Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/603BB0B8A64A11EF93C5F9B7762E951A.roa
File: 603BB0B8A64A11EF93C5F9B7762E951A.roa (raw, json)
Hash identifier: /P7vRWp6gAEHQkzj76Aj5B9DrX3E+vFokLf/PdaHnBY=
Subject key identifier: 1E:35:CF:B6:AF:96:80:45:75:DE:92:E4:0B:88:1B:74:D1:C2:92:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/603BB0B8A64A11EF93C5F9B7762E951A.roa
Signing time: Tue 19 Nov 2024 07:46:24 +0000
ROA not before: Tue 19 Nov 2024 07:46:21 +0000
ROA not after: Wed 04 Dec 2024 07:46:21 +0000
asID: 62240
IP address blocks: 154.82.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69364 (0x10ef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:46:21 2024 GMT
Not After : Dec 4 07:46:21 2024 GMT
Subject: CN=673c4250-4970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9b:4b:a8:e9:41:19:6d:2f:e7:dc:e6:c9:02:
3b:89:a9:0f:70:16:6e:1e:d3:a9:e4:f1:f3:73:9e:
7e:91:70:2c:86:6f:2e:6d:a9:89:50:c7:af:f4:fc:
ed:4b:22:35:8d:48:2c:25:be:3b:67:d4:bf:c2:ec:
57:4a:f3:d6:62:2f:69:69:29:7f:da:a5:3c:05:f2:
5c:79:50:58:44:59:bb:02:8a:41:a0:d1:a7:09:9a:
76:5b:62:71:56:68:48:07:72:03:bb:ba:3e:c9:71:
00:69:c3:6f:be:32:9b:9e:d7:f4:d6:71:2f:51:de:
07:4f:11:c1:c8:43:42:e5:9b:85:d5:2b:b9:54:8c:
e7:af:90:60:7c:84:a1:1b:e4:f0:bf:45:57:81:1c:
a5:97:c5:43:9c:ed:87:44:a4:25:30:46:cc:7c:1f:
cf:41:a1:69:38:e8:42:e4:89:53:f1:9f:6e:a7:9a:
5f:39:53:51:54:fb:f9:f5:26:27:1b:1c:cc:92:ec:
30:23:1a:65:1e:df:2e:2b:42:61:fc:e7:5e:d4:74:
05:b5:b2:04:79:96:f3:f8:9f:2c:53:0f:be:15:52:
05:d4:7f:cc:5d:7b:df:36:dd:e9:d3:b0:88:22:6f:
ee:8e:31:75:54:84:13:d0:83:6c:ae:2d:b4:9b:cb:
5c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:35:CF:B6:AF:96:80:45:75:DE:92:E4:0B:88:1B:74:D1:C2:92:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/603BB0B8A64A11EF93C5F9B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.24.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:24:8a:9a:3a:53:c5:6b:af:04:48:6e:98:60:c5:92:ce:44:
6d:ad:be:ab:b6:ef:f8:fd:1d:b7:16:1e:62:e3:bd:7b:00:9b:
7c:97:1b:76:e3:08:7e:85:16:e0:28:84:01:fa:12:5a:3d:91:
aa:bf:db:e2:79:2b:a0:1c:76:e0:54:1a:13:eb:6a:5b:35:6d:
7b:78:7d:26:ca:01:06:46:29:1b:9c:62:16:b1:40:e3:e3:c8:
59:1c:e3:78:f6:56:dd:29:32:af:f5:bc:a0:96:00:ea:f7:d0:
a6:14:0e:2e:da:6f:1d:27:d1:ac:9e:c7:99:4c:3c:2f:85:c9:
e7:3d:20:e2:d1:cb:fc:b7:94:de:bf:11:57:6d:73:5a:e4:57:
32:5e:39:b6:54:e1:94:dc:12:7c:5e:3e:b5:17:ee:9a:90:59:
e9:3e:d0:f9:8a:d7:32:d3:af:5e:8c:0c:14:11:eb:35:ac:38:
10:ca:cd:a2:a5:17:74:31:7e:87:6f:17:b9:2f:92:89:de:86:
93:d1:da:09:31:0f:87:50:aa:a2:29:85:34:c6:02:d9:e2:59:
3e:63:03:5f:8e:1d:19:5f:79:9c:8e:ec:fa:06:cf:f6:6f:0c:
4b:f0:1a:4c:ca:ec:14:de:17:a3:a4:af:30:6c:a1:06:17:72:
ab:ff:a9:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:41 2024 by rpki-client on console-ams.rpki-client.org