Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE82CA0CA4CB11EFA2063656762E951A.roa
File: AE82CA0CA4CB11EFA2063656762E951A.roa (raw, json)
Hash identifier: 63w5SVrjWDaR5PWZhPLG72J6k8agsBTeZMq1ttTMbtM=
Subject key identifier: 2B:15:DC:59:BF:E6:01:12:D1:C5:51:14:FC:D8:18:AF:E0:B1:CF:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE82CA0CA4CB11EFA2063656762E951A.roa
Signing time: Sun 17 Nov 2024 10:06:58 +0000
ROA not before: Sun 17 Nov 2024 10:06:55 +0000
ROA not after: Mon 25 Nov 2024 10:06:55 +0000
asID: 399989
IP address blocks: 154.194.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69260 (0x10e8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:06:55 2024 GMT
Not After : Nov 25 10:06:55 2024 GMT
Subject: CN=6739c042-d535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f8:40:a2:16:96:cb:13:bd:73:4f:a8:30:78:
0c:8f:93:cf:19:4e:73:59:57:d7:99:0b:63:fe:54:
a5:2c:c4:2b:22:7f:5a:b8:a8:ad:a0:3c:35:cf:3f:
8e:67:a4:67:4b:0b:15:0b:bc:f7:29:d6:2f:a8:03:
f9:ba:77:43:62:55:c4:c2:e0:b5:ba:ac:86:f4:6d:
82:f0:50:68:ad:07:d8:2c:53:5a:21:a5:76:2b:c0:
2d:f9:3a:a9:18:52:ca:c4:7e:ba:dc:bc:bf:a2:af:
45:1d:6b:b8:71:53:72:0f:84:cc:1f:d2:94:04:7a:
25:25:5e:7e:de:3d:4f:23:04:ae:9f:3a:4a:3f:ff:
d3:eb:25:81:ee:ea:8b:f1:51:4f:c9:c1:65:fb:b2:
2c:fe:9e:a1:6f:c2:39:11:7e:ff:03:94:22:ed:59:
0a:f0:ac:a7:f3:3a:e2:00:6b:44:b5:2c:8c:b3:63:
d1:97:5d:49:36:ff:ef:6e:80:cc:50:38:e4:cf:9d:
8d:68:f3:f4:ed:81:4d:71:c5:db:be:3b:7b:1c:91:
7d:c4:e5:4c:cc:ca:5a:fb:9b:42:66:7a:89:bd:7a:
01:a2:90:8f:91:25:cb:32:44:f4:99:76:c1:22:42:
6c:c0:ab:ca:1e:02:7f:2a:fd:4e:d3:ee:2f:33:3f:
c9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:15:DC:59:BF:E6:01:12:D1:C5:51:14:FC:D8:18:AF:E0:B1:CF:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE82CA0CA4CB11EFA2063656762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.24.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:c0:72:88:9b:bb:82:1e:65:e9:86:9f:48:da:b3:38:46:eb:
f7:a2:cc:a3:57:bb:28:d4:b6:4b:81:25:e2:18:2d:5b:d8:55:
ae:89:e6:7c:8d:64:37:f1:2d:0c:ba:b9:3e:ab:ae:11:25:f7:
11:4f:e1:90:44:76:89:cb:88:e7:d9:8f:81:be:97:6c:65:f1:
02:a3:47:8d:a8:5c:13:01:c8:77:25:39:24:f0:e7:fc:1c:2c:
b1:6a:f4:de:84:98:b7:af:ec:9a:7c:cf:dd:58:19:74:ae:65:
b7:28:56:37:ed:91:89:c8:2a:91:1b:b5:c6:ae:1a:58:8e:eb:
f9:e2:92:92:b9:c1:41:40:fb:22:42:c8:62:fd:a0:51:65:c9:
5a:e0:58:d9:e0:8f:d2:48:17:55:fc:08:ec:ba:c0:f6:b8:18:
8d:8b:81:f7:21:09:e7:27:21:95:a5:17:5b:47:91:1f:e0:5b:
b2:03:14:c9:aa:d0:e3:bc:21:5e:45:a4:26:f9:57:65:cc:e9:
cd:83:0a:b1:74:80:c7:a0:b7:34:30:47:bd:4e:fd:25:42:26:
27:d0:0c:69:74:ac:36:2f:bd:8f:61:3d:21:92:b4:a0:46:ad:
78:11:ae:32:f5:d3:2c:ea:aa:78:45:69:cd:f7:51:f8:cc:44:
20:34:d8:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org