Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF3ACCF0A8F011EFB7962D5F762E951A.roa
File: AF3ACCF0A8F011EFB7962D5F762E951A.roa (raw, json)
Hash identifier: jVRr556cH/RPaPGPCWfQ6IVBySRYqZfbiP7HzYS+33M=
Subject key identifier: 91:34:CD:CD:97:FC:91:87:C7:0E:CD:94:11:AE:9B:59:34:00:A1:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01114F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF3ACCF0A8F011EFB7962D5F762E951A.roa
Signing time: Fri 22 Nov 2024 16:41:56 +0000
ROA not before: Fri 22 Nov 2024 16:41:52 +0000
ROA not after: Tue 03 Dec 2024 16:41:52 +0000
asID: 62240
IP address blocks: 154.195.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69967 (0x1114f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:41:52 2024 GMT
Not After : Dec 3 16:41:52 2024 GMT
Subject: CN=6740b454-30a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:42:1c:e6:85:ec:03:be:97:b9:c7:86:7c:06:
d1:7f:ad:f5:a6:5d:b0:41:a9:75:8c:41:0b:88:e5:
42:88:ed:a4:ab:d7:bd:bd:ac:5c:f4:a5:e1:67:eb:
6c:1e:c3:ef:e0:cc:cc:ff:79:8d:d9:f8:01:fe:2a:
da:63:29:50:39:c1:34:6b:1b:38:89:46:95:ab:69:
82:de:da:c3:6d:0b:1d:30:5b:45:af:2a:41:b7:24:
3b:c7:74:d2:ce:e9:fe:c9:05:8a:09:6a:37:2d:46:
4b:2b:10:f2:0c:ab:49:7c:14:9c:96:67:c5:3c:0e:
55:1c:f9:98:34:a2:80:f7:9b:09:b4:7b:5a:11:4b:
26:5b:bb:68:c2:27:0d:fe:12:ec:36:a5:c9:3d:df:
b9:41:c4:6c:88:4f:38:39:8d:91:54:83:ba:f4:63:
99:c0:8d:62:29:f9:c6:07:a0:a4:50:49:7a:12:25:
df:cb:d2:bd:00:47:46:61:4a:0d:63:6c:ea:fa:82:
64:d4:c8:22:c0:d4:cc:b7:5e:14:f7:5b:5b:83:e9:
f7:37:be:4e:bf:11:a7:5e:46:fa:13:00:ce:ad:32:
b3:e9:33:c8:5d:5c:cb:b6:ae:8d:27:74:8d:9b:4e:
9b:9d:fa:68:8f:2d:1c:a4:54:c5:53:2e:eb:75:e1:
a3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:34:CD:CD:97:FC:91:87:C7:0E:CD:94:11:AE:9B:59:34:00:A1:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF3ACCF0A8F011EFB7962D5F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.162.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:a2:94:c2:4b:a5:88:36:e9:72:f0:85:64:1e:53:ab:93:a4:
7a:5c:f1:5e:11:e6:7a:90:1d:75:15:97:b9:29:6a:45:37:85:
00:52:b0:0e:0d:3b:d6:1d:0d:f8:fb:f6:91:bf:71:62:b6:72:
16:e6:3f:a9:74:4c:9b:be:05:71:85:c0:2c:7c:fd:29:aa:17:
64:4b:9a:91:ab:22:a4:5e:16:e1:f2:09:06:26:df:e0:1d:0e:
35:16:21:f0:c3:3a:5c:20:32:f9:80:35:37:bb:42:3c:e5:ad:
5f:2f:48:d7:dd:97:cc:1a:70:05:a4:6b:f2:32:17:50:2b:da:
3f:a6:9f:df:45:7d:e3:11:af:33:b3:9d:e8:ad:77:1e:a0:ac:
0c:9f:54:91:85:71:26:59:d8:ed:dd:ab:73:bd:82:2f:55:c8:
06:81:f2:c3:00:26:b3:f4:ea:5a:ee:e8:2d:86:69:58:6d:53:
ad:6e:1f:89:ff:d9:10:df:87:2c:17:0c:48:79:a2:3a:1a:b8:
5c:a5:46:7f:2e:0c:62:b7:2b:19:68:bd:cb:60:88:76:94:8a:
35:2d:d7:77:7e:00:73:86:96:f1:8e:db:46:60:90:0f:b3:87:
b9:8a:6e:30:c2:4d:c9:2a:8a:0c:ae:c7:54:ed:72:de:7b:07:
dc:9b:94:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:29 2024 by rpki-client on console-ams.rpki-client.org