Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/714DEAB8A44E11EF92BC30B9762E951A.roa
File: 714DEAB8A44E11EF92BC30B9762E951A.roa (raw, json)
Hash identifier: WVlfjfGNFZzRtShoRFpRWjs/VkZyAR1Xc+493PMkEp4=
Subject key identifier: C8:4E:F2:DE:F7:B1:57:EC:77:40:0B:E6:52:2B:BD:05:C7:E5:B4:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/714DEAB8A44E11EF92BC30B9762E951A.roa
Signing time: Sat 16 Nov 2024 19:10:29 +0000
ROA not before: Sat 16 Nov 2024 19:10:22 +0000
ROA not after: Mon 25 Nov 2024 19:10:22 +0000
asID: 9009
IP address blocks: 154.85.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69129 (0x10e09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:10:22 2024 GMT
Not After : Nov 25 19:10:22 2024 GMT
Subject: CN=6738ee25-c162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dc:cc:8c:de:e4:c0:9e:85:e3:3a:38:5d:02:
e6:1f:e5:bd:84:17:c4:f8:7c:de:c2:24:90:00:31:
7e:a2:04:5d:bc:51:55:7b:51:ef:7c:fc:30:fa:39:
5e:b5:a9:4f:f8:94:11:8d:ee:1a:a7:a3:0c:bd:84:
8f:f3:95:23:f2:71:9a:a6:3f:de:6d:bf:28:93:c0:
18:af:c0:ba:b9:d4:c5:d2:45:f5:51:d7:a5:ce:0a:
f7:22:ae:97:7f:99:86:1d:bb:73:c3:20:6a:66:96:
e6:fd:a5:50:66:c8:1c:82:b7:bb:81:18:45:53:25:
12:69:90:8b:20:66:a4:3d:73:a6:91:5b:53:30:48:
37:a8:67:34:3c:18:4e:87:f1:ad:49:c4:de:51:08:
45:da:43:83:d5:27:7a:f8:c1:c5:04:de:cf:f1:62:
b9:55:fa:b6:a2:da:49:55:37:8d:96:00:1e:0b:59:
f6:d5:3d:97:0c:31:7c:f2:8f:21:af:47:32:8b:94:
0b:f5:dd:89:13:bb:24:f4:cf:ca:b1:b1:79:b2:b5:
7f:c0:d7:7b:30:d7:b4:6f:b9:6e:70:5d:17:f2:30:
f7:74:4d:4c:27:3e:c9:7c:8b:46:d5:12:7e:10:23:
34:59:7c:2b:02:ac:1b:aa:8c:f3:55:4a:89:13:e0:
44:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4E:F2:DE:F7:B1:57:EC:77:40:0B:E6:52:2B:BD:05:C7:E5:B4:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/714DEAB8A44E11EF92BC30B9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.125.0/24
Signature Algorithm: sha256WithRSAEncryption
05:15:fe:e3:55:89:23:a1:f6:93:6e:5d:ff:9e:87:1d:d5:3f:
c6:df:24:42:81:2a:e1:83:4c:1b:2a:e9:20:93:2e:9b:ae:9a:
79:81:c1:e9:19:51:3c:38:93:ac:e1:2d:ce:56:6f:33:79:db:
9d:89:f1:0f:66:f8:48:0a:53:aa:f7:a8:92:6d:ae:1c:3c:a5:
2e:0f:47:0a:b4:2e:f4:fa:4c:61:46:d3:37:de:ef:bf:7c:cc:
4b:28:61:49:23:db:8f:56:a8:ba:d5:3a:f0:06:70:77:67:6c:
ed:9c:99:d7:68:aa:fb:f0:d6:23:9e:2f:6e:2c:ce:f1:3f:da:
7e:2f:52:7c:bb:44:69:ad:8b:b7:f6:5d:a9:69:69:66:dd:b1:
9e:f8:a3:86:16:ff:34:fe:fe:b4:67:70:86:ff:79:78:02:86:
70:3f:e6:d9:18:8f:c2:92:7e:43:e1:34:ac:11:b3:25:2b:4b:
b1:8a:85:ba:8d:ef:b0:16:4c:09:8d:1c:f0:cb:20:15:2c:08:
de:06:e0:03:84:5d:c1:82:08:3b:7e:62:92:26:99:df:7d:16:
26:a2:10:3e:58:04:9c:c7:be:ee:a0:d1:04:11:17:53:eb:46:
86:4d:b3:23:bb:d3:b9:20:bd:b7:bf:b1:0f:9a:d7:7a:07:86:
1f:bb:9b:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:51 2024 by rpki-client on console-fra.rpki-client.org