Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0E1C6EA3F5A11EF9392E370762E951A.roa
File: A0E1C6EA3F5A11EF9392E370762E951A.roa (raw, json)
Hash identifier: FVgXqu+7v1wjI3mhbTB1EAzTDCZv/Nf1y8lE7TG3s2I=
Subject key identifier: 6F:B4:11:62:4C:E5:38:FC:9E:3C:90:81:04:78:DE:38:9B:AA:31:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D09A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0E1C6EA3F5A11EF9392E370762E951A.roa
Signing time: Thu 11 Jul 2024 07:53:15 +0000
ROA not before: Thu 11 Jul 2024 07:53:12 +0000
ROA not after: Sat 19 Jul 2025 07:53:12 +0000
asID: 45996
IP address blocks: 154.205.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53402 (0xd09a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 07:53:12 2024 GMT
Not After : Jul 19 07:53:12 2025 GMT
Subject: CN=668f8f6b-d5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c2:9e:60:7f:2a:11:97:dd:30:c4:ab:03:c9:
67:e3:32:11:ff:8b:ee:ff:6e:a2:18:7f:30:71:f2:
6b:ee:92:ff:ca:7a:b5:3d:97:39:02:3f:9c:f9:ba:
c3:60:cb:52:e2:eb:b3:81:c1:73:ed:b2:0f:75:d8:
91:14:69:8d:2f:f8:3c:93:6a:de:40:91:4e:22:a6:
9b:22:fc:fe:37:43:7c:5d:a7:78:a9:04:3e:81:29:
e7:f0:06:e7:54:f9:3e:35:45:04:86:77:89:28:0d:
da:7e:dc:55:54:4d:57:d6:75:5b:7b:24:c4:19:a7:
20:b6:fe:5f:3b:06:0d:9f:76:fc:8e:f1:65:05:64:
0f:98:17:08:54:95:5f:ab:72:83:a3:9b:97:7d:38:
2f:9d:26:76:43:48:1c:73:c2:e5:f1:e7:fe:89:73:
0f:93:c4:e2:ad:4c:5e:08:4e:56:84:9e:be:d5:51:
7d:7e:a7:11:84:5e:4f:24:61:e6:b7:39:a9:c0:ce:
cb:2f:92:cc:a7:5f:84:19:88:a7:39:10:2e:c2:20:
18:fd:b6:95:89:f1:b7:09:49:c0:7e:c7:ab:b9:28:
53:9a:10:20:fc:42:f3:30:ab:99:2e:24:67:c1:c6:
cd:25:b7:d1:24:9a:47:94:f0:70:96:d1:ab:c2:96:
bb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B4:11:62:4C:E5:38:FC:9E:3C:90:81:04:78:DE:38:9B:AA:31:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0E1C6EA3F5A11EF9392E370762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.2.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:30:10:53:3d:49:1e:45:3a:8a:c2:8a:72:bb:94:4b:0c:9f:
53:95:93:75:e4:32:38:04:62:52:43:ef:b1:73:c2:e1:3c:91:
8d:78:ae:83:c4:fe:f9:30:f4:ac:b0:22:80:93:f0:14:92:6f:
04:4d:7c:bc:7a:b7:36:f2:b1:b6:37:35:58:3d:82:a7:ff:f1:
06:5a:7e:77:de:16:7f:3e:fc:97:f2:c5:84:4d:f2:d9:d8:2e:
ef:67:b7:d5:cf:a0:1e:b5:2a:a0:48:87:cf:6f:70:2f:16:23:
65:21:41:01:ec:16:bd:17:6d:14:f3:1c:16:b6:d8:b6:fe:57:
9b:90:f1:10:c7:3a:3e:96:be:c3:3b:12:0c:b0:53:66:09:e7:
0a:4b:ef:97:fd:21:82:10:9d:3f:a6:c3:e3:ea:27:ee:20:e9:
18:ea:ac:d8:48:31:03:2e:72:f8:d4:d2:e9:38:f8:c1:c9:26:
dc:8c:2a:c4:ee:2c:3e:98:85:03:64:20:9f:74:58:8b:29:f4:
9d:df:bc:db:9c:04:f2:ac:35:69:08:f7:6c:00:40:9f:26:86:
27:6d:9a:f8:b7:50:36:27:e0:55:79:dd:37:2f:d2:08:33:35:
30:d3:61:cd:8c:ca:00:9a:2f:43:bb:26:05:a0:a8:2f:91:a2:
46:63:e4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:20 2024 by rpki-client on console-ams.rpki-client.org