Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A218A73A71A111EFA82E126E762E951A.roa
File: A218A73A71A111EFA82E126E762E951A.roa (raw, json)
Hash identifier: cD7Al6msrQzWI7D5GhgOCrch4UCFmrdJYucelfGrbtw=
Subject key identifier: D5:B9:AA:13:B7:8F:B5:EF:B4:F8:04:27:7B:CD:9D:4C:C8:AA:FD:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ED84
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A218A73A71A111EFA82E126E762E951A.roa
Signing time: Fri 13 Sep 2024 07:27:29 +0000
ROA not before: Fri 13 Sep 2024 07:27:26 +0000
ROA not after: Sat 30 Nov 2024 07:27:26 +0000
asID: 138152
IP address blocks: 154.94.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60804 (0xed84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 13 07:27:26 2024 GMT
Not After : Nov 30 07:27:26 2024 GMT
Subject: CN=66e3e961-e133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:97:c2:bb:3e:6c:87:38:8b:13:3d:d0:52:6d:
36:2d:5f:66:8b:da:43:48:8c:1b:0a:29:f8:34:c0:
92:a1:b4:33:6e:89:61:f3:da:78:84:dc:0e:fd:f4:
e0:25:60:06:97:03:2b:ca:c3:a3:04:d6:c9:dd:b2:
94:3e:48:1c:f9:6a:ac:3b:f3:cb:68:75:2b:65:03:
6a:49:31:af:cc:ec:21:d6:68:6d:7b:35:93:9b:a0:
05:f9:6a:a9:40:f5:6c:1c:89:87:33:a9:3a:fa:1d:
a2:78:a8:27:a4:53:ae:1c:9f:f2:83:cb:d0:8c:49:
df:51:0a:37:2b:9f:92:b8:50:48:d1:09:b5:15:59:
f1:ee:24:0d:2c:a6:84:ed:3c:4c:c6:be:c6:00:52:
f7:af:e2:c4:91:5b:51:0e:ff:cc:21:47:37:01:91:
5f:b8:db:9c:6a:3b:39:f6:40:a5:b1:04:82:c2:dc:
0f:e3:58:96:5c:3e:cf:6f:84:3f:07:83:b2:6f:a3:
01:e3:de:b3:6b:ab:c6:ef:36:a4:ad:e2:b0:a4:2d:
b5:47:93:52:76:e9:c6:0a:41:41:66:5f:86:55:a0:
dd:dc:ce:1c:12:b2:93:a0:5b:15:47:d7:a3:b1:01:
8a:8f:75:65:c5:38:89:f0:be:00:72:56:d0:9a:dd:
45:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B9:AA:13:B7:8F:B5:EF:B4:F8:04:27:7B:CD:9D:4C:C8:AA:FD:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A218A73A71A111EFA82E126E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.4.0/22
Signature Algorithm: sha256WithRSAEncryption
84:51:fe:69:00:40:49:7e:76:2a:2e:3b:ec:31:15:c5:33:df:
00:8e:e7:df:97:d7:00:71:0a:70:54:ef:19:24:99:f2:82:12:
56:2f:6f:8d:73:15:39:75:c9:ea:6d:dc:3b:1a:12:9f:41:a8:
75:97:de:78:c9:9e:62:d8:4d:c8:00:a8:4a:cb:32:94:81:7c:
fe:f2:9d:d1:b6:80:01:22:7f:32:0a:4a:45:6d:e8:a4:48:53:
74:57:4c:ad:ab:d8:ca:8d:f0:55:1d:12:21:4f:1b:98:f1:66:
6e:fd:19:a0:85:92:d8:d0:84:31:ac:73:5e:e2:64:4f:ad:47:
c8:5e:54:92:f3:f9:94:d3:a6:ed:22:99:99:e6:70:0e:4f:f6:
99:22:f4:dc:42:cd:1a:5a:3c:95:ba:20:89:9e:51:d3:45:ef:
9d:33:9e:f2:c3:3b:63:cd:6c:5b:f9:72:d7:8b:49:e2:42:98:
70:2b:43:22:bd:ce:f0:67:68:73:e3:36:c7:75:86:bd:fa:1f:
09:7c:32:e5:f5:f6:e3:dd:d4:f2:c7:5d:77:dc:1c:c1:87:62:
76:13:1e:12:dc:91:96:95:16:30:d6:cc:01:0d:fa:f5:71:ae:
3b:9e:33:bc:92:29:b2:1d:83:6e:8c:21:66:cd:59:87:aa:0a:
86:87:54:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:18 2024 by rpki-client on console-fra.rpki-client.org