Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A38333E9D1911EFA2FB66B7762E951A.roa
File: 9A38333E9D1911EFA2FB66B7762E951A.roa (raw, json)
Hash identifier: 8+gF6iquqe5J0F4hsoMtnFUa1WDR00EJ7JFNG6P2gZE=
Subject key identifier: AF:08:92:82:55:BE:EC:50:A0:03:7A:4B:BA:89:32:F3:7B:91:D4:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010971
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A38333E9D1911EFA2FB66B7762E951A.roa
Signing time: Thu 07 Nov 2024 15:04:36 +0000
ROA not before: Thu 07 Nov 2024 15:04:32 +0000
ROA not after: Wed 11 Dec 2024 15:04:32 +0000
asID: 203020
IP address blocks: 154.207.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67953 (0x10971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 15:04:32 2024 GMT
Not After : Dec 11 15:04:32 2024 GMT
Subject: CN=672cd704-598f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3a:99:07:a2:a0:bf:45:e4:21:5e:a5:5e:8e:
75:93:e9:86:6a:64:07:60:7c:66:73:14:9a:2f:d5:
89:b5:d5:07:5c:fc:35:a5:05:b7:a4:dd:ac:b5:72:
ea:cb:d4:c1:ca:ef:0e:e9:b9:54:3d:5d:5a:5c:63:
93:a2:a4:e4:f9:5c:b3:6f:23:46:cf:8b:56:17:38:
60:5d:d4:b9:e9:e0:37:c7:81:24:5c:a6:76:04:53:
3a:bf:81:bc:57:4a:81:57:89:5a:7c:ee:f6:c9:fa:
dc:63:35:87:9c:d3:54:a2:d3:e3:a5:eb:08:1c:57:
57:6d:86:4b:80:8c:2c:6f:29:fc:ea:35:24:6c:d7:
88:fb:2d:97:8a:a1:3d:45:7a:53:e5:3e:4e:6b:1d:
6e:9f:91:19:bf:29:40:fa:66:fe:3e:f2:6a:b1:f2:
6d:db:8c:c6:9a:02:ab:2d:f6:5c:90:d0:26:c5:ef:
c8:6c:9e:f9:44:17:35:f0:0e:dd:fd:96:8a:b8:76:
e0:2c:a2:d5:fb:a5:d9:e0:c7:32:7e:65:b5:c7:32:
a1:12:bc:43:6b:31:88:45:6b:b4:19:b8:36:fe:11:
d6:7f:d3:ca:7e:86:37:69:4a:dc:93:5a:f8:65:11:
d9:ef:0b:c3:26:32:2e:40:b9:cd:8e:50:4d:b8:87:
1c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:08:92:82:55:BE:EC:50:A0:03:7A:4B:BA:89:32:F3:7B:91:D4:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A38333E9D1911EFA2FB66B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.54.0/24
Signature Algorithm: sha256WithRSAEncryption
22:be:ca:29:f3:bc:75:92:ec:37:e4:a5:49:09:be:89:3c:ef:
80:db:20:cd:47:79:dc:7d:85:41:d4:9b:9c:77:b9:29:34:9b:
e4:3c:ef:48:d3:89:8e:c3:ac:78:c6:5b:a3:11:36:09:b5:4a:
73:c8:7f:57:49:bb:d5:12:3c:1c:61:f6:40:27:97:af:8a:77:
a7:b3:ed:1d:3c:bc:c1:08:6d:db:36:46:9e:43:03:ec:32:e8:
12:46:b2:1c:b0:3d:56:02:b6:4a:b2:0e:9b:54:cd:a0:ab:7e:
2c:6f:62:bd:56:15:80:96:64:3b:0f:d2:58:6c:16:dc:92:f5:
30:7c:13:c0:ff:65:32:07:12:94:15:15:d5:7e:24:ff:86:e6:
ee:29:97:ab:45:e9:fa:32:93:a2:53:a6:b0:ed:99:f8:11:00:
57:47:af:a0:1f:9d:53:bd:95:f3:cc:02:90:bb:aa:06:10:9d:
6e:85:a2:a5:6d:3b:5d:59:9a:dd:96:bc:50:8b:b2:d5:eb:85:
ed:dc:8c:b0:5c:26:ba:cf:0b:92:37:47:48:71:fa:6c:f3:df:
42:c8:58:fb:53:2c:8b:49:38:f2:cf:04:e7:d3:72:c3:d2:84:
f5:1f:96:38:e8:5c:b0:9b:2f:28:f8:30:6f:1e:68:21:94:51:
c7:b2:7d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:17 2024 by rpki-client on console-fra.rpki-client.org