Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8ECDE368A44411EFB1C00B7A762E951A.roa
File: 8ECDE368A44411EFB1C00B7A762E951A.roa (raw, json)
Hash identifier: R36XJSjezmOTjReizzsm1LbcWd/Vta11lM7WSchj3PU=
Subject key identifier: DC:90:6F:86:E3:DB:A2:A8:56:CF:7C:48:EC:8F:2B:04:76:0A:1E:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8ECDE368A44411EFB1C00B7A762E951A.roa
Signing time: Sat 16 Nov 2024 17:59:43 +0000
ROA not before: Sat 16 Nov 2024 17:59:40 +0000
ROA not after: Sun 24 Nov 2024 17:59:40 +0000
asID: 133180
IP address blocks: 154.82.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 17:59:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69083 (0x10ddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:59:40 2024 GMT
Not After : Nov 24 17:59:40 2024 GMT
Subject: CN=6738dd8f-5875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b9:7f:7b:70:60:c8:da:e4:f1:9a:b4:82:0d:
06:6e:d4:74:81:58:bc:44:af:0f:78:18:55:44:93:
0c:bb:ae:0e:2e:98:56:66:95:67:ea:5d:5b:54:2f:
f0:a0:07:54:c9:1c:b2:9e:32:a9:98:a6:0e:ca:dd:
05:39:b0:3f:be:d7:91:95:1a:18:5a:15:5d:96:6d:
bc:87:65:b8:20:c4:55:cd:d8:c6:91:3a:d1:f3:b8:
e2:c5:15:74:08:9a:59:b4:ab:28:11:86:d8:6a:0b:
87:18:37:be:28:b9:2f:9c:af:91:25:c3:e7:63:f0:
a9:c8:77:cf:8d:28:12:1f:7b:f7:e3:e4:dd:7a:43:
2a:c8:3a:3f:6c:d5:3f:20:42:db:b7:47:63:7d:56:
be:c5:4c:17:38:8e:84:8f:69:17:25:e2:42:30:59:
17:ba:b7:12:bf:43:04:fe:95:79:9d:0d:b2:b4:29:
76:89:c6:18:8c:f1:05:08:39:3f:b9:44:16:a5:e6:
ab:4f:e8:72:5c:4f:d0:7c:b1:4a:f5:ee:fb:b8:dd:
67:b8:12:ef:68:cd:7f:6a:7c:dc:86:f4:12:6f:f5:
48:c6:72:a3:7f:d9:9c:43:ab:29:7f:b4:a0:71:39:
49:04:19:9f:00:ce:7f:86:32:cc:c3:d4:7c:9a:f7:
b2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:90:6F:86:E3:DB:A2:A8:56:CF:7C:48:EC:8F:2B:04:76:0A:1E:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8ECDE368A44411EFB1C00B7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.32.0/19
Signature Algorithm: sha256WithRSAEncryption
ac:c8:7b:58:eb:fa:5d:3b:62:a6:59:fe:3b:13:b3:c0:dd:71:
45:22:99:6e:bb:ce:c9:3a:55:75:bf:ac:f9:89:e2:0a:0f:b5:
6c:b7:a2:ca:c7:d9:cc:ee:c5:f0:de:92:e4:22:5f:e1:14:94:
cc:71:6f:66:0d:1a:43:ba:22:2f:c0:a6:2e:ec:2c:4c:7b:7a:
0b:61:fc:3b:3e:e2:1d:2b:52:0a:9f:3e:8a:00:23:d0:ca:a3:
c5:b6:62:1f:ac:0e:7c:22:f8:df:49:f7:fe:d8:ff:f0:4d:96:
d9:74:3e:81:3b:ac:62:38:04:85:df:9a:72:78:32:51:f8:da:
1c:56:f9:94:58:75:86:44:d0:66:aa:c6:9e:92:13:e6:61:54:
38:ca:ac:a7:75:17:67:6f:ac:ba:9f:98:10:9e:a5:93:c1:bb:
f4:7f:36:c7:08:4c:09:e9:52:3d:bc:94:b0:de:04:d0:62:81:
98:ba:10:90:fa:db:4f:5e:79:46:47:7a:58:71:1e:ba:ef:4b:
a7:51:fa:9f:04:74:fd:ff:e4:93:06:ea:e8:f8:3f:99:0e:e4:
0f:0c:34:d8:e9:eb:8e:d6:ad:a7:1c:47:bc:4d:e2:cf:5e:e2:
46:dd:77:49:5e:b1:3e:87:19:55:11:01:fe:ea:f6:1b:55:f2:
33:dd:5c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:39 2024 by rpki-client on console-fra.rpki-client.org