Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C8919A83AA311EFB07AC190762E951A.roa
File: 7C8919A83AA311EFB07AC190762E951A.roa (raw, json)
Hash identifier: xtBG30mzU64aR8ctpfhqClEa+EcomOoSncP3Eo7EbvE=
Subject key identifier: 37:C0:D5:D4:A8:93:CA:25:D0:5A:36:15:D5:01:37:02:CA:00:A7:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CD86
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C8919A83AA311EFB07AC190762E951A.roa
Signing time: Fri 05 Jul 2024 07:52:12 +0000
ROA not before: Fri 05 Jul 2024 07:52:08 +0000
ROA not after: Tue 07 Jan 2025 07:52:08 +0000
asID: 63199
IP address blocks: 154.223.84.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52614 (0xcd86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 07:52:08 2024 GMT
Not After : Jan 7 07:52:08 2025 GMT
Subject: CN=6687a62b-9a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:59:31:7a:2c:7d:7c:b8:92:03:a4:a4:26:0d:
47:db:73:e9:e5:80:9c:d8:f2:7b:37:b4:f9:28:15:
52:27:f1:3b:bf:5b:1d:03:22:43:5b:b2:6c:e0:13:
10:68:05:60:97:23:f4:93:d7:10:b8:29:fc:62:55:
c3:51:17:7f:80:f6:34:d2:ca:c6:d5:83:a5:12:aa:
52:1a:8d:54:ec:50:b1:5d:39:ed:dd:73:47:e4:9c:
8e:27:c4:7e:30:9d:29:33:b4:e1:3e:46:a3:6c:ba:
89:1f:24:70:50:a9:32:f7:8e:d9:a0:57:b9:41:4d:
67:08:b0:aa:78:17:c4:81:56:27:a3:27:97:eb:ef:
f8:07:f8:fe:10:af:50:2e:38:26:0a:14:fd:10:c9:
e9:da:b7:15:96:08:0b:04:66:5d:8f:e2:20:b8:78:
aa:61:9a:38:76:34:52:76:66:69:ef:ea:23:98:35:
8b:95:ac:0c:69:2a:81:43:fe:ee:c2:80:67:7c:16:
76:87:5a:df:5e:cf:a7:84:79:9a:37:52:45:1a:fc:
2b:1f:ce:b2:8a:c3:ff:43:8a:db:0c:df:8d:9c:4c:
01:fd:a7:36:14:20:4f:1d:ba:92:6d:62:ff:4f:dd:
22:52:54:15:26:92:06:30:7e:9e:f3:68:21:ee:a2:
c8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C0:D5:D4:A8:93:CA:25:D0:5A:36:15:D5:01:37:02:CA:00:A7:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C8919A83AA311EFB07AC190762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.84.0/22
Signature Algorithm: sha256WithRSAEncryption
be:98:80:5f:5b:ee:5e:08:a7:b2:70:61:85:e4:5f:8e:e2:ca:
75:31:db:d3:81:f5:a2:1f:15:6b:a8:fb:00:1f:5f:46:cc:23:
74:c8:fe:36:90:45:39:5a:e5:6f:3c:54:b2:8e:c7:87:b7:81:
e8:39:37:56:f5:d6:38:fe:1a:25:4f:82:50:75:19:81:e7:d5:
ec:4f:28:e0:5b:69:08:38:f4:b7:97:3b:6a:1a:d8:46:ee:e7:
aa:76:44:de:58:01:fe:d1:65:0b:c1:01:4e:1e:03:28:59:a3:
86:1e:cd:8a:68:b0:d2:01:0c:ef:6c:b0:ac:67:88:e4:fb:71:
65:08:96:61:50:0b:3e:09:31:13:a4:35:0b:f7:b9:63:71:eb:
ea:27:85:bb:7c:be:fc:9d:1b:df:d3:59:5c:85:4e:14:fa:75:
95:75:43:b6:5d:89:e1:dd:e0:bf:5d:d9:f0:04:ba:23:ad:c8:
28:6a:c1:60:bb:46:31:8e:03:4b:35:69:12:8c:b9:98:70:15:
04:df:8f:e0:68:4a:6c:6c:2e:e3:2e:5f:39:76:84:34:8f:ff:
23:ba:d0:1c:d3:a5:91:11:d9:40:9c:18:c9:58:ba:8a:fc:ec:
f3:1c:ee:e2:ed:53:86:dc:39:22:b4:03:cf:67:ad:eb:e6:9d:
5a:1e:0d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:10 2024 by rpki-client on console-ams.rpki-client.org