Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8971478CD58811EF94F698B5762E951A.roa
File: 8971478CD58811EF94F698B5762E951A.roa (raw, json)
Hash identifier: L2ENs53PwL8qt7EorCGim2z5YwBwnRUphyDPdDLNLdc=
Subject key identifier: CC:40:FA:92:C0:94:A8:90:B8:1F:51:BF:EB:C2:CA:52:C9:C4:AB:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013DEC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8971478CD58811EF94F698B5762E951A.roa
Signing time: Sat 18 Jan 2025 10:39:47 +0000
ROA not before: Sat 18 Jan 2025 10:39:44 +0000
ROA not after: Sun 09 Mar 2025 10:39:44 +0000
asID: 272369
IP address blocks: 154.197.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 11:13:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81388 (0x13dec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 18 10:39:44 2025 GMT
Not After : Mar 9 10:39:44 2025 GMT
Subject: CN=678b84f3-4c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f6:13:21:75:49:be:b1:cd:5f:c2:d6:7d:d6:
3a:0f:3d:13:35:e5:08:b8:95:a7:08:25:29:35:3b:
6e:e4:24:41:fd:38:0c:fb:08:b2:1c:b8:f6:58:89:
e4:c9:85:73:26:e8:3b:66:67:56:64:83:78:c5:23:
c7:47:ac:ac:9d:e6:92:36:1a:46:99:99:c3:a3:e5:
7a:88:d9:99:45:8a:fb:f5:ab:0f:86:d6:89:dd:1e:
8d:61:98:d6:a5:6f:65:45:81:4f:7a:30:ef:e7:c4:
b8:90:fe:b3:7c:57:33:9a:6d:b5:2a:cd:80:8f:f8:
12:55:9b:82:31:dc:e2:ec:d6:ee:dd:b9:69:d0:34:
0b:67:3e:6b:2b:67:d4:58:2f:bc:da:d6:e5:32:e4:
3d:06:cd:69:c5:fe:e4:0f:e9:b7:c8:59:0b:86:7a:
f2:3f:2f:4c:5e:8d:4c:36:80:9a:9e:be:4e:97:1a:
86:e8:af:bf:4d:e5:00:e6:72:2c:96:01:e8:0b:c8:
c0:e3:47:b8:ec:b5:9e:a5:1d:0b:09:91:e2:85:fd:
c9:dd:33:62:3b:36:c5:80:75:b1:85:ac:dd:23:b9:
67:c9:7e:c0:be:c9:2d:24:58:a0:8f:a2:9a:61:5b:
2b:da:3b:ef:84:d4:5c:12:40:70:39:c2:d3:4a:e0:
b0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:40:FA:92:C0:94:A8:90:B8:1F:51:BF:EB:C2:CA:52:C9:C4:AB:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8971478CD58811EF94F698B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.90.0/24
Signature Algorithm: sha256WithRSAEncryption
84:56:22:b3:87:6d:ba:ac:ad:e9:33:50:96:80:2f:ac:2b:80:
74:cc:de:7c:7e:10:28:67:b5:a0:d3:05:a1:63:09:74:cf:43:
0e:ac:be:4b:48:4b:b5:3f:70:f9:b7:a3:68:d2:6b:d9:e6:e1:
a6:64:5b:fc:fe:54:12:fe:42:99:f9:35:d9:7d:15:ba:fc:4c:
72:48:f2:41:c1:38:75:96:ef:1f:19:89:1e:ab:59:d1:e8:0e:
61:21:46:a6:2a:68:a8:5f:08:5f:89:47:48:b3:12:67:7b:d3:
15:01:91:76:87:e3:35:04:7f:59:35:ce:c2:11:4a:ed:27:67:
ae:7e:58:a2:12:16:cb:3f:6e:e4:ba:54:7a:ff:26:24:d6:18:
df:6c:3b:66:9d:6e:ba:e4:74:cd:f4:1a:30:c1:25:a2:a6:86:
df:33:f5:e4:af:6b:e3:69:67:2e:7e:2f:51:cf:c7:ec:49:c0:
c3:c1:f5:66:30:57:fc:4a:3b:35:8b:60:26:a7:8f:80:38:b3:
aa:f5:5b:db:a1:1e:fd:76:f0:b1:ad:19:3f:cb:14:ab:3b:b1:
0c:6d:bf:a6:3d:90:a1:41:a1:67:f3:2d:2b:47:2b:f9:6d:f8:
ac:81:51:64:b2:5f:e0:4a:bf:b0:68:18:58:02:e3:ef:a6:8e:
41:c8:a4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:40:55 2025 by rpki-client