Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7517246AA32D11EF800A7FAD762E951A.roa
File: 7517246AA32D11EF800A7FAD762E951A.roa (raw, json)
Hash identifier: NKmfyP65PZih+i3RKTkz/BxTFOuVchE4ydvCy5ZZGyI=
Subject key identifier: 49:F7:9A:EA:3A:DB:C3:A6:57:D8:32:48:DE:8D:D0:F9:FA:6E:80:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7517246AA32D11EF800A7FAD762E951A.roa
Signing time: Fri 15 Nov 2024 08:41:51 +0000
ROA not before: Fri 15 Nov 2024 08:41:47 +0000
ROA not after: Tue 10 Dec 2024 08:41:47 +0000
asID: 397630
IP address blocks: 154.84.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68952 (0x10d58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 08:41:47 2024 GMT
Not After : Dec 10 08:41:47 2024 GMT
Subject: CN=6737094e-ef34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2e:b5:6a:fe:34:f7:48:1b:ba:88:3f:15:4f:
4f:5f:d0:46:f8:b1:d4:6e:b4:81:ba:0c:61:48:b0:
8e:e0:82:20:4d:9d:a8:a1:e9:31:97:d0:06:be:dc:
70:eb:00:f8:3a:87:9c:95:6e:70:cd:6c:3a:8a:0a:
3d:82:5f:51:1b:ca:01:1f:7b:3f:83:46:39:62:e0:
2e:17:d1:13:dd:8d:c7:46:fa:01:0b:af:62:4e:73:
ff:35:b0:06:fa:2a:10:90:7b:0c:7e:34:e6:d0:61:
a2:2b:c9:31:95:75:c5:09:46:26:9b:75:5c:31:a2:
46:7d:8c:c2:a0:53:93:33:f3:07:8a:ed:c5:92:2e:
0f:e0:ac:e4:0d:1a:12:53:a2:31:24:fa:d0:03:f9:
01:fa:bf:a4:d6:e5:1d:45:b8:38:f9:a4:3f:07:fe:
35:e1:c3:25:da:de:6c:04:e4:d9:5d:5e:2c:c0:62:
88:a6:53:d0:5b:92:52:33:e7:80:ea:c1:df:90:a5:
03:d6:12:a6:0c:a4:25:3c:7c:a6:a9:4e:1e:e8:a3:
3b:5e:05:f1:3b:ef:05:ea:f2:3a:8d:a0:e4:71:b7:
51:f6:70:95:e6:2a:cd:7d:4d:a0:0b:d3:e0:57:c6:
4e:62:b0:52:85:f0:1c:3a:86:dd:76:c9:85:91:36:
f2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F7:9A:EA:3A:DB:C3:A6:57:D8:32:48:DE:8D:D0:F9:FA:6E:80:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7517246AA32D11EF800A7FAD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.132.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:1b:64:34:4c:51:c5:d1:92:f3:bb:1e:87:c5:33:60:4b:e0:
24:79:45:5f:69:6c:42:81:7d:e4:0c:e7:09:59:25:07:0a:dd:
ae:98:43:99:7b:99:7b:cc:5d:20:db:1b:7c:92:72:14:53:1c:
7e:a5:79:63:55:1f:2a:7c:e4:5f:06:92:40:0c:ac:43:06:f8:
ec:2f:75:d6:0e:bc:5f:cb:c0:87:cb:b1:5c:ea:87:1f:22:9b:
c8:cd:fa:65:c4:1a:6a:09:f6:98:32:92:97:cd:16:1b:6c:fa:
e3:9e:d5:6e:f4:27:4c:5f:68:d6:ea:2a:2f:fa:59:a5:2c:f5:
17:7a:38:a3:94:bd:f4:fb:b2:ec:1e:24:93:fe:7b:f1:28:ee:
d9:75:af:9c:5e:e6:9a:f1:fa:f8:42:fe:92:29:97:a7:b1:fa:
77:c4:00:ac:9d:a9:8b:23:52:d5:f0:1a:f1:cd:7d:e9:33:51:
20:b4:7b:a5:cd:13:9f:93:a7:ca:b8:17:c0:cc:c7:c1:a1:a9:
40:82:fb:51:0e:3d:ca:74:e6:4e:57:7e:2d:1d:56:65:d6:ac:
2c:1f:bd:f7:1a:8f:30:78:61:bb:31:27:ca:9e:43:a4:78:cb:
f2:f7:23:40:51:00:15:0a:37:39:42:60:8f:8f:2e:65:db:3d:
5b:12:5c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:30 2024 by rpki-client on console-fra.rpki-client.org