Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ADD1396AB6711EEA2C011A7775412E6.roa
File: 7ADD1396AB6711EEA2C011A7775412E6.roa (raw, json)
Hash identifier: ukfi2ihKB6hrNZjsNaEYAeD1JzscjuenqAf411nbVKA=
Subject key identifier: EC:3E:02:92:41:AC:02:79:7F:49:62:1A:C4:C1:BE:71:AC:BC:CA:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6F33
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ADD1396AB6711EEA2C011A7775412E6.roa
Signing time: Fri 05 Jan 2024 01:12:23 +0000
ROA not before: Fri 05 Jan 2024 01:12:18 +0000
ROA not after: Tue 26 Nov 2024 01:12:18 +0000
asID: 52468
IP address blocks: 154.81.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28467 (0x6f33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 5 01:12:18 2024 GMT
Not After : Nov 26 01:12:18 2024 GMT
Subject: CN=65975777-ab12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5a:5c:72:37:77:49:00:b8:8c:e0:bb:ed:f0:
72:4b:15:e8:79:2d:92:e4:70:70:80:cd:3f:30:58:
52:45:ca:bb:e4:e1:2f:e7:66:62:0c:63:26:8b:66:
4b:8d:39:4e:7b:07:61:b5:72:a3:06:61:14:93:1d:
c0:0a:22:cf:3b:19:a0:ee:3e:99:f7:35:da:af:c1:
0a:1b:a8:ae:23:c8:14:44:28:f2:02:ab:63:50:99:
57:47:ec:62:a3:7d:8f:57:25:b1:1a:15:23:bb:ad:
58:25:f1:c3:e3:a3:0a:f6:24:00:e5:14:6c:04:63:
bf:e6:29:d7:94:7f:18:8e:05:c3:42:ff:83:10:28:
9a:05:81:a0:91:8f:d8:3e:ce:f1:5b:d1:91:e7:78:
75:0c:03:6c:a4:9f:bd:4e:e9:f0:0f:76:f0:75:58:
e0:d4:44:b9:fb:e3:f0:59:15:1b:da:3c:72:23:26:
d9:9f:97:f7:a4:2a:c7:a4:b6:c1:35:09:1a:0b:d0:
9d:17:63:26:f2:62:b6:b9:a8:a9:68:d0:a8:da:0b:
c1:c4:3b:b5:05:64:11:13:d4:82:a4:8a:d2:1d:cf:
58:65:44:61:20:dd:4a:7f:d3:23:a0:e5:56:e3:85:
0f:2b:4c:ac:92:c7:7b:6d:d9:25:f6:49:ac:9c:05:
f3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:3E:02:92:41:AC:02:79:7F:49:62:1A:C4:C1:BE:71:AC:BC:CA:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ADD1396AB6711EEA2C011A7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.221.0/24
Signature Algorithm: sha256WithRSAEncryption
36:a4:ce:87:94:e4:c8:96:c1:66:52:ff:cf:94:7c:ec:3d:2a:
87:8a:cc:b1:3b:f7:82:bb:e2:93:e5:c9:25:ee:c4:f3:17:b6:
8d:d2:dc:8f:24:39:b9:33:2f:00:40:18:07:28:e1:61:18:4c:
f0:1e:5c:44:99:d4:9e:36:6b:69:24:bd:21:05:3c:2f:40:4a:
7f:a0:b6:4d:bd:9a:64:3a:9e:e6:0a:6c:4c:c5:30:cf:0a:d1:
c3:b5:7b:89:88:92:d9:87:1c:52:74:c3:3b:65:6e:b5:2e:15:
e5:66:5f:18:2f:18:df:21:d9:fd:87:36:b4:c3:d0:da:09:2a:
e1:5a:af:c4:d3:f7:c9:bc:dc:49:4b:32:1a:82:16:41:16:92:
f0:60:14:b8:16:35:4f:71:67:14:82:31:4c:94:b4:02:96:9f:
70:33:1d:c5:b9:34:2e:67:ea:43:b6:9b:93:01:93:cd:62:56:
d0:aa:bb:95:91:0b:68:6d:40:17:21:c6:1c:95:c0:8f:d1:4c:
f7:7d:31:20:87:9d:bf:4a:d7:8c:4a:d2:4b:f7:c2:69:26:f0:
54:65:70:69:59:ba:1d:05:4d:4f:e8:9c:ef:75:86:e2:98:88:
98:63:bf:3e:84:fd:81:31:7d:34:a8:0c:e0:e3:b2:6c:64:e7:
6a:68:9e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:53 2024 by rpki-client on console-fra.rpki-client.org