Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96E2E1F8855311EF9B684E45762E951A.roa
File: 96E2E1F8855311EF9B684E45762E951A.roa (raw, json)
Hash identifier: TIURp1QZj67ff2rkZM5yVFl2uUu/miXRDGuSl+p8Nnw=
Subject key identifier: DC:45:98:5C:E7:91:43:B0:28:E3:7D:66:98:A0:51:69:9C:C4:7A:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FABF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96E2E1F8855311EF9B684E45762E951A.roa
Signing time: Tue 08 Oct 2024 08:59:13 +0000
ROA not before: Tue 08 Oct 2024 08:59:10 +0000
ROA not after: Thu 09 Jan 2025 08:59:10 +0000
asID: 150000
IP address blocks: 154.82.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64191 (0xfabf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 8 08:59:10 2024 GMT
Not After : Jan 9 08:59:10 2025 GMT
Subject: CN=6704f461-f3f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:26:73:30:cf:2b:78:c5:b4:f1:fb:9d:95:5f:
6a:45:da:5c:8a:a2:92:08:88:ad:69:72:c5:20:6b:
6c:c1:6a:d7:21:89:05:89:e4:47:18:02:a3:27:71:
82:9b:1e:04:95:0d:ce:1e:0a:f5:38:46:8d:19:a1:
cb:1d:a5:08:19:1c:dc:70:36:40:47:18:1e:c6:a5:
41:fd:63:a0:a9:51:4d:e5:77:69:e2:d4:09:63:5c:
96:65:8a:2a:db:ef:6c:de:aa:c3:23:a2:84:c5:2d:
cf:bb:e4:75:5c:f7:a7:15:92:d4:db:fd:6b:73:ac:
eb:a5:dd:69:14:da:69:1e:17:59:78:b8:73:ed:bc:
ce:a7:0a:66:7d:a8:3c:2b:fd:2a:40:e7:41:91:7b:
45:7e:03:01:e4:41:08:63:bf:9f:9e:45:08:5c:6b:
0d:fa:06:81:8b:4e:37:e1:48:e5:fd:f9:40:34:8b:
89:6c:07:e6:f5:c7:b7:ba:3d:3c:db:a7:89:57:c2:
0a:de:46:ac:d5:d2:ba:bf:cb:6a:27:c4:8e:ee:1e:
f9:93:e1:30:52:f3:2f:34:7f:6c:7e:02:b5:37:1d:
b3:ee:05:f4:e8:79:60:85:d5:c9:a4:3e:ab:ad:a7:
c5:fe:01:e6:05:f9:cf:2c:bb:f6:a0:5e:da:6e:55:
7f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:45:98:5C:E7:91:43:B0:28:E3:7D:66:98:A0:51:69:9C:C4:7A:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96E2E1F8855311EF9B684E45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.159.0/24
Signature Algorithm: sha256WithRSAEncryption
56:15:90:8e:2b:75:39:f1:f1:d7:a8:8f:a3:19:d2:f4:80:27:
df:91:92:e5:17:85:71:83:52:94:bd:75:4f:81:94:31:87:58:
a8:5d:3c:97:cc:4a:e0:1a:06:63:d6:97:b1:91:34:47:43:e7:
99:97:31:ca:3f:96:2b:48:01:fc:0d:51:b2:98:09:aa:9e:db:
09:3c:6b:b1:53:8e:3a:30:fc:14:2d:46:7d:78:5b:7a:d8:af:
9f:01:77:a7:9b:b1:d3:4d:0d:1b:78:1e:f7:0c:9b:22:e3:14:
a3:20:cf:ec:73:1b:84:af:f2:9d:07:ee:b0:91:f6:19:5f:32:
c7:e8:9d:74:3b:db:36:92:20:ca:13:5c:1a:e4:de:f8:51:0f:
57:6f:14:1f:09:f8:69:1b:ea:dc:eb:6c:60:86:8b:6b:08:1a:
87:41:ae:c8:c1:b4:1e:e6:f2:1e:4e:25:e2:0c:b4:e5:ba:b4:
db:36:95:ef:26:4b:a8:25:a4:aa:df:b5:23:79:71:dd:e4:32:
98:09:30:b8:52:79:13:aa:76:28:cd:7f:bb:4a:56:ed:b6:8b:
16:4f:e6:30:3f:fd:c6:9a:66:1f:88:e1:2a:c9:99:23:67:06:
0a:12:f9:ac:67:72:6d:a9:81:e0:dd:ad:82:82:21:20:78:cf:
44:f3:24:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:37 2024 by rpki-client on console-fra.rpki-client.org