Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A23A34FAA32311EFBCD75F72762E951A.roa
File: A23A34FAA32311EFBCD75F72762E951A.roa (raw, json)
Hash identifier: 5KJjAp1XsbOfNiBVOUx+zj64luuyGJmHirFWezxKOdE=
Subject key identifier: E9:B2:D5:68:D1:67:44:1C:A8:5C:84:65:95:42:48:11:DA:1D:0F:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D34
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A23A34FAA32311EFBCD75F72762E951A.roa
Signing time: Fri 15 Nov 2024 07:31:31 +0000
ROA not before: Fri 15 Nov 2024 07:31:28 +0000
ROA not after: Thu 12 Dec 2024 07:31:28 +0000
asID: 394432
IP address blocks: 154.196.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68916 (0x10d34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 07:31:28 2024 GMT
Not After : Dec 12 07:31:28 2024 GMT
Subject: CN=6736f8d3-ab3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cd:0a:a6:58:6b:3c:1f:d5:2d:61:1c:a4:d6:
96:d6:65:a8:2c:58:5c:36:1b:69:16:a5:04:df:21:
ed:42:72:55:ea:f2:cf:f1:18:fe:68:e7:74:e8:56:
53:7e:7a:94:63:d2:54:6d:28:56:96:79:85:2d:3d:
a9:d2:46:f6:b6:3e:24:cf:57:22:43:c1:fb:56:1f:
b1:91:78:78:ad:28:50:f8:d4:90:11:f5:46:ff:14:
9d:a8:77:3e:0c:65:ac:fa:50:09:fe:09:a9:56:76:
a6:c7:94:3c:85:4f:01:2d:66:35:1c:17:63:94:b1:
74:99:34:d7:7b:4e:f1:d2:87:ae:5b:d5:3e:e9:42:
aa:00:89:4e:8d:48:de:85:71:1c:99:ff:fd:d3:a1:
66:10:8c:9d:b4:24:36:2b:0a:8e:f8:8e:69:5a:74:
c1:5d:b1:82:2e:38:03:28:e4:a4:11:93:2e:0c:44:
60:c3:aa:c0:25:d9:f2:a1:09:c2:e4:aa:5f:38:42:
b0:0f:6d:19:9b:37:fc:7f:5d:3d:20:11:58:ed:d5:
27:65:d7:ca:7a:29:4e:1d:b6:6f:87:87:7b:9f:e7:
65:8e:bd:80:43:63:c0:db:a8:79:b9:bd:86:26:3c:
f4:e9:c8:3a:02:82:c6:0e:86:00:a9:13:8b:be:c4:
84:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B2:D5:68:D1:67:44:1C:A8:5C:84:65:95:42:48:11:DA:1D:0F:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A23A34FAA32311EFBCD75F72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.195.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:d3:c2:1b:06:1d:f6:16:b8:77:5d:6b:f9:78:89:17:ed:03:
63:ae:b8:0d:07:19:9b:00:e7:b1:8a:55:0e:eb:ef:b6:34:96:
d1:b8:69:fe:cc:61:83:c9:22:e1:0c:19:98:96:0f:db:b9:e7:
90:3e:66:f7:39:e0:b9:bf:fd:db:1e:23:8a:eb:61:ac:45:d8:
f4:09:d8:46:6d:f5:cd:3e:47:2c:7f:f5:43:77:00:f5:53:0d:
22:16:9a:f4:15:9b:3c:09:df:f8:ea:67:72:bc:44:2f:1b:d8:
37:3b:a6:14:0d:e9:34:88:19:65:fd:07:30:a0:a3:ff:4c:fd:
64:2f:54:a8:6f:78:83:d5:31:12:eb:be:5b:8c:53:9f:e8:68:
1e:d0:80:96:32:28:99:b1:bc:61:19:aa:37:5d:dd:df:94:66:
12:fc:37:b2:ae:2f:40:dd:1d:64:a2:47:a5:7d:8d:90:a5:d8:
0d:6f:97:29:fb:6e:b3:44:44:5b:65:d9:93:fb:52:71:a1:18:
03:51:b8:81:3a:8c:2c:b7:ce:43:c3:bc:c4:f9:32:03:c8:de:
e1:9c:2b:58:de:01:e7:3f:cc:cf:10:f2:70:16:2b:33:e3:53:
4d:52:42:90:aa:08:48:10:57:91:59:7e:88:07:ae:b3:a3:70:
fd:29:22:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:22:02 2024 by rpki-client on console-ams.rpki-client.org