Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABEB3172A72211EF8587AF84762E951A.roa
File: ABEB3172A72211EF8587AF84762E951A.roa (raw, json)
Hash identifier: meHsOR7FsDlQjXNzt6XAyXOki2q2aQFBt9zXjlVko6E=
Subject key identifier: F7:99:00:3F:1A:C2:E9:B5:E6:79:07:60:A3:80:95:4B:27:51:46:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F67
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABEB3172A72211EF8587AF84762E951A.roa
Signing time: Wed 20 Nov 2024 09:34:43 +0000
ROA not before: Wed 20 Nov 2024 09:34:39 +0000
ROA not after: Mon 02 Dec 2024 09:34:39 +0000
asID: 39600
IP address blocks: 154.205.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69479 (0x10f67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:34:39 2024 GMT
Not After : Dec 2 09:34:39 2024 GMT
Subject: CN=673dad33-e2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:94:01:05:d2:4e:26:ce:05:11:46:f9:38:1c:
62:50:b8:64:17:84:e3:8f:c7:8a:59:5a:ff:47:4d:
fb:12:27:35:29:92:dd:15:48:3e:50:5f:e7:66:da:
98:7a:4f:7e:2f:0d:29:68:d4:e7:75:64:fb:b5:10:
f3:28:f4:74:09:00:00:c1:a4:a8:d3:5f:d7:4a:09:
25:b0:f4:c5:b5:8d:aa:8a:42:9d:90:f6:de:93:37:
13:43:f7:0e:db:97:bc:e1:21:4d:aa:a6:ae:c6:41:
db:2e:e8:ec:3b:e3:9a:bf:62:52:1d:94:19:4b:dc:
10:e3:9d:99:66:0b:7c:17:15:41:99:9c:79:75:cb:
25:60:cd:fb:3e:54:40:fb:95:e0:8b:94:bd:a1:75:
7b:fd:a7:c1:bb:81:ca:ad:9a:3b:60:b4:f1:7c:ce:
10:d2:ed:9f:c9:c2:da:36:8f:25:58:d8:17:23:fb:
c3:d1:e7:76:ab:89:bd:8f:89:ae:a6:f4:1d:18:01:
e3:53:99:b9:a6:14:60:1a:c7:4e:90:cc:cc:40:cb:
00:d5:d3:b0:f2:65:49:db:50:5d:bb:03:10:2f:8b:
08:2d:4e:2e:44:7c:92:56:d4:a8:a7:b5:15:8f:8f:
36:f0:82:b5:5a:0b:3f:82:50:0e:8a:83:37:b8:d7:
93:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:99:00:3F:1A:C2:E9:B5:E6:79:07:60:A3:80:95:4B:27:51:46:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABEB3172A72211EF8587AF84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.160.0/21
Signature Algorithm: sha256WithRSAEncryption
87:a5:0c:77:bd:38:1a:46:66:98:c2:a9:b0:4f:51:7d:38:4d:
16:73:ae:90:56:ff:b1:d7:36:9a:ef:20:2b:54:8d:e4:b5:9d:
84:7a:23:cb:5d:9a:19:be:0d:5d:67:d7:3d:1f:11:f3:5b:f6:
a9:2f:e2:6c:51:fb:8c:7c:12:37:d6:a4:0c:e9:1e:08:c7:6e:
92:f7:e6:23:62:ef:ba:68:23:55:aa:54:5a:a8:0f:f5:3f:79:
a1:76:b9:8b:2c:4a:55:fb:c2:d6:8b:53:5c:00:98:78:dc:f8:
1c:d6:07:cf:a4:d7:9c:ff:c9:3f:72:13:b5:fa:f3:78:61:01:
e1:2d:ad:0b:c2:86:65:da:31:e0:d5:47:40:b8:c1:5e:9f:01:
e2:53:60:f8:e9:83:3f:b9:15:da:08:e8:a0:66:0e:f5:f1:9f:
f3:c1:e0:54:c0:2d:a5:27:29:fd:c2:72:32:2a:54:e5:ab:c6:
9a:0d:f3:fc:1a:c0:e9:30:aa:36:a5:a3:63:9b:49:f4:ae:1e:
0d:c4:f6:03:0a:e4:97:98:b7:b5:99:20:57:fe:93:33:dc:0f:
04:9d:ea:bf:c8:31:b5:6a:b3:3a:7d:40:53:10:82:e8:29:d5:
8d:cb:fe:61:6c:c4:4b:07:99:5a:f6:ca:7a:7c:21:20:6e:d4:
41:d4:5b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:20 2024 by rpki-client on console-fra.rpki-client.org