a:c5:d4:02:
f9:8c:d3:42:85:2c:5c:b0:b3:5e:a9:bf:f2:d0:f7:4b:97:3f:
4b:50:77:6d:cb:98:f1:93:e6:e2:4b:cb:2b:4f:12:7e:86:f1:
31:2d:a3:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:31 2024 by rpki-client on console-fra.rpki-client.org