Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF7B63BCA2BD11EEB7A79010D25BE465.roa
File: AF7B63BCA2BD11EEB7A79010D25BE465.roa (raw, json)
Hash identifier: A8kHlv0QhzflLq9qiu1B/J6yZbL1pCRWJkSwzp7KYlI=
Subject key identifier: 41:8F:99:60:9F:A4:8F:62:25:B2:52:E4:7E:F3:DB:F7:DE:B4:EC:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 666E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF7B63BCA2BD11EEB7A79010D25BE465.roa
Signing time: Mon 25 Dec 2023 00:36:47 +0000
ROA not before: Mon 25 Dec 2023 00:00:44 +0000
ROA not after: Wed 25 Dec 2024 00:00:44 +0000
asID: 18229
IP address blocks: 154.83.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26222 (0x666e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 00:00:44 2023 GMT
Not After : Dec 25 00:00:44 2024 GMT
Subject: CN=6588ce9f-11c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:2a:10:49:9c:b7:81:cf:12:c8:90:10:b0:
02:91:03:6c:23:99:0f:57:12:da:f9:c6:b0:30:bb:
3a:75:b7:95:55:5b:8a:fa:68:49:76:3d:7c:60:7b:
3a:44:77:71:ff:4d:4d:9c:74:62:fb:1b:d1:50:dc:
6a:91:8e:9a:c4:36:4e:99:a4:1e:93:d6:fd:8c:73:
c9:bc:e4:2e:72:d6:bb:8c:1d:0c:21:5c:0a:27:65:
82:45:75:b1:3e:16:4d:f1:38:e4:3c:37:bd:df:69:
1b:4d:05:f0:37:b8:d3:75:39:cb:e5:70:d6:db:1c:
0b:de:09:63:7c:c4:5f:5c:3b:31:c0:a0:02:7e:3b:
b1:c1:a3:91:a3:56:1b:28:2b:66:96:63:a2:0a:4e:
91:d9:45:05:0e:b1:bc:4d:90:73:16:df:0e:6d:47:
01:7a:40:93:9d:a6:1f:40:ee:b2:13:50:c0:9a:31:
d6:1b:a2:eb:4d:00:4b:13:9c:11:ba:b2:a0:27:72:
18:fe:d1:e6:55:43:ba:37:b3:3e:9f:d4:73:08:d9:
76:78:59:e5:f9:48:3f:9a:fd:ef:af:c9:f3:e2:f8:
8d:8f:39:5e:8a:70:9e:e8:f0:d6:b7:6b:6e:07:b9:
17:62:ac:bf:76:52:2b:b5:86:68:7b:41:bc:db:55:
73:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8F:99:60:9F:A4:8F:62:25:B2:52:E4:7E:F3:DB:F7:DE:B4:EC:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AF7B63BCA2BD11EEB7A79010D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.3.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3a:98:7d:ab:98:c4:1c:b8:30:d5:95:95:94:0d:9c:b0:04:
c6:27:43:f0:a0:2d:58:41:29:51:62:66:8d:0b:8b:5f:5f:fe:
e4:ed:ca:80:f7:c9:ad:35:6a:79:8d:15:e9:46:6e:a3:f6:40:
f4:3e:ee:2c:0f:6b:8a:53:be:61:89:4f:60:5c:1e:d3:b4:0f:
8b:7f:1f:bb:95:eb:69:af:af:c7:a6:84:ea:98:48:70:76:26:
4b:cc:b3:56:a1:08:2a:e7:f6:5d:6f:43:7c:92:f7:d7:37:e3:
af:16:4c:3d:48:ad:e2:b9:56:2d:12:07:e8:b4:7a:68:c9:9c:
92:91:87:5c:60:0e:db:73:2d:91:d3:85:82:8d:8e:74:3c:e1:
e0:04:ae:1f:94:f7:6e:1b:3b:fb:0a:77:58:99:36:47:92:f7:
0b:1e:91:20:78:42:b3:34:2e:8c:36:96:77:fe:16:fc:f8:6c:
f0:8f:ae:25:20:b7:42:9d:76:e7:cd:b9:09:b2:88:2d:dd:22:
2f:65:86:b0:e8:e1:a8:b3:08:0e:86:4f:14:82:6a:98:1b:f3:
df:b2:16:ed:0c:84:eb:91:88:4f:3a:dd:f0:6c:d9:01:bd:08:
c1:14:6a:8d:3d:08:cd:7d:8d:91:91:02:a0:f4:f9:37:20:c8:
6f:f4:51:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org