Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/908B2D9C9D9F11EFB12D368B762E951A.roa
File: 908B2D9C9D9F11EFB12D368B762E951A.roa (raw, json)
Hash identifier: 7Uaqe9wER3dMNAJ816c5DlSMQrKFweT06GYZL0EMTuM=
Subject key identifier: 0B:B5:38:F5:16:E4:B4:B9:63:99:E2:3C:15:BA:4A:FD:64:D2:CC:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/908B2D9C9D9F11EFB12D368B762E951A.roa
Signing time: Fri 08 Nov 2024 07:03:32 +0000
ROA not before: Fri 08 Nov 2024 07:03:28 +0000
ROA not after: Tue 10 Dec 2024 07:03:28 +0000
asID: 272854
IP address blocks: 154.194.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68002 (0x109a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:03:28 2024 GMT
Not After : Dec 10 07:03:28 2024 GMT
Subject: CN=672db7c4-2353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c8:55:19:db:27:d9:2f:87:44:4c:86:a3:5a:
d2:36:a3:82:83:76:87:d8:15:77:00:27:38:4b:0b:
2c:c0:37:6b:92:77:f4:b0:23:84:55:1f:2a:06:83:
c7:63:1c:da:4c:f7:af:51:02:8f:f9:aa:20:19:3d:
82:85:6c:cf:9e:8f:22:ec:f6:aa:4a:f9:46:c7:e0:
ba:25:b6:20:d5:da:52:bb:04:cb:1b:d7:bc:84:e4:
16:61:6b:f4:05:09:9b:bb:1b:7d:22:22:8d:ad:1f:
cd:9c:01:b3:a9:85:f7:0d:6c:8b:d7:76:91:4f:0b:
5d:83:27:f2:7b:6c:17:a4:09:dc:4c:fd:cd:c9:d3:
06:43:66:0c:d1:09:43:89:e4:e1:45:b8:bf:11:0e:
22:1a:17:13:98:8e:f7:d0:66:2d:8f:91:42:0c:e1:
ff:8b:fe:0e:33:03:56:f5:77:e1:3d:bc:4f:26:21:
d7:d6:cf:42:6c:2e:ff:82:4c:cc:b0:67:5d:b0:34:
31:01:91:a3:60:86:64:03:8a:ac:01:dc:f9:f9:24:
b8:3a:97:03:77:b5:14:e1:ae:eb:a4:e3:c7:8e:9d:
b0:1f:0f:60:94:21:22:92:70:a6:cb:52:ed:6c:1f:
9f:d8:ae:38:6d:d4:30:ab:72:cf:cf:46:51:88:a5:
b9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B5:38:F5:16:E4:B4:B9:63:99:E2:3C:15:BA:4A:FD:64:D2:CC:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/908B2D9C9D9F11EFB12D368B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.13.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:34:95:ab:b4:0a:fb:f2:a3:40:01:59:94:5f:1d:56:12:bf:
e0:b6:af:84:c5:32:57:e4:49:e4:d6:e9:df:57:5c:0e:74:20:
21:c0:48:e3:0f:32:6d:00:61:76:7f:a6:af:32:ae:02:87:7c:
9f:87:b9:61:15:6e:a4:54:7e:d3:22:fd:d6:cf:35:7d:64:d1:
fb:d3:b0:ad:9b:2c:3d:f2:a1:a9:26:e8:cd:d5:74:d2:f1:fd:
2f:82:48:98:43:4a:4b:45:2f:1d:0e:58:43:b9:3d:23:a9:b2:
f3:52:4b:6d:0e:1e:ce:64:85:a6:76:27:9e:b3:13:f8:ea:6c:
18:f2:2b:f9:44:e9:9f:11:2e:23:82:92:87:bf:74:93:da:50:
dd:53:49:3a:3f:87:e4:a8:98:d9:74:45:a5:fd:47:af:1e:04:
f2:bd:2f:c4:e2:b4:53:03:85:19:32:69:df:8a:7b:78:8c:5c:
df:bd:1a:ef:9c:cd:2b:87:b1:2b:1b:6b:3d:6a:4e:58:66:84:
32:27:ed:cb:8e:10:49:b3:57:24:14:7d:18:7c:ca:60:4f:f1:
f9:a9:4e:28:e6:45:a7:f5:f0:b8:a6:a5:b5:f2:f2:79:5b:4b:
de:d2:31:ae:a7:37:00:d7:25:64:23:7e:db:56:d7:a2:7e:83:
9b:e7:8e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:14 2024 by rpki-client on console-ams.rpki-client.org