Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B49F692295DA11EF90219C84762E951A.roa
File: B49F692295DA11EF90219C84762E951A.roa (raw, json)
Hash identifier: t8jhqPBtOnbNDChYIegIeCQVcg+pNj8/5UW4qYu7Cxw=
Subject key identifier: 43:81:ED:CC:38:F9:4C:73:4C:A2:ED:5A:DE:CB:F1:3B:8B:CE:C7:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010394
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B49F692295DA11EF90219C84762E951A.roa
Signing time: Tue 29 Oct 2024 09:46:44 +0000
ROA not before: Tue 29 Oct 2024 09:46:40 +0000
ROA not after: Wed 04 Dec 2024 09:46:40 +0000
asID: 61112
IP address blocks: 154.83.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66452 (0x10394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 09:46:40 2024 GMT
Not After : Dec 4 09:46:40 2024 GMT
Subject: CN=6720af04-9a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:54:3e:4c:d4:1e:85:5b:b3:91:a8:1e:ae:9c:
6f:61:12:70:2c:dd:42:a5:c7:05:1e:93:57:1f:af:
51:13:40:8f:d0:35:ab:42:ad:94:4c:bf:5d:83:9b:
73:f0:d6:d1:cb:18:76:ae:3d:fe:73:34:ec:73:15:
38:e9:11:52:b6:d5:47:28:cb:d4:3f:a3:12:34:09:
ec:b6:4f:7a:b1:f4:1f:7d:61:2d:03:1d:6f:e0:22:
2d:98:82:59:42:77:b7:05:fa:e8:e9:4c:55:a2:21:
17:6c:48:a8:2e:d1:a6:69:09:40:d3:70:0c:ad:0f:
b3:36:08:81:f0:0b:e6:60:e8:da:02:b3:7e:09:de:
e9:bb:1f:3e:13:03:f7:58:2f:1f:ac:20:81:c8:2c:
de:58:1a:44:9f:74:b8:d2:84:d8:1f:9b:0e:08:83:
6e:dd:f4:c1:8f:b3:cf:33:ba:4d:3a:76:90:e9:49:
ee:af:5d:ac:58:64:e5:bf:69:71:34:29:e2:fa:8c:
e1:45:d4:41:c9:cb:23:df:2b:5f:ad:53:4c:8c:be:
6a:32:25:42:d1:15:fe:5a:94:16:83:48:c0:93:97:
08:05:f1:be:87:ae:01:c4:3e:d1:74:09:b3:61:71:
d8:7e:dd:94:ac:d6:6c:fe:68:23:bd:78:1f:4c:78:
26:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:81:ED:CC:38:F9:4C:73:4C:A2:ED:5A:DE:CB:F1:3B:8B:CE:C7:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B49F692295DA11EF90219C84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.98.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:89:01:92:8f:d4:10:c2:63:da:e3:f9:45:72:07:c1:c2:64:
0d:ec:d9:eb:55:bd:5e:81:43:28:8b:6a:d2:27:94:08:97:a6:
df:6c:b6:a3:78:b2:51:fb:29:4e:dc:16:58:01:88:7a:3d:d9:
ce:3d:1c:28:62:6e:42:8f:c7:33:76:70:4d:94:8b:36:58:39:
c9:6a:72:89:ce:5e:ba:0f:80:7a:b3:6b:8e:44:97:9f:a0:1b:
2e:09:cb:12:16:98:9d:28:a0:d8:5d:46:19:9e:21:5e:74:1c:
17:43:6d:f6:3d:f5:58:b0:e5:c0:57:66:e1:34:97:38:f6:ce:
ec:6f:9b:94:a4:91:c9:37:b9:d5:10:34:ed:08:50:5f:0a:36:
71:e0:28:30:62:57:f1:7c:9b:78:cf:de:c9:d7:be:e0:30:77:
dc:1b:3e:2e:15:87:a5:ef:31:54:93:60:3f:17:12:a0:a1:9b:
4e:27:ee:20:16:61:bc:ef:e3:47:ef:c1:f9:7e:97:dc:fb:95:
46:ca:e7:89:8c:9f:17:cf:8f:b7:66:4c:d2:48:97:55:ef:74:
73:33:5e:a5:4c:4a:f5:ba:93:ce:22:6a:64:25:15:9c:4b:33:
fa:54:90:68:79:8e:97:df:32:84:2a:fb:85:75:ed:02:79:d7:
24:18:ce:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:23 2024 by rpki-client on console-ams.rpki-client.org