Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DB2FD0EAD5D11EF8218E847762E951A.roa
File: 6DB2FD0EAD5D11EF8218E847762E951A.roa (raw, json)
Hash identifier: utmACtWOkBzTZhLSQNM9aZ1C1IyjLvc58u4ar5DUNC0=
Subject key identifier: 12:40:22:9E:29:4E:53:66:C5:E4:B5:DD:51:92:E8:EF:93:C4:89:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0114F1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DB2FD0EAD5D11EF8218E847762E951A.roa
Signing time: Thu 28 Nov 2024 07:50:26 +0000
ROA not before: Thu 28 Nov 2024 07:50:22 +0000
ROA not after: Tue 11 Feb 2025 07:50:22 +0000
asID: 9009
IP address blocks: 154.85.100.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Dec 2024 00:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70897 (0x114f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 07:50:22 2024 GMT
Not After : Feb 11 07:50:22 2025 GMT
Subject: CN=674820c1-8ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6d:b8:9f:bd:11:51:c9:a2:70:b8:89:7c:eb:
c5:67:12:ca:11:21:63:eb:72:9d:eb:2e:eb:82:58:
a4:f4:03:86:74:e7:ec:dd:1c:0c:db:bf:7a:66:27:
62:fb:bb:de:5a:eb:eb:c9:1e:bb:db:ed:6f:93:53:
4b:b8:c5:c2:1f:b4:38:7a:6e:92:72:96:32:8e:9e:
af:5d:4e:77:9c:9f:f9:d9:ac:aa:65:7e:49:fb:3e:
14:bd:b7:d4:c3:5a:aa:c5:e2:72:54:24:2b:28:ef:
c8:f0:62:a8:c2:82:1f:91:d2:1f:2a:d8:c5:a6:17:
f1:ba:4a:47:e9:88:e1:3a:c9:ca:0b:1b:9d:f1:e6:
a2:1c:97:10:2a:d0:12:c2:40:45:40:82:a4:4f:d9:
fc:87:1f:be:79:4e:16:96:52:4d:84:e3:67:c5:a2:
82:9c:25:7b:b1:4e:52:30:4f:f0:e5:97:7f:ee:f2:
a7:bc:43:e9:08:85:23:ed:64:69:95:78:20:34:c3:
e7:38:98:68:ef:ce:18:1b:5f:13:db:67:d8:bb:e4:
db:ce:e0:b5:a8:92:cd:c7:a6:a0:69:a2:39:4a:6a:
9d:17:2f:75:29:b3:5f:bd:7f:79:c6:6d:f6:f5:ea:
0d:58:89:fc:3a:86:07:7b:12:a7:64:2d:91:bf:e1:
fe:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:40:22:9E:29:4E:53:66:C5:E4:B5:DD:51:92:E8:EF:93:C4:89:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6DB2FD0EAD5D11EF8218E847762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.100.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:b7:6c:03:34:04:1f:f0:d1:f0:23:36:ec:88:19:12:49:03:
03:4f:4e:9a:4b:0b:2e:7f:f5:3b:d5:d8:6a:b9:c1:02:81:39:
ef:8a:d2:6c:b7:5f:a1:7a:41:67:c9:f3:9d:d8:b0:7c:73:3e:
b8:1a:b0:0e:7c:32:f6:61:36:ea:a8:a0:0d:1b:3a:aa:13:68:
15:33:6a:81:90:84:6b:67:01:7c:e8:77:a2:d0:93:47:bf:fb:
c4:0a:82:dc:d9:8a:b8:9f:a9:9d:22:ac:87:39:dc:7a:b2:e6:
36:65:59:2f:87:e4:b4:bc:09:7a:2d:e3:bf:43:14:2a:f3:04:
63:43:d6:be:0d:70:69:e6:38:fd:9f:32:4f:53:3f:15:6b:b9:
c7:0b:72:ae:17:80:e8:c7:7b:ca:d2:5c:c0:8d:37:84:7c:06:
89:10:57:d1:b2:f2:c9:4a:64:f4:d0:24:98:a7:41:89:e6:41:
a7:01:2d:a9:98:29:39:66:95:23:16:88:1d:15:95:9c:ca:25:
9d:e5:37:35:8b:1b:9d:8e:7d:fa:92:63:d7:ef:8d:59:1f:6e:
30:1f:67:7e:c1:c7:52:d9:2e:b8:99:a5:eb:b9:6d:60:45:bf:
67:63:54:c3:6e:88:c8:97:2c:f0:f2:3e:e5:45:bc:73:0c:b0:
e1:7c:23:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 14:46:22 2024 by rpki-client on console-fra.rpki-client.org