Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A80C5012A8EA11EFB93C76B8762E951A.roa
File: A80C5012A8EA11EFB93C76B8762E951A.roa (raw, json)
Hash identifier: D5/J6O7pQIkxC7xgLpmcRyfaVvCKdiWoLUTXfQ4naUg=
Subject key identifier: AC:7C:C3:7C:5B:4D:81:C1:0F:EA:31:FB:2F:24:C0:6D:82:D2:F9:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011107
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A80C5012A8EA11EFB93C76B8762E951A.roa
Signing time: Fri 22 Nov 2024 15:58:47 +0000
ROA not before: Fri 22 Nov 2024 15:58:43 +0000
ROA not after: Tue 03 Dec 2024 15:58:43 +0000
asID: 62240
IP address blocks: 154.195.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69895 (0x11107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:58:43 2024 GMT
Not After : Dec 3 15:58:43 2024 GMT
Subject: CN=6740aa37-fafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:34:0f:22:27:f1:d3:fc:b7:25:91:6d:ca:09:
f0:b0:27:6e:33:80:5a:0c:fb:56:ed:7f:88:6f:cb:
b7:a8:96:a4:05:4b:12:b4:ec:e2:e1:17:fe:e0:23:
a7:ab:d1:85:94:e6:64:35:37:58:91:e4:a4:7b:05:
ea:e8:9e:56:36:db:79:16:03:d9:e0:cb:dd:b2:c8:
cf:69:fe:d1:51:f8:d9:e9:9b:49:3b:1d:d1:87:f7:
ff:91:9f:a2:03:da:a7:81:18:4a:11:37:aa:d5:96:
64:68:3a:87:a9:5d:5d:1a:05:aa:fa:8d:3a:c4:49:
87:93:f6:0d:a2:e3:cb:53:cd:af:e4:1b:69:3b:66:
93:b8:ec:83:35:5f:65:32:8d:d5:11:fa:ad:f0:5a:
c9:e3:b4:c0:f2:b2:9c:51:e8:90:d8:91:c5:62:e1:
3c:c7:57:00:70:bb:5b:3f:49:2a:d7:56:40:8a:a1:
8a:8a:f6:0b:1f:31:62:0a:13:1c:d5:f3:bd:5e:52:
d4:a5:ef:07:8d:ba:cd:55:bd:09:4a:3a:21:a4:ae:
5b:4f:26:2b:f8:17:e8:5c:33:f4:c2:94:b6:74:02:
b4:a9:93:fb:ab:5a:49:34:be:c9:52:9e:01:f1:54:
dd:08:9c:4a:ff:8f:72:2b:a3:1d:e4:77:ce:92:d6:
30:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7C:C3:7C:5B:4D:81:C1:0F:EA:31:FB:2F:24:C0:6D:82:D2:F9:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A80C5012A8EA11EFB93C76B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.3.0/24
Signature Algorithm: sha256WithRSAEncryption
06:ac:c9:0b:e7:a4:1e:24:49:fc:fb:37:15:28:4e:a1:d3:c3:
4e:52:d8:1e:8c:1d:9d:e8:47:21:66:69:1b:9c:dd:7c:b5:cb:
54:ce:26:65:05:cf:db:0a:7b:bb:85:ed:ec:88:2d:5b:c5:87:
8e:f6:72:91:9e:4b:49:f8:b0:67:5d:e7:d9:de:a2:46:f3:37:
ea:5c:26:50:22:7a:3d:fd:5a:2b:24:8e:05:cb:c6:b2:f4:dd:
47:7e:2c:40:eb:d8:b3:c2:36:08:1f:37:b9:33:fb:60:4d:84:
7c:89:a5:1e:6b:f7:20:e7:c9:3a:07:6a:38:3f:ea:61:9a:01:
9e:24:80:46:e4:06:fb:67:52:db:25:f8:1e:a2:66:00:12:b1:
c9:e9:e2:bb:4e:74:64:1f:51:65:5a:b9:9d:c8:db:61:9e:bc:
f8:ab:8d:1f:27:5f:76:97:89:5b:3e:a6:1e:6d:a1:58:4b:98:
09:36:63:f5:ed:7b:d7:8e:64:03:f4:5a:f7:d2:3c:7f:d6:3d:
40:cf:91:01:1c:a7:16:de:c2:d9:00:ac:9b:f5:4e:3d:e2:7d:
11:a0:95:b9:5b:5e:fa:84:45:bc:cf:8f:21:a0:01:a2:0e:17:
71:e3:23:fc:43:e4:d3:59:6c:d1:e4:2b:12:79:da:72:7a:25:
f4:95:84:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:27 2024 by rpki-client on console-ams.rpki-client.org