Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B15C84728F8E11EF8FFB3A5A762E951A.roa
File: B15C84728F8E11EF8FFB3A5A762E951A.roa (raw, json)
Hash identifier: +Uvljo9/Yp4lWA9rC/vIcPwteuPB3eeg3ubFkjIU6og=
Subject key identifier: 79:22:C4:FB:DF:8C:B5:72:5A:AA:D2:63:00:F9:6C:4B:77:4D:98:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01005E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B15C84728F8E11EF8FFB3A5A762E951A.roa
Signing time: Mon 21 Oct 2024 09:27:30 +0000
ROA not before: Mon 21 Oct 2024 09:27:26 +0000
ROA not after: Tue 26 Nov 2024 09:27:26 +0000
asID: 62240
IP address blocks: 154.196.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65630 (0x1005e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 21 09:27:26 2024 GMT
Not After : Nov 26 09:27:26 2024 GMT
Subject: CN=67161e81-9319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:87:ed:85:64:41:9a:0c:31:eb:1a:49:56:3f:
e2:9e:94:3e:2a:1a:62:12:5c:45:3e:5e:ca:3d:4f:
ca:a1:13:ef:76:dc:21:50:ba:60:b4:f1:6a:1b:b6:
85:0c:d4:7e:91:0f:1c:25:e4:d5:4b:93:8a:56:d8:
46:95:2f:1d:30:8b:85:d1:27:89:5a:88:d6:07:3d:
10:43:a9:68:ca:d6:64:f1:1a:a8:09:a9:cf:2c:c1:
10:69:0c:26:d5:db:f3:99:75:4a:e9:7d:53:41:cf:
3b:6b:5f:4f:bc:b1:5f:6e:a1:58:e6:00:72:cd:b2:
03:1a:db:1b:a4:9a:5b:34:b2:9e:60:9a:ba:14:02:
80:0f:16:06:ea:7b:ce:27:f7:41:51:7c:3d:dc:5f:
f6:93:e1:4a:91:1d:59:ba:26:77:2f:f6:21:de:10:
3b:98:bc:b6:e5:32:62:45:ec:3e:51:f4:67:b3:b6:
e7:bb:9d:e3:a1:2b:36:5a:c7:23:a0:9d:84:11:5a:
5b:23:39:3b:e3:ed:21:84:e1:be:99:a3:57:00:6b:
d0:10:fc:dd:fd:31:76:33:73:21:5b:ce:69:1d:ea:
4b:c2:22:88:de:79:cd:69:76:cf:10:29:2f:35:31:
8e:27:25:fe:34:8c:b2:c8:bd:fa:9c:27:bc:8b:cc:
c7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:22:C4:FB:DF:8C:B5:72:5A:AA:D2:63:00:F9:6C:4B:77:4D:98:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B15C84728F8E11EF8FFB3A5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.88.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:d2:f2:da:52:70:fe:e4:fc:ad:62:9d:0a:11:8d:5c:bf:ec:
54:f7:7c:80:8c:5e:f6:ec:e2:c1:d7:1f:5b:52:c3:5e:c7:57:
31:76:d6:ee:64:d5:61:a3:66:26:e1:31:19:5a:ac:73:e4:6d:
29:40:8a:60:d2:67:80:a0:e0:22:f1:8c:d8:4d:c0:6f:b8:c4:
5b:e2:00:6d:15:c2:9c:72:41:a1:57:9c:c2:3c:31:d0:38:6b:
c8:de:b9:a8:53:4c:25:d0:ca:80:e6:10:2a:5c:82:29:ab:5c:
95:3d:c6:4b:ae:ae:50:c1:0f:ba:19:39:8e:b8:1e:eb:e1:dd:
74:7e:07:9a:e3:ca:ae:a7:ce:15:58:37:43:43:eb:e9:3c:e3:
24:38:dd:b8:a4:2a:f6:c6:23:47:42:0d:01:be:0b:e4:b0:d7:
0c:52:af:c6:b6:e5:8e:2a:2c:d4:26:36:56:5c:19:66:4a:13:
a4:4c:b0:73:8f:74:9c:eb:3e:d0:9e:55:ec:30:d0:bf:b2:13:
7a:dd:a8:cf:c5:51:9c:97:55:53:d2:5e:52:ea:8b:e6:08:01:
24:eb:b8:51:b1:15:a1:31:85:18:5e:26:d4:e7:64:a3:51:0a:
5a:6e:cc:ad:ff:f3:48:68:d3:1c:0c:1e:7b:54:51:c4:ac:32:
87:a5:ac:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:21 2024 by rpki-client on console-fra.rpki-client.org