Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3350C7474D111EF8B9B3E62762E951A.roa
File: B3350C7474D111EF8B9B3E62762E951A.roa (raw, json)
Hash identifier: B4jzx02l6jyJtwD4epIOys6AzfRdirUvq1vPw74STDw=
Subject key identifier: 4D:1D:EF:18:45:40:92:15:13:AB:46:F9:66:34:BB:BA:2B:59:8C:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F02C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3350C7474D111EF8B9B3E62762E951A.roa
Signing time: Tue 17 Sep 2024 08:49:08 +0000
ROA not before: Tue 17 Sep 2024 08:49:04 +0000
ROA not after: Sat 30 Nov 2024 08:49:04 +0000
asID: 142403
IP address blocks: 154.83.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61484 (0xf02c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:49:04 2024 GMT
Not After : Nov 30 08:49:04 2024 GMT
Subject: CN=66e94283-8c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:de:35:b0:c9:d0:a5:83:44:10:ec:a6:0a:3f:
80:3b:60:6d:32:9c:b6:11:43:f6:ff:5a:6c:e6:20:
76:76:d4:ea:a8:ee:59:a2:33:f8:67:9c:29:a9:53:
b6:35:c3:7d:16:79:da:c5:94:3f:29:24:12:85:92:
12:6b:c5:95:fd:26:75:45:94:73:fb:d8:32:cf:a2:
f5:17:f2:46:6b:41:23:28:0e:b3:fd:75:08:37:4b:
b4:3b:4c:fc:9f:0a:fd:01:1f:87:96:87:ae:5b:fc:
30:5d:79:7a:87:a1:27:f3:d9:73:61:7f:5c:bf:80:
36:22:ee:7c:1b:b1:20:9d:65:79:78:e0:9c:c7:78:
de:24:54:aa:f5:ac:eb:69:ab:97:27:44:76:13:58:
cd:15:d4:bd:53:87:c1:f1:b4:0f:55:96:f5:dc:ae:
a3:ef:89:d8:c6:5f:e9:a3:16:b4:9f:7d:0a:27:42:
27:6d:42:0d:cf:58:8f:f4:78:d7:58:db:63:6f:0b:
fb:b7:d2:09:3e:d3:14:0b:d8:17:3f:10:46:1e:1b:
2b:f1:b1:0c:ae:1c:fe:b3:17:25:47:af:c0:5f:c3:
b1:17:17:60:a9:93:49:46:bb:1a:bc:bb:90:19:57:
45:37:fb:e1:38:cb:ff:1c:7e:f1:d5:22:e9:cc:b6:
31:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:1D:EF:18:45:40:92:15:13:AB:46:F9:66:34:BB:BA:2B:59:8C:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3350C7474D111EF8B9B3E62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.14.0/24
Signature Algorithm: sha256WithRSAEncryption
53:19:fb:72:e9:6c:b8:65:f9:da:11:1e:70:c3:07:7f:94:c1:
f5:d5:63:58:0b:26:a0:a8:06:36:f5:a7:32:fb:3a:6c:1d:8b:
d0:0a:d2:ee:cb:db:c1:0b:87:d5:5c:ef:de:a7:74:e1:8c:2d:
25:62:8f:b1:f4:a3:c6:d6:af:e6:36:38:e1:c2:5e:b7:e3:e1:
10:f0:8b:1c:89:09:66:48:98:c1:ba:a2:a4:16:14:1c:d6:be:
5c:c7:c1:52:de:68:d3:55:33:93:09:f8:a4:eb:d0:48:b4:cf:
4e:cb:7e:cb:fc:44:7a:ad:a0:c0:40:3b:b2:38:5a:dd:bd:72:
4f:5a:8d:7e:af:fa:1b:bd:c3:b0:02:64:aa:9e:35:2e:bd:fc:
11:2c:a2:85:b4:46:3f:12:f5:cb:dd:42:d0:06:34:fc:e5:60:
5b:98:87:e9:1c:08:0f:9d:35:25:4b:a6:b0:11:62:7e:5c:51:
d6:c8:b1:e2:09:87:3c:b3:c1:67:23:5e:38:5c:70:69:df:ed:
e5:43:60:b6:d2:a2:b1:85:e6:99:86:54:b9:17:59:16:3b:f1:
4f:ff:3c:b8:bb:01:86:7c:05:19:e8:89:bf:95:5d:28:16:91:
ee:5e:fe:e0:e2:98:b8:eb:99:f5:f8:c6:84:cf:5d:8d:bb:50:
da:12:12:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:21 2024 by rpki-client on console-fra.rpki-client.org