Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BDBAE5CB34811EE8A432276775412E6.roa
File: 9BDBAE5CB34811EE8A432276775412E6.roa (raw, json)
Hash identifier: TbiiWUFxv5CKqeHRCFq4/q96jrFDDO1q+b81S+UlfKg=
Subject key identifier: F1:20:78:CF:FB:96:D0:DD:54:3E:9D:DC:26:73:42:73:73:50:57:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 753A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BDBAE5CB34811EE8A432276775412E6.roa
Signing time: Mon 15 Jan 2024 01:51:33 +0000
ROA not before: Mon 15 Jan 2024 01:51:30 +0000
ROA not after: Fri 13 Dec 2024 01:51:30 +0000
asID: 8796
IP address blocks: 154.205.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30010 (0x753a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:51:30 2024 GMT
Not After : Dec 13 01:51:30 2024 GMT
Subject: CN=65a48fa5-8e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:65:da:5d:2d:88:1c:ae:7f:71:c1:80:78:63:
f9:43:f1:8b:4a:7d:bb:56:7b:d8:5c:b9:90:ee:3b:
7a:d5:76:d8:32:be:53:f4:1a:41:e5:cb:58:62:6e:
0d:31:ec:db:71:ec:27:68:53:5b:7c:41:ae:a9:9f:
5d:ae:61:03:17:fa:98:07:ff:d0:c5:19:51:e2:02:
b2:cd:e2:f8:df:a8:b1:81:93:ad:d3:21:60:27:69:
69:aa:62:de:d4:8f:46:9a:b3:00:6f:74:a0:7c:7e:
09:1c:a1:6a:9f:ce:73:3d:f9:53:5e:17:b8:35:9f:
1a:45:4d:83:6e:54:f7:f0:cb:bc:d7:33:97:d0:74:
15:ef:f0:f0:dd:c2:32:5b:ee:6f:82:91:34:f0:69:
a0:b8:84:cb:5f:fd:89:cd:bb:18:e9:92:d5:98:06:
1d:ee:3f:c1:1c:c3:2d:c5:d3:e9:ae:ce:f4:99:eb:
fa:11:de:d5:b6:ff:87:1d:2d:5b:dc:b9:88:82:a6:
e7:88:66:61:b9:57:ae:f5:8a:a1:41:1e:a9:bf:a9:
33:d0:0a:2b:93:0f:83:f4:39:7c:23:63:36:ff:77:
32:24:62:4b:b0:90:05:ae:2e:20:eb:d7:4d:56:a9:
a7:bc:43:ef:07:c8:33:c7:0d:c0:3e:87:6b:65:92:
ce:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:20:78:CF:FB:96:D0:DD:54:3E:9D:DC:26:73:42:73:73:50:57:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BDBAE5CB34811EE8A432276775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.206.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:58:fc:df:2b:fe:07:f5:8e:e2:f5:0d:ac:7d:27:2e:f5:a8:
ee:dc:81:af:45:6c:e5:63:b6:82:6d:38:35:12:f5:f7:93:e1:
ba:8d:ed:35:1c:20:79:83:5e:95:7f:17:63:27:22:2b:5c:e0:
ad:d4:e9:d5:e6:28:3b:d7:95:7a:7b:b0:f1:dc:4e:48:60:17:
03:60:0f:4e:90:bf:40:d0:19:60:dd:4d:a0:17:64:18:43:23:
a0:07:eb:dc:50:e8:60:02:7f:81:b0:31:fa:fd:93:81:68:1f:
73:38:59:3e:2a:00:a5:33:24:c5:7e:0c:e4:f5:17:f2:f3:b8:
8f:15:14:60:bd:55:a6:fa:0b:5a:95:8e:b0:4f:00:a7:10:05:
84:9e:bc:74:30:13:8b:33:e0:85:fa:e2:7b:02:22:f2:cd:e8:
2a:06:d2:80:8e:33:25:06:58:eb:fd:58:15:35:93:5e:4e:32:
4f:07:7c:41:9f:3f:3b:b6:31:74:a6:91:d3:39:49:32:93:97:
a9:b6:2c:b3:b6:29:b7:39:25:79:b6:62:99:75:cc:16:2b:9a:
69:fc:c2:7f:4f:97:ef:1f:71:fe:dc:f2:50:9a:a4:4e:cc:1f:
b7:de:ac:de:1d:f8:11:7b:51:fe:0c:61:b1:0a:65:cf:ed:a9:
14:d3:b5:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:20 2024 by rpki-client on console-ams.rpki-client.org