Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5D80646A0DA11EF9E5A4657762E951A.roa
File: A5D80646A0DA11EF9E5A4657762E951A.roa (raw, json)
Hash identifier: 2Jo6ibI4X30OkbTsP8Vm84eOPIadp7/nwIl7BzOLrTs=
Subject key identifier: 97:80:B6:C1:06:31:D3:F6:A2:6E:DD:AA:C6:A3:61:52:00:01:53:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C28
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5D80646A0DA11EF9E5A4657762E951A.roa
Signing time: Tue 12 Nov 2024 09:44:02 +0000
ROA not before: Tue 12 Nov 2024 09:43:58 +0000
ROA not after: Sat 07 Dec 2024 09:43:58 +0000
asID: 63139
IP address blocks: 154.223.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68648 (0x10c28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:43:58 2024 GMT
Not After : Dec 7 09:43:58 2024 GMT
Subject: CN=67332362-493c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:90:3f:26:e6:0d:7c:12:46:d5:e3:4f:3f:c4:
87:ae:e8:06:e5:54:95:5b:5c:3b:e3:10:d9:ea:bd:
28:6b:34:72:91:45:e3:f0:22:b2:9f:80:fa:fc:ef:
d2:55:10:22:51:8c:84:67:16:30:36:1f:a6:ac:05:
2d:82:84:33:15:e2:3d:dd:8a:19:fa:26:59:bc:53:
40:f3:0e:63:c3:4e:46:ef:d0:01:eb:2e:0d:22:a2:
58:28:06:fa:18:23:b0:cd:3b:e0:2f:77:91:66:44:
c5:f4:e8:4a:00:ce:0d:bf:5a:a4:7a:c2:18:2a:b6:
6b:0c:b2:9c:47:37:3f:f9:8f:93:5b:bc:55:7f:84:
ce:97:b2:1e:d4:10:86:9b:2c:f9:d4:99:52:a5:a9:
28:c1:09:b0:2b:4e:04:1e:61:4b:94:27:46:fa:82:
cb:0b:bf:80:82:f1:4c:fa:4d:f2:cf:49:6f:ea:38:
0f:29:30:8e:03:c4:90:ec:24:dd:16:0a:32:55:1c:
8f:5b:e3:25:b9:c3:06:14:5c:70:cf:4e:03:f1:59:
29:94:9d:c9:2e:a0:69:fb:bb:39:da:45:ba:9a:51:
fc:39:ad:c4:6e:41:cd:fb:5c:ed:0b:b7:9f:c9:11:
22:4f:3b:14:c8:2b:50:e9:f4:11:95:ce:4b:8f:dc:
18:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:80:B6:C1:06:31:D3:F6:A2:6E:DD:AA:C6:A3:61:52:00:01:53:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5D80646A0DA11EF9E5A4657762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.25.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:b1:05:55:37:3b:3e:16:8a:1c:c8:62:97:96:45:5c:6c:3f:
4e:3d:66:df:41:9d:bc:2e:49:69:8f:d8:a7:52:5e:a1:e1:55:
01:04:29:bc:96:40:2a:f8:93:d0:d5:ab:2c:94:4d:0d:5b:bd:
46:9e:27:0f:62:73:64:5c:e2:da:6b:4e:d6:6c:d3:13:45:4d:
f8:14:3a:8f:96:d9:e2:6f:81:ee:8f:54:17:86:88:8d:e9:7f:
17:08:0d:d3:c4:05:69:d3:73:54:e0:32:c0:af:42:50:51:11:
a5:7e:36:6b:9f:97:4a:bb:e0:25:a2:2b:4d:40:bb:8e:c9:ed:
26:7f:0a:7a:75:18:b5:5e:c0:8e:88:26:e7:64:58:fa:98:27:
4d:8d:38:f4:77:3c:27:86:f5:db:8a:d5:df:4e:77:8d:b5:83:
9f:84:50:c5:50:cd:85:43:9a:23:0e:aa:db:28:dc:7e:c2:43:
ee:79:7c:77:49:0b:d2:fc:90:d2:1c:08:7a:2d:b9:35:29:4c:
18:40:4e:a2:16:2f:be:f5:bc:c7:c2:58:91:99:36:ba:25:24:
fc:b1:ad:8f:53:48:4c:ec:23:b8:5c:2d:12:02:60:41:85:5e:
4d:ba:1d:21:73:f5:97:b8:52:0f:3f:a1:94:23:3c:46:d6:4c:
4d:09:cb:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:21 2024 by rpki-client on console-ams.rpki-client.org