Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D17893A8D3811EF8E3B669D762E951A.roa
File: 7D17893A8D3811EF8E3B669D762E951A.roa (raw, json)
Hash identifier: J1RxDB4HHada3moKk1/kV/zHKHPlG/eHnqjF4wGMaho=
Subject key identifier: 16:1A:86:B8:DF:4B:88:CE:C7:33:45:23:E2:98:0F:4F:73:81:79:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FFDF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D17893A8D3811EF8E3B669D762E951A.roa
Signing time: Fri 18 Oct 2024 10:05:23 +0000
ROA not before: Fri 18 Oct 2024 10:05:19 +0000
ROA not after: Sat 04 Jan 2025 10:05:19 +0000
asID: 136950
IP address blocks: 154.213.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65503 (0xffdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 18 10:05:19 2024 GMT
Not After : Jan 4 10:05:19 2025 GMT
Subject: CN=671232e3-aeed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:17:e1:5d:cf:88:44:8d:22:bf:4d:91:b0:bd:
ba:71:ac:32:fc:ba:b0:db:8a:da:d9:a1:15:fc:1b:
5f:8b:36:17:5f:16:08:f5:d5:be:33:ea:00:0a:80:
b3:75:c3:2d:8c:60:46:f9:21:25:6b:5a:7e:4b:eb:
3f:c4:c1:0d:c1:a5:55:b1:27:32:f3:d2:87:c1:ef:
46:60:5a:dd:43:a2:c3:87:e6:96:ab:cd:d8:0c:76:
f0:af:1d:fd:17:02:13:2a:31:8a:9c:b1:ac:d8:58:
4f:b8:9e:cc:56:e1:05:3a:b9:5b:b9:5e:28:f8:a1:
74:ca:58:99:01:83:56:33:06:96:a8:71:5f:3d:a1:
a9:11:b7:84:ef:86:c2:ec:9a:0d:dc:b5:5b:9f:e5:
b8:6e:54:11:37:11:e9:1b:0f:5e:d1:f2:fe:89:12:
20:7c:10:cf:3a:c8:ed:24:12:b3:a8:a3:8d:01:67:
84:4b:1c:2a:0b:b1:07:c0:34:cd:27:fc:c0:b6:8f:
82:9e:08:f9:3e:40:1d:b1:ab:14:b6:51:4b:19:a0:
11:db:5e:27:71:9a:41:df:5b:23:c5:7c:50:97:cb:
28:0d:d3:c6:0a:c2:06:17:e4:91:6a:b8:72:cb:fe:
b4:ab:ad:06:9a:ff:81:2f:ea:47:d4:62:f2:86:dc:
1f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1A:86:B8:DF:4B:88:CE:C7:33:45:23:E2:98:0F:4F:73:81:79:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D17893A8D3811EF8E3B669D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
49:02:5f:1d:7c:53:e3:84:08:f5:78:97:be:67:17:37:6c:f2:
3b:d2:59:b0:73:97:09:95:60:e9:e4:8a:24:55:83:4d:76:75:
08:98:9e:51:dc:51:14:f1:93:88:9f:6c:d7:fe:66:fc:8f:4f:
a3:8c:ff:42:e6:41:ef:d0:7f:21:6d:8f:6f:5f:76:1d:89:58:
11:0a:9d:61:8d:14:77:25:04:ce:6a:5d:26:08:69:d1:42:19:
e1:d3:1a:e5:64:df:6e:08:6f:0a:f8:f7:25:18:d0:2c:be:33:
71:af:23:be:6a:33:a7:12:ac:8b:68:bb:6a:bf:cb:73:d6:40:
03:87:9a:15:68:21:7e:c4:5b:9b:c7:0f:0e:a2:26:4d:f3:ad:
6a:da:87:00:46:5d:00:68:a7:69:bd:68:97:93:da:e9:19:c5:
3b:e0:8e:a2:13:ab:91:5c:a9:48:81:ea:fc:13:ab:fd:ff:2b:
65:17:b5:50:d8:ae:27:25:4e:8f:0c:1c:3c:f7:ca:bd:9f:eb:
a9:cc:1d:4e:4d:3e:b8:20:6f:1d:47:d4:9b:e4:da:f9:14:6f:
c0:0e:a1:43:3a:f7:10:5c:27:9c:78:71:34:dd:ca:0c:ec:f1:
3e:00:52:97:4a:03:00:0f:98:e0:11:3b:cd:af:28:3a:6c:7f:
10:fb:31:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:12 2024 by rpki-client on console-fra.rpki-client.org