Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/683C0B38986111EF8651F070762E951A.roa
File: 683C0B38986111EF8651F070762E951A.roa (raw, json)
Hash identifier: D4tRZGFmBKbu5X7GjA/vgDdeIDr6KirMYxzz0HeQz9c=
Subject key identifier: AB:7D:90:75:1C:C6:42:35:16:CF:5E:30:14:DC:C7:38:04:8E:09:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104F5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/683C0B38986111EF8651F070762E951A.roa
Signing time: Fri 01 Nov 2024 14:56:00 +0000
ROA not before: Fri 01 Nov 2024 14:55:56 +0000
ROA not after: Tue 03 Dec 2024 14:55:56 +0000
asID: 203020
IP address blocks: 154.206.0.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66805 (0x104f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:55:56 2024 GMT
Not After : Dec 3 14:55:56 2024 GMT
Subject: CN=6724ec00-5195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e9:da:02:8f:0e:60:9c:be:a6:14:76:66:8d:
95:5f:b8:52:fe:da:61:58:be:26:53:fa:51:e8:6a:
03:08:6f:1c:73:d5:7b:48:80:c7:0a:4f:b5:ce:1b:
8b:ba:d8:94:82:d6:fb:ca:48:fa:cd:64:d5:63:93:
e3:83:b3:52:ab:79:ab:f7:f1:5c:47:13:4b:5f:f2:
99:86:0d:7c:4b:11:bf:a6:0a:0c:d4:12:dd:cc:2b:
dd:56:9e:ef:4d:1a:a4:b4:fe:00:6d:63:78:c6:88:
bb:58:11:fb:ad:3a:5e:96:d1:c9:12:41:fe:7c:1d:
7b:2b:68:d0:d5:18:41:98:38:cb:c7:04:15:4f:08:
04:56:78:ea:af:bb:58:b7:e2:dc:2a:ff:9c:08:f3:
57:5c:08:6a:43:32:d9:ea:39:22:fb:0f:5c:ed:ae:
e1:e4:76:91:0c:dd:6d:41:22:ae:6d:e3:b7:5b:a5:
cf:90:27:49:88:16:a1:e9:55:65:8b:cc:c6:46:73:
bf:5d:b0:8c:03:3a:6e:c1:3c:d4:7c:23:9c:64:a6:
38:83:8e:11:d8:b4:95:a5:bc:87:49:13:d6:93:6b:
a0:39:34:ec:00:63:b3:1b:09:de:e0:f5:38:2f:97:
50:58:e0:21:54:aa:05:40:84:c2:64:e2:75:54:62:
47:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:90:75:1C:C6:42:35:16:CF:5E:30:14:DC:C7:38:04:8E:09:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/683C0B38986111EF8651F070762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.0.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:5e:58:2f:48:7a:d2:41:f5:20:20:d7:0a:a8:06:3a:66:08:
15:fc:97:e4:f9:58:cf:79:0e:6a:90:bc:ff:33:9e:fe:91:a1:
3a:96:e6:8f:ca:51:fd:10:3c:eb:ba:f5:13:0a:f1:94:b9:47:
8e:a7:0f:cf:08:a8:81:6c:08:5e:f5:16:ce:42:fa:31:c6:56:
0d:a9:58:b4:f8:c4:c9:76:7c:60:d4:ab:36:f7:9f:f1:80:60:
dc:9f:15:e6:46:97:fe:91:1b:55:45:a2:2b:ff:8b:66:fc:e2:
d4:e8:a3:1c:84:dc:f1:1c:97:91:6a:ea:1c:d9:16:a5:cd:6b:
d5:b3:4e:0b:99:61:7d:40:5b:5a:27:e6:c0:7d:ed:05:47:08:
42:48:3c:a9:85:10:ad:0e:44:c6:2f:48:a6:d0:66:8c:5a:8a:
91:39:39:a6:ad:4c:2b:9b:47:08:de:d7:ff:68:38:c7:2e:aa:
32:e2:89:a9:23:5a:04:f3:81:7b:df:0f:c9:13:c3:24:fd:47:
4a:cf:58:a4:19:3e:67:69:d4:8e:16:c4:f4:bb:e9:60:b1:ac:
e7:97:37:8b:d4:c7:94:42:a7:a0:d6:fc:63:e5:d1:1c:58:f7:
07:af:8c:37:c7:d4:b2:72:40:52:2a:3d:63:de:b2:f3:7c:d6:
6e:f0:19:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org