Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7ADD78CA9CE11EF8E40DC53762E951A.roa
File: A7ADD78CA9CE11EF8E40DC53762E951A.roa (raw, json)
Hash identifier: hftqX579c7b2JU+WZJia6/f3otkhTboYB/FFXU8Q9eM=
Subject key identifier: 53:78:DD:F6:5E:5A:A7:62:43:0F:7D:0F:96:0E:0B:9F:B8:74:1C:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011206
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7ADD78CA9CE11EF8E40DC53762E951A.roa
Signing time: Sat 23 Nov 2024 19:10:51 +0000
ROA not before: Sat 23 Nov 2024 19:10:48 +0000
ROA not after: Mon 02 Dec 2024 19:10:48 +0000
asID: 9009
IP address blocks: 154.95.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70150 (0x11206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:10:48 2024 GMT
Not After : Dec 2 19:10:48 2024 GMT
Subject: CN=674228bb-af06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1d:ec:4d:1f:0e:84:fa:bf:de:23:f9:91:49:
28:a7:b3:be:81:6f:4e:ef:c7:c6:7b:3d:b4:90:f8:
87:7d:d4:91:58:2f:fd:dd:f9:af:ac:11:54:1c:7f:
e4:83:1b:f5:b8:d0:e5:c2:97:01:5a:be:0e:58:2c:
15:aa:14:90:55:db:ab:fe:9b:42:fc:67:3b:55:e6:
3a:ae:a3:c8:ec:97:29:08:7f:79:f9:83:20:55:bd:
2d:64:85:5f:ac:66:03:20:99:bd:5f:7c:1a:b1:5a:
81:69:cd:70:14:36:34:1f:cf:45:53:ad:39:e5:bf:
f8:a1:8d:42:b2:1c:19:3e:80:82:77:bb:75:37:bd:
e1:49:ca:0c:43:19:e4:a0:7d:39:d3:ce:98:cc:b8:
6b:74:98:37:bd:46:42:f4:e2:e5:3b:36:de:9a:2a:
34:56:2c:76:b0:f4:14:1b:1a:de:64:93:55:86:1c:
f0:6f:61:98:85:d5:b4:0a:c4:38:33:40:44:3e:47:
26:6a:df:27:dc:8d:af:1f:9c:bc:e6:02:fb:d1:ce:
7a:2b:03:73:41:04:a9:27:1d:03:b2:9b:4d:1c:fe:
d3:33:4d:c6:fd:3c:80:d7:62:fa:01:0d:84:57:4d:
6e:6a:c3:94:d7:53:a3:c5:bf:67:47:c0:5a:8a:59:
30:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:78:DD:F6:5E:5A:A7:62:43:0F:7D:0F:96:0E:0B:9F:B8:74:1C:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7ADD78CA9CE11EF8E40DC53762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.38.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:c8:7f:26:f2:a1:06:da:ab:4f:4f:2a:b7:65:7d:ab:85:c3:
70:29:bc:5f:68:83:b2:89:8d:d0:b2:dd:33:4b:b8:90:e7:e8:
d7:2e:e0:4d:ef:53:ac:c2:d9:66:42:da:81:90:47:49:b9:40:
b8:98:6a:ba:2c:e1:4c:42:94:20:1d:af:84:cd:0f:5c:db:10:
81:c8:ee:59:70:1c:1b:1d:4a:06:3b:38:d3:f6:34:6f:fc:89:
5a:de:a7:6f:54:be:d2:75:03:71:d0:a9:66:8b:a3:ec:ca:e0:
57:96:d6:4e:ba:d0:61:29:76:05:ff:dd:34:13:89:16:4c:ba:
b6:c8:8f:ae:21:f1:6a:7d:e1:e1:5e:9a:5f:a1:ac:10:b8:14:
f5:31:ba:40:b3:fb:a5:da:e1:cc:14:77:69:ae:d4:c2:88:a4:
6a:ab:db:c1:6d:90:0e:fd:bd:83:e1:ed:ac:93:e3:4e:b2:bf:
9c:f6:e6:32:92:be:a9:3c:60:23:9c:e1:bd:3e:95:df:bc:24:
75:8b:1a:d4:93:99:73:76:f4:cf:f3:f4:4c:f3:13:5b:bd:a0:
50:13:4d:6e:d0:b9:4c:0a:5c:d8:af:80:bd:e8:cc:a2:71:f1:
a5:61:9b:c6:69:57:98:55:46:4d:97:06:dc:21:81:57:46:0d:
2a:3a:49:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:27 2024 by rpki-client on console-ams.rpki-client.org