Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC47B149A9211EFA395F649762E951A.roa
File: ABC47B149A9211EFA395F649762E951A.roa (raw, json)
Hash identifier: yXrX+ZHiiDE4NPgwZkXLYg8PtLydO6Oe3UKBKuWt9d0=
Subject key identifier: 60:75:30:A4:C2:67:45:33:1F:02:51:F2:1A:3F:4E:23:89:8F:A8:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01067E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC47B149A9211EFA395F649762E951A.roa
Signing time: Mon 04 Nov 2024 09:53:41 +0000
ROA not before: Mon 04 Nov 2024 09:53:37 +0000
ROA not after: Thu 05 Dec 2024 09:53:37 +0000
asID: 214492
IP address blocks: 154.207.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67198 (0x1067e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 09:53:37 2024 GMT
Not After : Dec 5 09:53:37 2024 GMT
Subject: CN=672899a5-a947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:81:1a:bb:ba:0d:07:58:6c:04:38:f2:6c:e5:
64:7d:ef:99:dc:5e:37:7a:92:7d:81:6e:05:8b:02:
b4:1f:0c:f1:19:43:a9:e9:7b:55:3f:3f:05:d9:08:
aa:50:ad:18:1c:7f:19:b5:d5:e9:53:0b:7e:34:20:
a1:62:c6:b9:40:28:4a:a1:e5:74:b9:2e:48:ff:cd:
95:2c:4a:5d:d0:4f:a7:12:5f:8b:6d:fa:ae:ee:a4:
de:0d:95:cc:af:ff:c1:aa:33:fd:2e:a2:9d:6c:84:
4d:79:06:f1:11:25:e9:b3:e4:18:23:ad:43:56:ff:
61:d0:33:12:64:7b:0b:c7:b4:9b:96:76:c4:4e:59:
8b:8f:67:02:7e:07:aa:8b:10:b4:f0:e9:4d:33:50:
b2:0c:c7:9e:8c:0c:65:0a:e3:d1:08:03:a4:97:6a:
32:8f:14:2a:97:ad:8e:9f:07:39:0c:91:f9:8b:8d:
c9:a0:62:04:6b:96:ae:a0:65:5e:7d:8b:6f:7e:88:
a5:af:b1:c9:8d:fa:75:d1:99:ad:48:cf:93:12:bc:
f6:f3:f4:78:13:d7:78:36:f4:18:31:da:8d:50:d3:
5d:f9:c8:28:49:8a:ae:d4:25:e9:eb:66:49:3d:a3:
cf:c2:0b:62:b4:b9:28:1f:ec:6c:79:a2:d6:57:89:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:75:30:A4:C2:67:45:33:1F:02:51:F2:1A:3F:4E:23:89:8F:A8:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC47B149A9211EFA395F649762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.91.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:66:b3:d2:a8:90:ac:fd:51:51:c6:1c:a4:76:fd:6a:62:38:
7c:73:b3:20:f3:06:a0:f8:ae:61:bf:f8:5f:13:38:cd:13:6c:
38:47:10:da:85:1e:36:ce:00:bd:82:5f:ac:0d:be:60:d2:b6:
96:51:a2:48:78:0b:2e:17:ef:ec:5a:91:90:e4:f6:2d:d3:ab:
fb:a4:70:f7:14:27:00:6e:c0:03:1f:c2:4e:9a:b7:cd:28:2d:
2a:38:4d:3e:1c:86:9c:f5:4b:4a:6c:c9:c7:df:ec:15:e3:61:
71:ca:f8:ac:91:15:c8:3e:5c:77:15:63:42:45:dd:ef:e8:5a:
95:20:84:db:1b:cc:92:7c:3a:53:b5:59:27:0e:0c:e3:ae:38:
7f:0f:ed:3c:aa:d1:8f:3b:7e:5a:d2:c8:9e:2f:91:52:ee:3e:
7f:40:5d:34:be:09:19:2e:7d:67:48:84:18:e4:69:8f:e4:36:
a9:1a:4d:7b:e7:23:27:e8:e9:97:96:8a:20:6a:e9:6f:8d:9d:
17:c8:62:7e:25:84:ed:a1:e1:21:8b:6e:38:97:d8:e7:3c:08:
ef:f3:44:2b:6e:46:fb:94:16:15:2f:7d:52:ac:c7:71:4a:ee:
20:eb:94:56:31:ab:a5:02:e8:7c:d6:c4:bc:a8:ed:88:99:e8:
f7:b7:01:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:40 2024 by rpki-client on console-fra.rpki-client.org