Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5992B40A986211EFB8E56C75762E951A.roa
File: 5992B40A986211EFB8E56C75762E951A.roa (raw, json)
Hash identifier: MXerJpHw6ZLdTnCfHCnDKVZzK3tRn4L+C4yvIYAkdQg=
Subject key identifier: 00:DA:BA:A0:0D:B8:79:F8:1B:6A:5D:00:A8:FD:98:65:3B:73:77:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010501
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5992B40A986211EFB8E56C75762E951A.roa
Signing time: Fri 01 Nov 2024 15:02:45 +0000
ROA not before: Fri 01 Nov 2024 15:02:41 +0000
ROA not after: Tue 03 Dec 2024 15:02:41 +0000
asID: 203020
IP address blocks: 154.209.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66817 (0x10501)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 15:02:41 2024 GMT
Not After : Dec 3 15:02:41 2024 GMT
Subject: CN=6724ed95-4275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ad:23:1c:ff:8f:a9:c7:bf:44:c5:99:09:b3:
dd:f4:17:2f:b9:4a:72:8d:cf:49:94:98:ee:4c:97:
01:6c:23:93:18:27:8c:62:63:fc:31:fe:80:be:4e:
b2:71:32:0f:49:ab:27:cc:84:4c:45:16:11:5d:cb:
4e:89:10:43:cc:07:74:7d:ac:e8:2e:46:43:ac:58:
6f:0e:ad:52:ef:f5:b5:20:7f:b6:9c:cb:9b:58:ed:
3b:45:cb:00:2e:5a:81:4d:e7:ea:08:b5:f8:c9:8c:
92:bd:c1:16:5b:4d:26:56:b0:fe:60:37:68:50:6b:
c2:48:af:8d:2e:21:f8:85:fb:b3:51:43:93:5c:6b:
1f:04:d7:aa:5a:2e:bc:ab:4a:4a:e8:24:ea:75:82:
27:f6:1c:c7:53:9d:04:8b:13:81:fb:af:11:70:4a:
ed:11:d5:a2:1a:c7:f9:1b:00:b8:2c:f7:2d:b8:eb:
f1:34:94:35:97:b4:03:79:f2:86:55:cb:11:41:1d:
9f:6e:c7:61:fe:ab:8a:72:1a:31:4c:68:3c:a7:93:
b6:ad:3c:37:f2:3e:da:a2:16:fd:c7:5f:11:3d:1c:
58:cc:ad:bf:b7:ba:80:d4:b2:36:25:90:52:3e:22:
39:9f:9a:03:a8:54:84:b5:37:a1:86:91:78:8d:51:
f0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DA:BA:A0:0D:B8:79:F8:1B:6A:5D:00:A8:FD:98:65:3B:73:77:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5992B40A986211EFB8E56C75762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.16.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:f2:4b:f9:80:7d:90:20:ab:73:14:b0:a1:2c:3a:1e:8e:1b:
16:82:e0:19:34:61:ae:07:99:81:94:3b:79:c4:bd:04:e3:29:
80:96:b0:c8:95:13:dc:32:95:f6:a4:9b:e3:13:ab:07:4d:6f:
09:0d:a7:e6:7d:4e:cb:09:de:c8:3d:8f:48:d9:c7:e6:7e:8e:
96:62:66:19:af:b8:02:af:8c:67:67:2d:33:7b:30:b8:f3:3c:
96:b2:c8:a3:d0:1b:c0:b9:05:93:b7:9e:5a:42:3b:fe:a1:db:
2e:5d:aa:70:6d:47:ce:57:ec:64:ca:37:ea:19:11:21:20:1d:
26:d8:e7:7f:02:79:09:cd:6e:d0:8d:48:8e:de:6b:09:20:e6:
7f:d8:01:26:5a:3d:84:11:90:de:60:0c:db:29:35:f8:09:ab:
08:46:57:ca:66:ca:84:cf:47:4c:f7:88:21:83:9f:e7:5a:e4:
67:92:e8:d5:d8:bd:54:c5:f7:00:2a:d6:54:43:14:42:7f:9d:
2e:51:99:14:ba:04:5d:4e:27:e8:dc:49:6c:51:6e:a0:5d:cb:
ac:d7:35:ad:be:07:41:76:f2:72:59:8c:03:bb:6e:16:87:00:
80:88:cd:95:9f:00:c0:0c:48:dc:49:b9:87:bd:4e:0b:62:69:
d8:d9:2d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:08 2024 by rpki-client on console-fra.rpki-client.org