Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74042F3E911A11EFB1FD6697762E951A.roa
File: 74042F3E911A11EFB1FD6697762E951A.roa (raw, json)
Hash identifier: B2UjB1793pqsHM2hB96/3mKo6AAjYyADgHmaNCgkU3A=
Subject key identifier: 3B:CA:DC:3B:A8:9D:EA:E3:D4:71:89:91:19:22:0A:A3:5C:32:88:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74042F3E911A11EFB1FD6697762E951A.roa
Signing time: Wed 23 Oct 2024 08:40:27 +0000
ROA not before: Wed 23 Oct 2024 08:40:24 +0000
ROA not after: Fri 24 Oct 2025 08:40:24 +0000
asID: 136744
IP address blocks: 154.200.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65746 (0x100d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 08:40:24 2024 GMT
Not After : Oct 24 08:40:24 2025 GMT
Subject: CN=6718b67b-8cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:95:45:58:66:fc:3b:2f:bb:6d:7d:58:65:53:
32:be:1b:8b:5f:d3:d3:ee:83:52:3c:75:76:63:05:
de:3d:7d:7c:d8:29:3a:d8:4d:92:c7:b1:ab:03:e5:
f9:5f:8e:48:7c:b0:5c:46:8e:03:8a:5b:ab:0b:a6:
12:88:be:a7:c7:54:76:2c:00:98:cc:d5:77:30:c7:
dd:1f:cb:55:e7:7f:8e:37:2a:f9:30:36:91:d2:d8:
24:d4:03:ec:e4:5b:c9:32:75:7d:48:7f:a8:6d:62:
93:32:b8:5c:6e:75:a0:a5:cb:4f:e8:96:4b:9b:df:
a0:4f:8b:ba:71:bb:8d:cb:47:85:46:5e:cc:a5:55:
78:2d:8c:e8:84:01:6d:4f:af:85:47:e8:b8:1d:76:
5f:71:3e:d5:0f:be:44:6a:45:91:37:80:28:df:71:
60:73:b2:90:ea:25:e7:92:6e:61:8e:87:fd:9b:0b:
01:ab:4a:56:68:90:49:26:c9:49:d8:f5:f6:11:01:
f0:a0:07:01:62:4d:04:a1:55:b4:dd:13:5a:93:39:
c8:05:1b:61:a4:41:c9:1a:31:85:e9:50:4b:4e:e6:
c4:da:15:9e:b9:7d:56:04:a8:db:cc:dc:4a:5b:a6:
df:9e:8e:8c:fa:35:eb:14:6a:9e:d8:2f:e5:be:af:
55:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CA:DC:3B:A8:9D:EA:E3:D4:71:89:91:19:22:0A:A3:5C:32:88:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74042F3E911A11EFB1FD6697762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.88.0/24
Signature Algorithm: sha256WithRSAEncryption
37:4c:ce:f2:c4:72:54:62:cf:37:75:55:68:39:bc:01:b0:55:
48:62:2c:6c:19:9f:9e:de:4f:f5:87:ef:b6:ca:69:ec:b3:3b:
a5:64:45:e3:26:ca:f6:ed:cd:22:9b:05:77:67:3b:5c:13:0c:
29:fa:4e:2c:e7:6e:7f:df:85:02:c5:05:20:fc:33:48:0e:f5:
a7:ce:34:07:dd:01:ee:b4:46:14:73:7f:4c:bb:22:a3:92:b3:
c0:c4:f2:5b:24:8f:65:7c:d9:5b:5a:78:da:51:21:33:36:f0:
33:8c:50:96:d9:c4:6f:b6:9b:08:78:80:b2:64:bf:5e:2d:8a:
3a:d5:ed:9a:78:71:6c:f1:c2:8b:61:06:22:06:ae:45:46:e1:
f6:54:55:28:71:6c:77:8b:cd:9f:3e:d1:43:28:be:55:35:82:
0f:c0:7a:fc:0e:08:55:0f:7d:ce:f1:03:f3:17:f2:e6:32:aa:
03:b6:54:c9:dc:53:a9:7b:ef:09:08:a6:f2:82:2f:f0:ac:80:
e2:b4:13:bf:ed:06:22:96:01:94:94:29:c1:d1:1c:e0:48:6f:
e3:ce:39:3c:0c:9d:19:88:f0:8a:df:a4:24:61:83:35:6e:be:
e5:50:bf:00:46:a0:b1:29:a2:62:d5:1c:25:3c:f6:60:a6:53:
03:9e:fa:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:11 2024 by rpki-client on console-fra.rpki-client.org