Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/683574AE9EAA11EF9B52468F762E951A.roa
File: 683574AE9EAA11EF9B52468F762E951A.roa (raw, json)
Hash identifier: S4rnRxz39BDl+nKisxT3R7ZHGrnuVGkKPNHaYpxXYCE=
Subject key identifier: F2:0D:FE:2C:18:2C:2A:BC:8C:D7:1A:F7:29:81:E9:5D:FB:4A:1A:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010A15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/683574AE9EAA11EF9B52468F762E951A.roa
Signing time: Sat 09 Nov 2024 14:53:40 +0000
ROA not before: Sat 09 Nov 2024 14:53:37 +0000
ROA not after: Mon 07 Apr 2025 14:53:37 +0000
asID: 267834
IP address blocks: 154.198.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68117 (0x10a15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 14:53:37 2024 GMT
Not After : Apr 7 14:53:37 2025 GMT
Subject: CN=672f7774-69c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9f:f7:e7:f8:b3:fd:d6:07:55:f9:24:fe:98:
b7:d9:b6:e8:c3:4c:91:18:72:8b:76:31:14:bf:fb:
c2:61:70:1b:6b:6e:cc:ff:f3:3a:4b:4b:6a:3d:49:
2c:8e:64:8a:c2:e8:ea:fa:91:fc:28:a9:9a:dc:b0:
95:f5:36:96:c3:e9:e9:28:51:8b:e2:0c:e4:34:af:
fd:76:c1:32:bc:33:cd:e2:85:92:a3:1b:d4:ca:83:
2d:ed:12:2b:ab:72:ed:d5:6c:d1:fa:f6:b2:cd:13:
15:82:30:bb:cd:59:ac:41:ab:ea:71:fb:34:11:59:
d1:93:c3:22:8f:a4:42:15:b6:06:59:af:02:36:dc:
b1:2d:2e:62:75:3c:06:60:8b:0b:6d:62:c1:6c:1a:
a4:67:5e:59:90:05:4f:71:75:77:7a:44:6a:fc:9e:
e1:7a:45:76:a9:69:40:22:ca:1d:0f:80:0c:e5:c1:
f2:26:68:14:b1:76:51:40:50:ab:b5:89:16:ca:4c:
e2:38:9a:f5:81:b4:3a:40:51:56:c7:68:7f:83:61:
00:33:b4:00:5e:fa:76:68:e6:cf:b2:c1:67:93:c4:
73:aa:58:00:30:05:5b:a7:cf:2b:66:2e:12:31:a9:
79:66:50:51:ad:d1:8b:f0:41:cc:e0:0b:77:e3:6a:
6d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0D:FE:2C:18:2C:2A:BC:8C:D7:1A:F7:29:81:E9:5D:FB:4A:1A:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/683574AE9EAA11EF9B52468F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:3e:33:64:7f:e1:fa:d0:ac:3c:b4:77:9b:7e:c0:ac:a4:79:
ec:57:35:9c:90:97:eb:53:ee:bb:9a:04:5d:c7:23:1e:7b:88:
98:ba:fc:19:72:86:6d:94:55:53:1a:95:05:65:16:85:f3:78:
9c:fb:5d:87:57:e1:f0:f3:96:fa:6e:2b:63:e6:b1:69:9c:18:
bf:93:77:4f:74:f8:fa:01:7f:46:e9:14:82:32:92:0d:76:07:
d0:16:05:3c:db:fc:e4:7a:98:1a:b9:0e:97:0e:ba:d4:58:4a:
63:87:93:88:be:de:6d:da:72:69:b5:8f:43:06:1c:4c:b3:dd:
8a:49:92:54:55:dd:c0:52:bb:0a:14:1f:28:16:22:92:cf:21:
3b:76:a9:bc:97:f6:ec:8f:24:19:9e:f3:9a:0a:ca:39:bd:1b:
ff:6a:b5:26:16:0d:08:ea:77:80:d6:75:38:8e:59:60:fd:ee:
4c:df:c4:f3:57:ee:73:ac:a5:62:26:ef:49:37:c9:2b:be:96:
09:78:8e:1b:6d:25:fb:96:10:ff:51:85:94:d9:20:c4:8f:82:
e2:a5:04:3d:bc:21:31:ad:4d:76:9b:0c:ab:f9:ce:f5:a7:b4:
49:1f:9f:09:d8:7c:13:d8:57:ce:4f:66:9b:87:16:51:6f:26:
78:ef:a9:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:54 2024 by rpki-client on console-fra.rpki-client.org