Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87039582A8E611EFB774B09E762E951A.roa
File: 87039582A8E611EFB774B09E762E951A.roa (raw, json)
Hash identifier: wXJs9M60tgdgvWYcCi2uphPYWvTHBOwknEQ1azTaX/U=
Subject key identifier: 48:EC:A8:47:FF:B6:A6:C3:EB:AD:89:6A:A0:C9:FC:DE:6B:3F:C0:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110D5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87039582A8E611EFB774B09E762E951A.roa
Signing time: Fri 22 Nov 2024 15:29:13 +0000
ROA not before: Fri 22 Nov 2024 15:29:10 +0000
ROA not after: Tue 03 Dec 2024 15:29:10 +0000
asID: 62240
IP address blocks: 154.194.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69845 (0x110d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:29:10 2024 GMT
Not After : Dec 3 15:29:10 2024 GMT
Subject: CN=6740a349-6e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b2:a3:ce:4e:47:2e:62:32:a4:67:41:62:9d:
06:e2:4a:c2:44:f1:77:7d:2f:00:82:e1:16:9c:15:
8e:96:29:e0:0f:d3:af:91:92:c7:cf:81:57:78:2b:
14:53:c4:e7:96:0f:04:7b:fb:92:c5:fd:51:d2:58:
45:cd:ab:bc:6d:b1:47:e0:ca:6c:f3:cc:e3:e4:59:
d5:48:dc:65:c9:71:e0:5a:ec:6b:e6:cd:9a:84:5a:
38:49:2e:4f:d8:14:06:92:5f:a7:4c:09:52:41:28:
30:b8:a6:1f:a2:31:a4:1a:45:85:4e:61:cb:ed:bb:
f2:bb:34:66:c3:df:40:a6:19:62:e6:c3:7e:21:01:
6f:95:37:27:8c:a7:2b:8a:ee:17:50:81:90:15:56:
59:81:f8:f0:db:8a:71:2b:56:ac:23:ba:42:7f:9e:
ac:97:ee:cc:ba:4b:88:1f:56:39:b9:fb:17:82:24:
8e:e6:17:b3:0e:65:89:3e:49:ac:e6:1f:c4:96:d7:
05:35:c1:0f:a3:58:e9:1b:76:96:d2:1c:89:7b:f2:
7a:f9:f7:5c:46:b7:d7:7c:b8:96:b8:ee:1b:1e:3a:
81:1c:e3:43:8c:f0:91:db:d4:76:e1:e5:23:e6:ea:
ab:d9:e6:2b:b3:88:f9:2c:ff:76:3c:1e:ac:99:1e:
2a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:EC:A8:47:FF:B6:A6:C3:EB:AD:89:6A:A0:C9:FC:DE:6B:3F:C0:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87039582A8E611EFB774B09E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.107.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d1:a3:7a:31:1a:dd:5a:5f:7c:67:7a:17:2a:cc:68:4c:ae:
d7:e6:45:db:d4:92:36:e7:32:b1:01:40:8b:8b:7f:02:26:99:
af:49:53:8c:fb:64:97:26:61:00:36:f1:e1:c8:29:59:78:6c:
cc:de:a7:3b:19:2d:a0:66:c1:dd:0f:ce:25:e0:fc:bf:6e:2c:
ec:41:90:6d:e0:55:d6:9c:e9:7e:0d:d8:4d:8a:ed:8b:24:c7:
74:5d:eb:91:86:2f:34:aa:22:28:5e:f3:38:e7:89:ad:fe:b1:
65:72:45:fd:a0:6b:9b:c6:9c:24:23:2e:3f:ef:fa:4d:83:cb:
7d:48:2e:09:5f:cf:00:01:76:bd:7f:af:60:e2:46:a6:04:89:
57:3e:83:52:4d:1b:ed:e0:cc:74:2d:cf:a8:6a:51:00:2c:4f:
4a:0d:c0:a0:a2:13:a0:8f:51:6d:46:17:85:cd:e6:26:9e:a4:
0c:5e:32:ca:38:b5:71:51:58:45:f1:f1:3e:c2:92:81:95:b3:
43:e8:44:f3:98:f3:40:73:fc:4e:72:99:f2:9a:3e:b4:b0:21:
b3:3c:8f:09:58:ae:ce:98:4b:2b:18:0e:68:24:da:d4:06:32:
0d:8c:02:68:d0:36:a6:3d:80:4d:ff:fd:f1:e6:1f:d0:f0:b6:
5f:4e:a6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:37 2024 by rpki-client on console-fra.rpki-client.org