Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/788782D4AEC811EEAB68B457775412E6.roa
File: 788782D4AEC811EEAB68B457775412E6.roa (raw, json)
Hash identifier: EAFyv8JjIQMMIvEexHiP0AWz+cy5s+sO4AueOULRMdU=
Subject key identifier: 1A:EB:26:03:EB:DA:42:8E:E2:55:F6:16:93:9A:3F:4C:35:3A:98:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/788782D4AEC811EEAB68B457775412E6.roa
Signing time: Tue 09 Jan 2024 08:24:14 +0000
ROA not before: Tue 09 Jan 2024 08:24:10 +0000
ROA not after: Sat 11 Jan 2025 08:24:10 +0000
asID: 138995
IP address blocks: 154.198.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29413 (0x72e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 9 08:24:10 2024 GMT
Not After : Jan 11 08:24:10 2025 GMT
Subject: CN=659d02ad-6c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:75:49:e4:01:1e:ba:17:10:2c:33:b4:c4:3d:
ac:a3:44:cc:c5:ba:fb:d0:c1:25:f7:e0:97:28:bb:
b3:f9:7d:8f:06:29:9e:0a:02:47:dd:7c:fd:df:be:
00:64:b1:45:ac:4c:51:b4:3d:5f:d4:5c:63:5c:57:
a1:4a:78:74:b4:4d:96:61:71:25:73:36:93:65:11:
55:08:10:0b:bb:96:22:6f:04:f5:e8:b1:2b:94:6f:
04:b0:dd:62:d7:35:81:3d:65:86:bd:06:58:a6:c3:
e0:77:d4:81:d1:bd:cf:40:be:41:3e:5e:86:ae:67:
f2:e7:a6:d4:1a:45:d0:71:80:00:12:dc:00:c2:e0:
0d:52:42:a5:02:af:60:14:c7:be:ac:33:1a:d3:41:
91:46:a9:82:dd:cd:fb:49:a6:01:5a:3d:dd:93:65:
8f:77:8e:aa:53:4c:3c:d1:49:5f:ee:f8:c7:b7:2f:
45:79:3c:e2:d3:f8:1e:a0:d2:0b:78:f1:5f:d4:c1:
0c:5b:22:d9:4e:c2:66:55:83:62:b2:f9:63:2f:68:
9d:66:17:c4:2b:f3:9d:fb:8c:bb:f4:00:09:0a:fc:
c6:bc:9f:57:db:b5:c1:39:32:24:9c:78:7e:6a:bd:
7a:cb:96:f6:69:ea:0d:99:48:3f:9a:a4:a1:1d:84:
78:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EB:26:03:EB:DA:42:8E:E2:55:F6:16:93:9A:3F:4C:35:3A:98:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/788782D4AEC811EEAB68B457775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.49.0/24
Signature Algorithm: sha256WithRSAEncryption
90:f0:b2:af:ab:41:62:43:1f:b4:ee:5f:42:51:c2:8d:af:77:
11:ad:65:5a:78:cf:a2:dc:1d:5e:92:6f:4b:6d:19:fe:7a:31:
31:1c:5f:80:1e:c3:dc:aa:c2:ce:e1:cc:21:86:52:b5:68:12:
d1:36:f8:af:0d:de:7d:67:9f:f2:c4:c2:ff:d8:d0:15:26:bf:
b1:a6:9f:35:e7:74:62:55:ce:50:39:7a:e0:88:03:83:48:85:
b8:6b:43:f6:a7:52:46:64:16:0f:98:69:7a:66:c1:28:13:f5:
80:1a:02:01:6b:fc:73:7d:fb:bf:94:53:36:12:f1:f8:9f:cb:
c9:d8:45:dc:e2:94:37:9b:15:f7:cb:77:f2:47:1d:5d:85:46:
29:f1:5c:99:51:41:a5:0a:d7:3f:80:62:79:7c:07:da:a7:8a:
9d:7b:b1:61:2b:7e:b4:a7:8a:fe:de:38:0e:04:9e:e1:c9:a6:
16:df:e7:5b:64:b7:9c:13:92:5e:a7:a6:6d:86:00:c8:a8:d3:
af:19:4f:bf:e7:4b:31:e5:03:82:78:df:fd:3a:79:8b:ff:5d:
eb:35:1b:77:4e:e8:e9:8b:29:19:24:dc:83:a2:07:a0:9b:6c:
e6:7d:85:c5:9a:79:94:2b:d8:43:42:7c:6c:e7:d2:b1:fb:1c:
2f:de:68:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:10 2024 by rpki-client on console-ams.rpki-client.org