Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F97482A0D911EF92960A51762E951A.roa
File: 80F97482A0D911EF92960A51762E951A.roa (raw, json)
Hash identifier: NlLIHgLXJOnCAnTKpeeCnyFbdPYlsQfE+8A88rLjt08=
Subject key identifier: FD:28:58:D1:58:00:3A:F9:36:1C:39:BF:97:75:A0:B6:DC:D7:05:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C1E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F97482A0D911EF92960A51762E951A.roa
Signing time: Tue 12 Nov 2024 09:35:50 +0000
ROA not before: Tue 12 Nov 2024 09:35:47 +0000
ROA not after: Sat 07 Dec 2024 09:35:47 +0000
asID: 63139
IP address blocks: 154.223.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68638 (0x10c1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:35:47 2024 GMT
Not After : Dec 7 09:35:47 2024 GMT
Subject: CN=67332176-404a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4b:81:10:bc:72:53:c6:de:ea:d8:34:14:f7:
3f:28:f2:60:b6:7b:a3:20:c3:3d:60:e6:84:0a:30:
ec:d3:68:78:d0:ec:f7:97:4b:1a:3d:c0:ba:22:16:
f1:37:5c:a6:73:42:26:41:96:3b:bf:bf:b5:9f:7a:
38:96:5c:3e:55:49:45:c4:21:ba:9e:6f:f1:c3:97:
75:3c:34:ce:c8:81:e9:f9:56:3f:c5:3d:1e:ae:bf:
9a:65:70:14:9f:99:b2:9e:7d:5a:d9:68:0f:47:e4:
70:fc:8e:ef:9e:6c:fd:5c:06:ce:1d:8b:62:31:ba:
e7:e4:b7:95:66:66:c0:98:58:eb:ca:9a:77:b3:eb:
8e:a9:2c:a0:55:5e:7a:4a:b5:14:ae:54:41:40:19:
19:e0:60:c4:a6:4d:05:a9:ae:e0:7b:86:20:1e:6b:
bd:d2:df:cc:a6:14:cf:6a:ac:f8:92:c8:77:d6:7e:
b8:10:71:bf:3a:a6:6d:08:d0:74:59:d0:69:be:a1:
80:4a:f2:5d:15:58:23:bf:25:ae:5f:7d:b3:a3:30:
76:a3:3b:87:74:25:1a:f4:09:bf:81:ed:58:07:c0:
03:e8:de:e7:6d:4b:11:f1:a1:99:b4:1d:76:0e:1d:
1c:8b:cd:14:5e:0a:12:fa:41:54:41:a5:97:bb:bc:
0b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:28:58:D1:58:00:3A:F9:36:1C:39:BF:97:75:A0:B6:DC:D7:05:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F97482A0D911EF92960A51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.39.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:4c:ef:13:90:25:62:ce:dc:e7:83:83:fb:7b:0e:6d:40:20:
f9:f6:9d:e2:86:43:97:e7:19:5b:4f:c4:c0:0f:c6:b8:87:77:
a8:63:9d:88:d4:fa:cd:67:f0:a7:c6:42:d1:39:0d:d7:2f:c0:
c7:0d:e2:26:7e:ed:9d:a4:2b:e1:f7:7b:e6:08:01:56:d3:1a:
7a:81:ca:43:ae:5b:f3:c6:4c:03:39:13:e1:1d:0b:c6:7f:ac:
62:d3:15:92:68:92:b5:d6:69:cb:6d:99:17:26:5c:3f:b8:5b:
2b:1b:9e:5f:fc:1e:52:9b:7f:c9:1f:04:75:a9:69:fe:c6:1f:
5d:df:1b:1f:51:0b:18:21:8b:89:4f:2f:e7:6b:96:f2:05:07:
88:3c:3a:35:42:13:41:c5:8c:8f:df:38:be:a2:84:e7:b7:17:
41:2b:cb:c1:78:b0:85:56:71:cd:78:e1:03:6d:73:33:7a:ed:
75:ac:0f:93:68:40:19:03:f1:b2:8e:c5:c1:e7:6d:79:e8:41:
81:5d:b8:10:c2:ec:a4:94:39:46:b0:58:02:48:70:7b:34:de:
43:42:fa:6d:e2:f9:80:d6:ef:92:7a:c0:b4:da:98:a0:46:1c:
c2:c3:e4:5c:97:cd:29:b4:e3:f6:fc:be:c8:e1:24:1d:4b:b2:
12:db:d1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:13 2024 by rpki-client on console-fra.rpki-client.org