Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD1D247039DF11EF87310AA4762E951A.roa
File: AD1D247039DF11EF87310AA4762E951A.roa (raw, json)
Hash identifier: kVz9WbmCI3Mp7v0cYwQgoKCqFloICuLg2z9DZC+L0E4=
Subject key identifier: D7:08:5C:87:6F:18:48:6A:6F:68:37:1B:4F:AD:69:1B:7A:91:FF:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CCED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD1D247039DF11EF87310AA4762E951A.roa
Signing time: Thu 04 Jul 2024 08:30:32 +0000
ROA not before: Thu 04 Jul 2024 08:30:28 +0000
ROA not after: Wed 16 Apr 2025 08:30:28 +0000
asID: 38638
IP address blocks: 154.91.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52461 (0xcced)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 08:30:28 2024 GMT
Not After : Apr 16 08:30:28 2025 GMT
Subject: CN=66865da8-8dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:20:16:63:9c:10:21:c9:b0:66:21:7a:f8:
12:d0:02:6f:7a:d6:f1:8d:29:37:9e:9f:87:c1:d6:
41:eb:87:44:ea:99:bf:e8:bb:62:ea:eb:44:49:49:
8f:68:41:1d:bd:a9:40:b8:33:0a:5b:0e:0c:b3:0c:
29:29:3b:95:45:e1:a6:61:a0:8d:00:27:ef:58:a0:
37:d6:16:63:54:f3:cb:0d:ca:9c:d7:fb:6d:3c:4f:
d9:0b:34:17:44:90:b1:01:97:d6:15:17:6d:ac:89:
3f:3f:9a:8e:68:52:0b:f4:8e:ce:10:81:70:1f:2a:
ab:1b:3d:aa:ac:95:c1:aa:68:c0:96:64:19:04:92:
eb:df:6c:fc:8c:27:e2:40:fe:80:aa:7c:56:00:70:
e6:3b:d6:18:e7:52:13:d6:93:05:4e:bf:b4:41:09:
ee:69:10:80:a6:ca:5e:de:e4:f1:74:f1:83:9e:e1:
c4:41:f2:85:5d:30:e5:46:00:dc:09:c1:7a:19:ca:
7a:79:22:d2:9c:26:2a:8d:5a:28:47:c8:b4:48:cb:
2a:2c:6d:81:ba:0d:93:80:23:f0:7d:f2:ba:bc:65:
fe:66:fa:c7:0d:a7:43:d2:79:d3:8a:a6:a6:d9:00:
e2:06:d6:1d:b7:dd:75:86:a3:38:a5:db:fd:fd:85:
56:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:08:5C:87:6F:18:48:6A:6F:68:37:1B:4F:AD:69:1B:7A:91:FF:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AD1D247039DF11EF87310AA4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.168.0/24
Signature Algorithm: sha256WithRSAEncryption
24:57:01:50:f8:a8:4b:7a:f7:6d:fa:61:2c:d7:bd:a9:86:57:
65:6c:64:6e:3e:68:4a:66:a2:bf:bb:ab:4d:61:1c:04:04:cf:
d6:b1:66:75:00:1c:eb:a0:89:ff:aa:18:73:41:ae:2d:34:55:
4d:ff:4c:2d:b7:53:c7:c2:9a:d7:16:d6:a4:06:f6:18:66:90:
dd:e5:00:b6:79:8e:7d:f4:9a:27:ca:2f:89:08:75:63:2e:1d:
43:20:0b:81:13:43:fb:d8:3d:4d:3d:04:6f:4f:e6:64:ae:61:
31:06:dc:e0:61:c9:b1:75:27:a9:f0:67:08:fd:3b:e9:65:15:
b4:f9:0a:c4:f9:44:56:97:d6:0c:28:c0:0e:00:ef:72:9a:1e:
a2:2c:53:dd:8f:20:ed:ed:ff:33:b1:43:f9:76:92:4d:2e:94:
84:a6:6a:dd:40:bd:91:d1:96:2a:f6:80:97:86:65:83:b2:3c:
24:53:5c:e7:ee:e4:aa:e4:8c:16:ca:19:8e:bd:ec:49:9f:c3:
7c:88:2e:57:cc:a3:e1:85:52:64:05:16:8b:d2:3b:01:3d:4c:
f4:a3:66:8a:ea:90:3d:0b:6e:42:8e:93:6b:d0:61:9e:c7:2d:
96:b7:32:69:89:21:ce:bb:63:67:81:97:94:f1:a0:e1:26:d4:
44:1b:09:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:42 2024 by rpki-client on console-fra.rpki-client.org