Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D0D68A6AE1C11EE9289A39C775412E6.roa
File: 8D0D68A6AE1C11EE9289A39C775412E6.roa (raw, json)
Hash identifier: MMas0SKBUeMF6qQtYhAH5zo87FkPRWvgAbES0yA3oRQ=
Subject key identifier: 2B:48:F0:4A:6A:5E:2D:ED:2D:34:95:EE:5D:B3:14:EF:2F:C3:DF:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D0D68A6AE1C11EE9289A39C775412E6.roa
Signing time: Mon 08 Jan 2024 11:53:34 +0000
ROA not before: Mon 08 Jan 2024 11:53:31 +0000
ROA not after: Tue 14 Jan 2025 11:53:31 +0000
asID: 138965
IP address blocks: 154.223.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29362 (0x72b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 8 11:53:31 2024 GMT
Not After : Jan 14 11:53:31 2025 GMT
Subject: CN=659be23e-e166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:29:a9:c8:c9:aa:6c:74:0b:ae:e1:58:04:26:
3c:3d:0a:12:ad:0a:26:01:55:31:89:6b:4c:3c:ab:
60:eb:3f:82:e2:29:b2:84:87:48:ef:1a:ba:9b:3b:
b9:7d:59:5e:cf:ff:e5:64:f9:0b:de:f2:ac:f4:d0:
dd:cb:8b:a6:d9:26:fe:f2:2b:97:54:4e:97:a2:75:
fd:bc:5c:45:72:c9:b2:cb:44:42:97:dc:eb:51:90:
c1:44:a2:9a:bb:65:14:3e:4d:56:65:01:03:3f:58:
a4:54:a8:ae:c0:d7:80:96:12:40:af:ec:12:06:ce:
14:e2:80:58:bf:33:d5:1f:3d:69:26:3a:1c:36:fd:
82:1f:2d:1c:15:96:9a:ad:63:1b:d7:da:29:86:9d:
18:c0:71:ee:e6:fe:6c:87:a1:b8:45:7c:57:33:9a:
5a:af:89:9d:0e:0a:e0:b6:52:4a:2a:ef:a6:3c:11:
8d:b7:69:fe:55:83:7a:85:8a:23:69:8c:a4:ee:9f:
a2:2f:1e:bd:7c:5f:55:3e:cf:b5:34:a2:18:bb:b7:
a7:57:f1:ee:6f:f2:08:45:a8:70:81:2a:2e:29:7e:
b5:02:c7:8e:5a:86:3d:d9:69:d0:29:2e:2b:da:e7:
79:a0:9b:c8:6a:42:67:0c:64:69:bb:82:c8:3c:8c:
f9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:48:F0:4A:6A:5E:2D:ED:2D:34:95:EE:5D:B3:14:EF:2F:C3:DF:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D0D68A6AE1C11EE9289A39C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.10.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:72:eb:32:a1:31:08:e4:4e:86:2a:5a:48:1d:dd:b5:95:a6:
bd:a6:05:67:e0:73:b0:7d:17:3c:7c:92:38:10:2d:aa:2b:1a:
61:0a:18:6f:31:cb:3c:89:fb:c4:98:3b:8a:36:56:51:93:63:
32:bd:26:01:bd:32:c4:37:24:a0:5d:c8:5a:ce:26:1c:49:07:
a3:84:e4:8d:a8:7b:c4:b6:82:15:7d:e6:f9:38:2b:72:ec:9c:
ef:d5:48:9c:ac:91:76:37:39:73:a1:c0:21:b6:ed:80:00:00:
ca:ef:cb:0d:4f:4e:cd:8a:da:b3:55:ef:33:57:f8:5e:68:e8:
cd:01:60:09:7c:e3:f8:51:7c:64:0a:7f:07:36:bf:d7:7b:73:
10:3a:89:0a:53:c5:8c:77:12:7b:24:65:af:b7:24:90:41:a9:
88:47:86:e0:62:b7:5f:75:6e:01:e5:d1:53:1f:fe:a0:a9:9a:
44:c3:3d:ca:6e:8f:70:29:5f:4e:dc:c9:9e:b8:12:c4:ab:2b:
48:03:1c:da:26:aa:f4:04:db:70:9c:97:72:1b:61:f2:15:42:
bd:62:a6:dc:66:6a:30:a5:4e:b8:f7:e6:39:c2:99:cf:5c:2e:
df:8f:98:41:fa:0f:96:a1:a8:bd:cf:14:08:d8:56:01:5f:56:
62:0a:7d:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:15 2024 by rpki-client on console-fra.rpki-client.org