Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67451D8496B111EF97EF2B4E762E951A.roa
File: 67451D8496B111EF97EF2B4E762E951A.roa (raw, json)
Hash identifier: 4jALEE8yKi/9loc3n9CG+qCOg/0hcg5oHn6uSf1qUJU=
Subject key identifier: 67:E9:50:33:E2:2A:63:6E:20:7C:E2:85:85:5D:3D:2A:B3:6F:F8:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0103FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67451D8496B111EF97EF2B4E762E951A.roa
Signing time: Wed 30 Oct 2024 11:23:36 +0000
ROA not before: Wed 30 Oct 2024 11:23:32 +0000
ROA not after: Wed 04 Dec 2024 11:23:32 +0000
asID: 142062
IP address blocks: 154.86.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66557 (0x103fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 11:23:32 2024 GMT
Not After : Dec 4 11:23:32 2024 GMT
Subject: CN=67221738-12d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fc:c7:f3:e4:5b:4c:22:1b:f0:61:c1:ff:89:
ab:b5:e1:41:1e:af:6b:ca:da:e7:af:57:67:c2:2b:
a6:80:e2:7c:61:76:df:a6:36:7b:87:e8:59:61:67:
2c:fc:f8:38:02:0e:4e:e1:1a:99:c5:28:af:c1:80:
5d:34:24:1c:a6:7c:f6:1e:bc:7a:c5:c7:7f:ef:d8:
1b:ce:f1:eb:33:ff:d1:32:17:1f:63:f4:bd:b6:3b:
c2:b7:d1:db:a2:2b:11:e4:89:d5:64:08:31:e3:ed:
e3:8b:17:13:a9:fb:d9:6f:b6:80:22:19:67:eb:88:
77:61:73:a8:2b:d0:e7:f1:25:d4:21:8d:a8:b2:90:
65:89:ea:b9:ea:80:e0:19:b3:6f:22:10:a0:e3:1c:
c8:95:c2:02:6a:79:39:24:fd:2a:38:a7:8e:fc:0b:
96:d1:c5:10:c9:1d:ef:37:a1:2e:2a:23:31:4c:b5:
14:04:17:83:4d:21:d1:ef:24:6a:ba:1a:c9:16:29:
13:86:1e:ca:01:95:b6:dd:8a:46:a9:e9:1f:d4:18:
e7:51:08:8e:ab:df:47:28:74:af:a2:ac:ec:5f:fc:
f5:75:ca:f7:8a:a6:ee:5c:f2:b8:bb:29:a1:1f:fc:
3c:21:09:2c:d9:ab:b5:cf:98:89:be:c7:b7:0c:c6:
87:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E9:50:33:E2:2A:63:6E:20:7C:E2:85:85:5D:3D:2A:B3:6F:F8:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67451D8496B111EF97EF2B4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.80.0/22
Signature Algorithm: sha256WithRSAEncryption
06:fd:7d:0b:f7:61:45:ad:c5:ec:e0:1b:76:05:ab:ec:81:c4:
a2:d7:b1:60:28:e0:9e:94:55:a0:c8:70:34:07:55:45:47:f1:
e0:bb:a3:00:2c:0a:cf:2e:82:cc:26:14:6f:a7:d0:88:53:ac:
f0:94:71:44:fb:71:8d:9f:25:c3:86:81:84:85:78:d4:9b:8b:
5c:ad:a6:48:3d:06:69:5c:0f:09:d3:31:0c:a3:50:82:03:cc:
36:27:84:92:74:9a:50:8e:ef:71:1e:08:e9:c5:2c:2c:9a:05:
28:d0:94:aa:e9:10:74:9e:2d:19:2f:86:77:74:7f:10:22:da:
a4:97:7c:29:1e:02:31:62:7c:ed:64:75:68:12:cd:d9:ca:96:
33:d1:90:62:ec:ae:9d:0c:c9:46:e5:99:a4:9d:a8:51:22:fb:
ab:ef:4c:e4:61:4c:ec:f2:c6:8f:6b:37:5b:cd:d5:a0:45:73:
cd:03:0f:87:91:3f:2d:b8:6e:72:c9:3a:8f:0f:99:b0:01:e3:
e9:b8:ce:f5:a9:e3:20:ac:66:64:90:0c:40:24:3c:bd:19:74:
1a:8d:b0:5f:77:ca:97:05:3b:a2:2b:1f:44:7f:4d:bb:8d:a2:
a0:80:d5:1c:34:a9:94:76:cd:e1:74:55:42:ab:6c:15:94:cc:
c7:ce:ed:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org