Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/855FD15EA73911EF9204DE92762E951A.roa
File: 855FD15EA73911EF9204DE92762E951A.roa (raw, json)
Hash identifier: 9YUtpTgj54S3i/GpEK2CRE4GNfhNX8IHETmXFw2cwe0=
Subject key identifier: 9A:4F:1A:9D:BD:1F:40:E1:9D:8B:C9:98:BD:31:53:EC:25:24:3F:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F93
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/855FD15EA73911EF9204DE92762E951A.roa
Signing time: Wed 20 Nov 2024 12:18:16 +0000
ROA not before: Wed 20 Nov 2024 12:18:13 +0000
ROA not after: Tue 13 May 2025 12:18:13 +0000
asID: 204721
IP address blocks: 154.215.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69523 (0x10f93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 12:18:13 2024 GMT
Not After : May 13 12:18:13 2025 GMT
Subject: CN=673dd388-1445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ae:1a:24:64:fa:97:0a:26:4e:f3:8a:d6:39:
7a:6b:3b:e8:eb:52:a6:33:6c:07:c9:bd:cd:77:fe:
4e:86:ca:95:26:f8:97:30:8a:ac:83:22:7d:4b:5e:
8b:7a:af:6b:bd:e3:90:ca:e6:e2:1d:a0:36:54:03:
68:0f:ce:79:32:4e:f3:bf:25:80:2a:a1:fd:0e:32:
b6:6b:d8:08:d8:9b:6a:87:e8:a6:87:a5:2d:8c:aa:
55:5e:39:1c:42:b7:31:21:21:9d:e5:f1:a3:67:bf:
8c:8c:74:af:60:ec:ba:98:47:f4:d7:af:5e:ab:85:
8d:b1:5a:22:07:5b:bd:31:5c:9e:9c:7a:0c:b8:75:
aa:9d:3e:a6:62:3c:e0:01:0c:ba:41:4f:ef:a6:17:
d2:c1:f3:cb:c1:a3:e6:cd:7c:cc:ea:b9:fc:01:22:
51:e1:6a:44:c2:7c:49:7a:f2:8a:5b:e3:12:6e:53:
ce:39:48:ea:6c:c5:dc:8e:25:f9:dc:ac:35:79:15:
69:78:ba:cc:ec:f5:4d:aa:9a:aa:b0:4f:7d:3a:a9:
b1:e8:b1:39:8e:6a:ac:5e:30:12:a7:60:ac:b1:fc:
36:fc:02:8a:92:d9:11:6b:42:96:63:f0:cd:f7:b4:
56:fb:e0:7d:f0:7b:3b:38:79:cf:c5:9a:ad:23:83:
30:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4F:1A:9D:BD:1F:40:E1:9D:8B:C9:98:BD:31:53:EC:25:24:3F:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/855FD15EA73911EF9204DE92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.2.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:57:cd:ce:b9:42:0f:ad:1f:3f:91:8f:dc:22:2a:14:6b:aa:
4f:e8:d0:0e:98:05:7c:2d:ef:59:6d:7a:6f:05:e7:2b:df:ea:
80:30:2c:c9:37:c2:1e:c1:69:af:d1:0c:a8:f6:56:7a:12:64:
38:a8:b3:30:a4:65:3c:e5:ce:da:0f:1e:cc:57:24:66:1f:69:
ba:7b:77:35:e5:52:26:58:6c:18:d3:d3:3c:82:03:53:93:8c:
9b:35:e1:9c:66:1e:da:42:04:70:02:1e:9f:98:f8:98:75:cb:
9b:9d:df:26:5e:61:b3:c5:10:24:a8:2b:24:76:36:ef:cb:57:
61:c8:c8:63:06:3c:d6:84:d4:dd:35:8d:02:8b:19:18:c5:b4:
28:32:fd:33:c8:c1:ab:65:9a:c3:c4:af:7f:87:29:dc:bd:bd:
0b:f2:43:8c:ce:c5:d1:ea:31:8d:f7:92:ab:79:8f:de:98:45:
6b:28:57:17:dc:55:16:47:21:73:95:45:ed:91:ee:42:22:39:
c5:62:83:31:28:b7:56:a1:a4:07:c5:8a:02:b4:3c:21:d0:1f:
34:da:4d:fb:fb:93:44:10:bd:91:87:36:62:91:af:35:d1:42:
56:5f:f1:95:82:6a:0c:cc:6a:00:55:51:c3:a4:24:30:9d:e9:
a8:a7:ce:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:18 2024 by rpki-client on console-fra.rpki-client.org