Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A935A648ACA11EF95027B54762E951A.roa
File: 8A935A648ACA11EF95027B54762E951A.roa (raw, json)
Hash identifier: jn0rJxkTRnHOfAv8Pgk6bqvmM3a8jvf9MDO0JvEP8vo=
Subject key identifier: 4E:09:EC:F0:AB:30:69:FC:9F:C5:2B:C8:E7:CE:3D:E2:66:93:8A:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE28
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A935A648ACA11EF95027B54762E951A.roa
Signing time: Tue 15 Oct 2024 07:53:19 +0000
ROA not before: Tue 15 Oct 2024 07:53:15 +0000
ROA not after: Fri 22 Nov 2024 07:53:15 +0000
asID: 18779
IP address blocks: 154.203.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 07:53:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65064 (0xfe28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 15 07:53:15 2024 GMT
Not After : Nov 22 07:53:15 2024 GMT
Subject: CN=670e1f6e-cbe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e2:2a:66:ed:a2:aa:dc:5c:37:c4:bb:2b:29:
68:30:b9:1c:03:a7:f5:a3:cd:a4:fb:f2:e5:cb:8d:
31:b1:04:6b:3f:a2:3d:fe:54:2d:e6:bb:1f:be:45:
12:6d:48:b0:06:95:0e:6b:05:04:82:0c:a0:26:81:
f5:af:99:d1:4c:09:2e:ee:d3:59:56:1a:1f:4e:ee:
66:d4:e0:a3:6b:e5:de:29:0d:b3:ba:24:24:ad:48:
39:0a:f3:ab:05:f6:62:98:59:7a:a7:37:d2:1a:8b:
ad:c8:90:e2:73:a4:22:bc:6d:dc:88:36:8c:8f:49:
04:c6:a9:70:d5:82:ae:a3:11:95:8f:d2:71:ee:66:
4c:b6:24:15:3b:44:70:69:af:57:79:99:ce:64:8c:
13:fa:ae:85:c5:41:45:27:e2:65:5a:e1:46:08:dd:
54:37:72:1f:3c:cf:76:7a:f5:e7:f0:2e:3c:f4:ef:
89:23:d2:63:21:fd:f2:50:18:82:f7:6c:48:58:d4:
51:bb:ff:04:79:83:bb:7d:01:98:ef:a8:1c:17:dd:
81:e3:75:47:70:3d:db:59:db:53:52:c4:c6:4e:63:
29:e7:88:58:e3:45:99:d8:ca:b2:20:ae:bb:98:eb:
a8:a2:ac:2e:86:a4:65:e0:74:81:eb:cc:39:2f:79:
6c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:09:EC:F0:AB:30:69:FC:9F:C5:2B:C8:E7:CE:3D:E2:66:93:8A:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A935A648ACA11EF95027B54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.60.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:09:72:4d:01:7a:f3:05:ff:d4:9b:ef:65:ba:5d:fd:3b:2f:
e3:d8:88:58:31:2b:3f:65:7b:dc:22:5d:54:d1:86:39:74:96:
11:53:e6:29:b9:42:fd:2e:ad:fb:38:a8:5d:7c:41:5c:93:03:
cb:de:53:b7:ef:b5:a4:29:a7:00:27:69:30:5c:25:49:23:22:
94:4d:31:99:9e:a1:a9:b1:ab:82:7c:89:14:6e:ed:2b:6f:2b:
21:97:f6:a8:e6:eb:ce:62:50:16:1a:3c:29:0a:30:c1:84:3a:
f6:67:26:a1:46:b1:24:ed:b5:57:bd:8f:ab:73:4a:8d:d6:a4:
8b:03:5d:49:9b:0c:5f:86:de:7c:ff:98:fa:c2:58:9c:15:01:
02:3b:1b:6a:af:fa:e1:27:dc:69:dd:77:92:7a:60:79:35:9a:
28:76:1e:ef:22:a3:82:29:dd:76:62:61:29:08:03:85:94:76:
61:65:de:56:03:5f:06:6a:11:05:d2:60:fe:08:ea:6d:37:42:
2f:94:f9:13:7c:99:53:32:2b:50:cf:a0:6f:21:c3:c1:50:a1:
69:63:05:c8:1c:24:3a:37:8e:20:83:9a:2a:46:67:2d:16:e1:
9b:74:98:6f:69:03:af:c7:32:cf:a3:6f:8f:5c:91:d6:52:f3:
34:20:7b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:50 2024 by rpki-client on console-ams.rpki-client.org