Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/818978DCA73E11EF92A2D1B0762E951A.roa
File: 818978DCA73E11EF92A2D1B0762E951A.roa (raw, json)
Hash identifier: L8uB1nEM4omsdlVeEosjdR6vFs5xWb7SKUwo9CYqkKw=
Subject key identifier: 3F:BD:55:52:E7:D7:E1:E6:91:60:E0:D5:00:89:42:67:32:6E:55:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FAF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/818978DCA73E11EF92A2D1B0762E951A.roa
Signing time: Wed 20 Nov 2024 12:53:57 +0000
ROA not before: Wed 20 Nov 2024 12:53:54 +0000
ROA not after: Sat 30 Nov 2024 12:53:54 +0000
asID: 132325
IP address blocks: 154.212.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69551 (0x10faf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 12:53:54 2024 GMT
Not After : Nov 30 12:53:54 2024 GMT
Subject: CN=673ddbe5-bcef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:05:9c:26:0c:4f:c9:e2:77:04:31:b6:25:87:
c1:1c:71:1c:87:a2:9f:d4:27:94:47:4b:a1:af:c8:
63:7e:57:e1:fd:98:84:a0:98:93:ce:47:b0:0d:5d:
df:0a:97:b3:11:34:38:9f:85:e8:29:0c:59:4c:98:
98:1d:88:c7:1d:c0:c5:87:13:a0:ed:57:b4:8b:fd:
55:e5:ac:76:b4:70:77:d1:60:6e:07:9f:55:07:7a:
6f:d7:03:02:7d:ad:e0:8b:a8:91:53:e8:1d:97:39:
54:b0:20:05:a6:d4:04:1b:d3:2a:a9:8e:a5:a3:90:
8e:f9:25:c0:d4:7b:b9:6e:23:74:24:1a:d3:30:ca:
24:e3:4a:20:93:0e:75:76:2e:dd:d7:b8:96:6f:ee:
6c:07:40:b1:33:31:0e:ae:28:ed:c6:98:72:74:8b:
f4:b8:18:3c:53:a8:bb:76:7a:34:0a:50:3c:b4:7e:
ad:a6:11:ac:af:d3:e7:55:2f:41:ce:6b:c6:7e:c5:
da:5e:3b:f2:23:c4:f8:ff:6c:f7:76:06:94:0c:64:
cc:eb:20:62:99:89:42:38:c9:e0:89:e7:8d:d4:80:
a7:46:91:be:ca:28:6a:a1:bf:a3:d2:b1:90:41:cb:
90:53:f2:d3:55:13:25:c6:58:69:3a:dd:9e:41:7a:
50:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BD:55:52:E7:D7:E1:E6:91:60:E0:D5:00:89:42:67:32:6E:55:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/818978DCA73E11EF92A2D1B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.147.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:29:a1:eb:39:96:19:16:d4:42:f7:81:b6:b1:a9:8a:5d:a4:
a9:8f:e8:9a:39:93:39:0c:fd:45:3a:84:30:75:a4:f2:0c:a6:
f8:09:cb:bc:bb:ef:c0:d2:cf:84:68:f9:aa:6a:18:5d:41:45:
5f:a9:4a:e0:7b:92:47:68:59:fe:85:41:7f:86:86:07:9e:ac:
70:d7:b1:7a:f9:4a:5e:d8:a6:c1:40:c0:8d:be:40:fa:23:5a:
aa:6d:12:26:19:34:3c:69:c1:ea:3a:7c:76:56:48:ac:b8:f6:
92:01:44:ae:bf:34:03:03:5d:db:b9:36:be:6b:92:5a:aa:a2:
14:cd:57:fd:53:83:76:3e:ea:57:4d:a3:2f:fe:28:a3:5d:71:
e9:40:7d:79:8e:c3:b8:76:77:1c:d9:a5:1c:c5:64:34:52:6f:
4d:4a:11:3d:99:24:90:28:75:98:17:5a:3a:cd:75:03:03:67:
15:04:51:74:20:14:4c:25:f6:82:83:0e:33:2d:d6:67:2f:76:
b1:58:3b:3a:25:a6:ef:4c:1d:a6:e7:d4:a6:cc:6d:78:8e:09:
52:dc:e8:08:65:88:71:3d:7e:19:7c:c4:04:6e:34:74:20:be:
a5:eb:ce:c9:fa:2b:56:86:54:3a:93:65:84:97:b9:ad:88:fb:
4f:3a:df:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 00:07:33 2024 by rpki-client on console-ams.rpki-client.org