Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CCEA9D2A0E611EF87C1D99F762E951A.roa
File: 8CCEA9D2A0E611EF87C1D99F762E951A.roa (raw, json)
Hash identifier: ZXk0d5eJ8Avk8VobU09WTxVxVS0UQbbJT1tN8nvYn2Q=
Subject key identifier: A3:41:63:FC:F2:49:F2:C6:8F:EF:80:E2:3C:49:4B:51:FE:D9:53:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C60
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CCEA9D2A0E611EF87C1D99F762E951A.roa
Signing time: Tue 12 Nov 2024 11:09:14 +0000
ROA not before: Tue 12 Nov 2024 11:09:10 +0000
ROA not after: Fri 22 Nov 2024 11:09:10 +0000
asID: 39600
IP address blocks: 154.95.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 11:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68704 (0x10c60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 11:09:10 2024 GMT
Not After : Nov 22 11:09:10 2024 GMT
Subject: CN=6733375a-3514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b0:49:21:33:a3:92:f6:c7:60:71:cb:69:ae:
2c:9e:3a:9e:45:29:61:ad:c2:1e:67:fc:33:1d:2f:
fc:d0:3b:f4:cc:04:f9:d1:98:07:3b:4c:b5:b6:3b:
60:d1:69:7d:57:ff:5c:e1:5c:da:d3:e9:f6:29:fd:
82:d2:35:3f:1a:18:53:a5:1a:8d:17:09:53:c6:b7:
18:ba:72:6a:04:72:45:a8:a9:f6:64:1f:98:12:29:
c3:a3:88:b5:c5:04:1e:3c:9f:66:9f:06:ae:c8:05:
27:4c:5f:05:c5:22:b6:94:f1:44:b3:40:db:4c:56:
f9:3e:e2:5f:ce:21:1d:b0:bd:f2:a0:88:ad:d9:53:
b6:3a:db:3a:b5:3f:6e:eb:91:96:90:c0:4b:f2:87:
2a:46:22:98:bf:5b:2f:4f:99:99:c1:99:10:7d:ef:
38:cb:29:25:3a:89:71:b8:d5:17:38:f4:00:ad:94:
1f:91:ca:67:c1:71:33:af:4e:95:cf:e5:8e:d9:37:
de:cb:8a:2d:e4:9d:ca:39:e1:a0:f8:57:e2:c1:a4:
1f:21:4c:46:2b:77:1e:d0:0c:73:f4:43:0d:f4:fa:
66:5b:a4:5c:b8:5a:52:09:9a:19:4f:ab:a6:93:6d:
12:36:6d:67:23:b6:bc:8c:b9:ad:b7:70:3e:61:4e:
1b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:41:63:FC:F2:49:F2:C6:8F:EF:80:E2:3C:49:4B:51:FE:D9:53:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CCEA9D2A0E611EF87C1D99F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.56.0/21
Signature Algorithm: sha256WithRSAEncryption
d2:18:dc:7b:0c:f0:73:61:c3:87:ed:ef:bc:21:f5:b3:89:be:
6f:0d:df:cc:99:79:96:86:5f:9e:69:ed:21:66:07:12:90:53:
f7:5a:3b:8a:ea:79:92:39:b3:bc:4d:e0:1b:93:ce:09:1b:a0:
df:e5:95:e2:23:4f:e8:43:fe:7b:6b:5f:94:51:40:38:20:b1:
4e:2c:c8:b0:7c:95:13:08:9b:69:ed:f8:a6:91:7d:f0:2f:8d:
33:ec:47:a1:ef:c3:58:8d:05:00:0a:83:0e:47:4c:8d:36:bb:
cc:88:e6:d6:6e:5b:d1:e2:04:16:31:11:c6:c0:6d:39:5d:27:
6a:4c:5e:48:9d:a5:ce:97:f0:3d:5f:32:69:55:15:5b:25:55:
50:d7:39:a4:ba:f1:a0:c8:b6:d0:b5:ff:03:bd:25:62:2d:60:
7b:2b:2f:36:92:85:f7:dc:9a:83:dc:a5:79:ae:c0:85:87:91:
4b:6f:5e:65:99:99:f7:56:28:80:58:bd:62:0a:0d:6c:6c:5e:
1a:39:53:9d:0f:46:50:d2:14:75:7a:f7:a5:00:ab:9e:92:50:
f0:83:84:1a:03:54:c6:23:27:55:cb:55:1e:35:31:23:45:4d:
50:0f:9c:b0:a2:9f:bc:18:71:9b:1f:94:90:6c:86:70:6e:6b:
5d:76:63:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:15 2024 by rpki-client on console-fra.rpki-client.org