Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8AADE3827E3811EF82B5298D762E951A.roa
File: 8AADE3827E3811EF82B5298D762E951A.roa (raw, json)
Hash identifier: t6AVol/wUKuCAsjGEwznMCCznOZTNte9vibgDvILsg0=
Subject key identifier: 08:D9:ED:8A:D3:99:E6:A7:26:81:EE:C0:3C:FB:3D:0D:88:80:F7:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F478
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8AADE3827E3811EF82B5298D762E951A.roa
Signing time: Sun 29 Sep 2024 07:57:58 +0000
ROA not before: Sun 29 Sep 2024 07:57:54 +0000
ROA not after: Mon 30 Dec 2024 07:57:54 +0000
asID: 17561
IP address blocks: 154.219.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62584 (0xf478)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 07:57:54 2024 GMT
Not After : Dec 30 07:57:54 2024 GMT
Subject: CN=66f90886-b3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:b8:b4:35:ad:2d:ab:ed:03:4f:6b:80:3e:
c6:2d:f7:57:bd:d2:0b:da:8b:fd:d4:42:af:bc:a2:
2c:d9:97:84:2b:67:c1:bc:96:8a:1b:b3:55:cc:2c:
83:9a:a5:58:cf:0b:61:20:e8:d6:25:a7:12:87:b3:
1d:f5:65:33:93:02:9f:3d:cf:9a:7a:13:49:ee:60:
95:19:ac:53:94:02:a2:9d:09:c0:18:3c:fa:03:85:
a9:24:88:02:6b:7e:b0:a1:ec:ca:21:a4:1e:81:b2:
db:bf:b0:31:3c:94:3a:75:71:67:da:2f:0e:b8:48:
04:6f:97:73:97:28:26:d4:98:6d:83:f7:2b:5a:4d:
41:d8:19:ad:94:bd:d7:02:8b:1c:f5:c4:2f:a3:51:
f8:f9:88:aa:e1:12:a5:06:9c:4a:f9:52:38:c8:9e:
3c:8a:3b:81:ea:99:a3:ca:35:8f:82:a1:c2:87:42:
f1:6d:a8:ce:2f:c1:33:cf:ce:25:8f:b7:3c:47:79:
2b:6e:5d:dd:e5:cc:6b:1e:40:5d:e4:e5:5f:95:41:
a6:98:74:ee:47:d0:5a:95:8a:6c:43:75:b4:10:30:
7a:4f:52:ad:17:19:5a:8c:e3:93:fb:1a:de:2f:c9:
a3:63:b1:92:01:c8:d7:d3:8f:29:7b:dd:74:20:3c:
a4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D9:ED:8A:D3:99:E6:A7:26:81:EE:C0:3C:FB:3D:0D:88:80:F7:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8AADE3827E3811EF82B5298D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.5.0/24
Signature Algorithm: sha256WithRSAEncryption
48:61:66:6a:14:40:a2:b6:0f:cd:b9:4f:60:f6:f8:06:c9:8e:
84:0e:9d:93:be:6f:a7:e8:93:e8:a6:35:1c:e7:93:09:c5:e9:
02:8b:90:98:84:4f:9c:02:11:7b:f6:1d:5d:fe:a7:34:61:bd:
1d:11:cf:19:56:b9:9e:90:e4:c4:30:cb:8e:ea:10:11:b8:b3:
1a:9d:9b:c5:bf:15:39:38:c1:a4:67:88:cb:71:4d:a6:2f:d7:
7d:ec:18:9c:59:5c:98:81:e4:24:d2:cf:8a:88:2d:9f:3c:ae:
d6:ed:b9:49:56:c8:87:92:ff:f7:36:f8:6b:c3:5b:3a:85:22:
5e:82:26:17:ed:f1:3b:95:73:1d:65:cb:33:6c:2a:27:7f:85:
d5:d4:a7:68:d8:05:b4:c4:5b:ae:a4:dd:b0:34:f7:aa:f6:a3:
62:0e:37:c6:6f:63:17:38:cf:05:7f:11:2e:e3:4e:51:17:69:
e4:28:12:88:c0:2e:06:49:ed:64:a7:48:78:ac:0a:24:7b:19:
a2:4d:a0:bf:03:f3:30:82:aa:c8:81:39:97:4a:15:ae:c0:e2:
26:11:3d:da:5f:8f:4b:37:56:3c:02:0e:98:df:76:90:fa:76:
ae:10:b8:3e:50:59:03:63:59:bd:c7:89:7e:25:93:fe:af:3e:
cd:ce:c9:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:12 2024 by rpki-client on console-ams.rpki-client.org