Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FC70D4C950F11EF847DB882762E951A.roa
File: 8FC70D4C950F11EF847DB882762E951A.roa (raw, json)
Hash identifier: 1ydlKkzWtcSu9zqZRNHYr7/9N/KFMKg1rLVZi3afEYw=
Subject key identifier: 34:45:5F:02:0D:32:1D:F8:05:6B:A8:57:56:34:61:7F:A2:9A:31:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0102BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FC70D4C950F11EF847DB882762E951A.roa
Signing time: Mon 28 Oct 2024 09:32:34 +0000
ROA not before: Mon 28 Oct 2024 09:32:30 +0000
ROA not after: Wed 27 Nov 2024 09:32:30 +0000
asID: 44559
IP address blocks: 154.81.192.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66237 (0x102bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 09:32:30 2024 GMT
Not After : Nov 27 09:32:30 2024 GMT
Subject: CN=671f5a32-30cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:97:39:2a:75:de:39:54:04:56:0d:fa:71:e5:
37:ab:f8:55:f0:50:6d:1d:7b:24:cd:ed:01:18:8f:
58:24:24:6b:8f:89:1d:0a:3d:07:09:4d:09:91:0e:
73:a3:74:1d:d5:70:91:15:c0:d7:d4:bd:4d:71:9b:
d4:bb:02:33:00:9c:46:09:d5:aa:d2:c7:c4:dd:32:
8b:10:f9:18:5c:12:90:82:9b:fe:82:84:a6:16:8d:
da:01:92:f7:9a:ea:7b:df:8f:43:c9:b8:a5:fd:be:
4e:56:44:04:b1:a4:b7:74:39:bd:7f:d8:00:ac:78:
d9:ac:15:13:4b:be:99:ea:69:e3:88:95:0f:f8:4d:
31:c2:49:69:8c:7f:1e:fd:ec:f4:88:26:c8:2c:a5:
30:aa:70:8a:37:39:af:04:17:d5:d2:3b:2f:1a:02:
61:67:71:c8:69:2e:48:8c:71:9d:ad:08:4d:04:80:
4d:51:31:bd:18:2a:dd:cc:75:25:68:dc:6f:fc:9b:
f8:ac:c5:04:f4:21:17:73:ef:37:e0:fe:8c:e2:63:
b9:aa:44:9c:b1:c1:c8:99:b3:be:41:f9:40:25:c9:
d5:82:9c:70:6d:f7:ea:63:48:62:70:95:3e:1b:d0:
2b:9e:74:91:c1:3c:a0:7c:c2:67:1d:b0:41:b1:72:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:45:5F:02:0D:32:1D:F8:05:6B:A8:57:56:34:61:7F:A2:9A:31:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FC70D4C950F11EF847DB882762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.192.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:91:e1:74:fb:33:e9:a3:70:71:be:45:8b:5a:b4:69:8c:44:
ce:38:fd:46:2a:12:c3:69:2f:50:76:19:cb:a6:c2:c5:8b:94:
21:3d:ae:30:21:a3:ef:24:ae:47:3c:d2:db:35:26:5a:fa:02:
1f:cc:ac:a3:fe:56:c5:35:fc:f6:ed:04:01:f3:d8:e0:e8:06:
cb:18:99:8d:25:eb:72:5c:17:67:87:95:c1:45:7b:78:c5:ee:
dc:a2:5f:00:da:ac:23:c6:b1:56:5f:89:01:2a:99:b3:26:35:
ae:d3:25:eb:58:f6:c4:bc:e0:b2:5d:67:15:5c:12:0e:18:ef:
4c:f9:9f:98:e8:3b:6a:c3:46:4c:33:9d:3d:01:6d:c4:03:d0:
2a:47:c7:4a:c3:57:41:f8:ed:7d:c9:db:76:1c:19:ea:92:4e:
fd:f7:01:44:37:f0:a5:09:f7:2a:9c:ad:27:36:27:01:12:8c:
c4:9f:dc:8d:4a:a2:e2:86:fc:28:8b:42:92:29:bd:22:8f:a0:
a3:34:62:c3:7e:48:bb:9d:d2:50:d9:e1:89:7d:46:df:f0:bd:
73:7a:87:18:d4:c1:d8:99:1f:fd:97:f7:88:e3:c7:c4:34:9c:
6a:8e:ac:f5:f1:5e:57:45:50:ea:9f:23:a8:0d:d5:60:8f:b3:
54:c6:16:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:14 2024 by rpki-client on console-ams.rpki-client.org