Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8286C26EA45311EFA0A20159762E951A.roa
File: 8286C26EA45311EFA0A20159762E951A.roa (raw, json)
Hash identifier: v23cWMdeDFiyNJwiCUyvoP/wzireTFc0PvIQhlLO5wc=
Subject key identifier: 6B:AC:4C:BA:8C:3A:E8:ED:D6:76:D1:02:3D:CE:F8:EC:79:BE:CB:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E2F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8286C26EA45311EFA0A20159762E951A.roa
Signing time: Sat 16 Nov 2024 19:46:45 +0000
ROA not before: Sat 16 Nov 2024 19:46:40 +0000
ROA not after: Tue 26 Nov 2024 19:46:40 +0000
asID: 9009
IP address blocks: 154.199.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69167 (0x10e2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:46:40 2024 GMT
Not After : Nov 26 19:46:40 2024 GMT
Subject: CN=6738f6a5-9b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:65:7e:36:2e:5c:cc:23:a4:a6:05:15:ee:
73:40:f7:cd:bf:d1:3e:57:e6:8b:d7:db:aa:d4:51:
c1:83:f3:c1:31:6e:f2:8c:04:5c:3d:dd:d1:eb:a5:
b7:13:29:32:04:50:e5:56:c3:59:aa:3a:39:13:93:
93:89:76:ec:4f:34:23:e9:52:02:66:f8:12:c2:d5:
60:b4:31:ad:e0:1d:00:18:ea:7a:6d:f6:de:62:1c:
3e:e6:f8:ff:3d:ff:b0:64:7f:11:36:ca:0b:06:0b:
73:81:51:53:b1:29:1c:d8:12:f9:64:b0:68:cb:02:
0c:59:c8:7d:a3:f0:7c:a7:42:83:9b:5e:3e:57:03:
82:c8:0d:96:11:fa:c3:16:b3:71:25:e2:b8:85:14:
10:44:aa:ce:7e:af:b4:d0:e0:12:3d:80:ee:9c:e4:
6b:7c:5e:13:a8:7a:f7:2a:de:aa:43:79:b6:9e:80:
01:66:bc:2e:da:4a:13:41:43:e0:ad:9c:67:b2:64:
08:ba:60:bb:6c:71:29:06:48:33:18:51:ba:da:d2:
8f:58:2b:3b:d9:1f:5e:2c:58:1a:6c:3d:f8:a1:1d:
6f:55:f1:a0:f3:db:08:1c:93:f1:25:0c:91:c4:09:
38:71:02:62:a7:ff:0a:08:c2:32:6a:52:5c:d4:5d:
fe:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AC:4C:BA:8C:3A:E8:ED:D6:76:D1:02:3D:CE:F8:EC:79:BE:CB:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8286C26EA45311EFA0A20159762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.128.0/19
Signature Algorithm: sha256WithRSAEncryption
8b:1f:ac:1b:ca:6e:38:82:e6:26:07:d4:9f:d9:6d:d6:23:2b:
d3:ab:b0:7d:22:f0:e4:c5:af:2b:37:07:81:ad:d9:1a:ce:a1:
09:28:f5:d1:a5:c6:04:67:3b:d5:1f:8c:dd:0f:9c:55:ef:40:
d5:84:f3:27:5c:f2:ce:18:58:74:37:7d:d8:24:cd:3b:92:56:
27:bf:e2:05:43:52:1d:dc:f1:24:f8:f9:04:cc:e6:01:6c:a9:
a8:0e:71:ef:e1:08:e8:f7:29:be:c8:09:16:1c:b7:c8:20:cf:
47:2a:88:f6:d8:4c:6b:e3:a5:91:1a:c3:f2:04:f3:1b:ee:58:
18:de:d8:c6:c0:be:76:e3:70:c2:8a:44:e8:63:8c:e9:fc:38:
a6:b3:0e:3c:65:c7:df:22:d8:3e:ce:bd:32:8a:c1:14:db:b0:
bd:3c:fc:b1:96:4c:10:33:e2:37:e4:d7:fe:30:a8:96:ae:28:
a6:96:c2:d1:24:dd:01:42:0c:97:26:f1:8e:41:cb:90:a0:08:
c1:e6:62:86:b2:bb:70:85:37:db:83:96:85:8f:3f:fd:6c:cd:
d4:5b:e1:4d:11:de:c7:31:c9:fa:a9:8b:f5:46:22:df:14:56:
b5:a0:35:3f:2f:f6:61:f2:a5:5c:54:10:3b:0b:a0:c7:4d:26:
99:9d:4a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:54 2024 by rpki-client on console-fra.rpki-client.org