Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B879D7F03F5C11EFB0B7F77E762E951A.roa
File: B879D7F03F5C11EFB0B7F77E762E951A.roa (raw, json)
Hash identifier: yniw5ZwR5/1Rnp9Glzt5oEWAl7XL5qAE3KNobD6/z+I=
Subject key identifier: 67:12:3F:84:94:A8:26:91:F7:78:83:3C:2F:01:A9:E3:30:E4:BE:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D0A6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B879D7F03F5C11EFB0B7F77E762E951A.roa
Signing time: Thu 11 Jul 2024 08:08:14 +0000
ROA not before: Thu 11 Jul 2024 08:08:10 +0000
ROA not after: Thu 24 Jul 2025 08:08:10 +0000
asID: 151196
IP address blocks: 154.204.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53414 (0xd0a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 08:08:10 2024 GMT
Not After : Jul 24 08:08:10 2025 GMT
Subject: CN=668f92ee-5c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9e:67:b6:45:d9:cf:c4:85:89:79:e4:3c:18:
bd:48:17:2b:20:7c:a0:5f:d7:a6:07:75:47:fc:8f:
ea:33:15:77:b5:37:c2:9e:8d:a5:60:e2:b3:9c:96:
68:58:c8:df:81:c4:26:1f:26:26:cc:05:aa:c2:bc:
66:1b:ca:96:b1:40:72:06:f5:07:01:e7:da:c4:40:
f9:ae:e5:bd:62:8d:0a:9d:2a:48:90:5f:b5:1d:df:
d8:8c:ee:a4:c6:31:e7:58:24:36:37:74:f7:51:a0:
6a:4f:70:d9:d7:8d:99:65:c7:58:80:1b:dd:7f:4c:
fa:c1:af:ca:a4:3e:1d:e2:a9:c7:3a:0a:4d:e3:ef:
95:10:5b:be:70:74:69:2f:61:8c:95:96:45:5d:7b:
ee:33:42:57:b0:4a:6e:b4:91:62:87:21:2e:11:8c:
b9:0e:2f:c2:40:94:02:b7:0f:ca:b9:bb:e5:d2:d3:
bb:fb:ad:83:73:9b:a0:99:3b:eb:13:44:a0:d0:1f:
e5:68:9c:a2:60:57:04:a0:aa:0e:94:62:92:e0:ef:
fd:1b:f1:0e:63:3f:77:cd:6b:d7:40:e7:37:11:51:
0e:00:1d:a9:a2:13:52:40:44:14:b1:4b:07:f9:64:
84:24:6e:97:c6:66:b6:43:af:5a:f8:9d:ef:c1:20:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:12:3F:84:94:A8:26:91:F7:78:83:3C:2F:01:A9:E3:30:E4:BE:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B879D7F03F5C11EFB0B7F77E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.54.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d6:4f:7b:60:97:a8:94:7d:e2:23:a8:ca:96:b8:4c:03:09:
c4:8b:97:94:68:5d:f8:e6:1d:1e:9d:d9:53:13:49:0f:f2:7e:
bc:74:e7:04:c5:8a:9b:b4:7a:e1:db:fe:00:cb:d5:b8:07:38:
f1:31:e2:d2:ef:c0:15:b6:81:0d:44:48:5a:2f:48:e1:ae:03:
55:6c:d4:6a:2e:fa:cc:03:bb:c7:85:42:31:2a:47:81:df:6a:
bb:38:f9:83:3f:46:5d:e1:b8:3d:9c:0f:24:47:92:39:09:b5:
da:54:e7:12:52:16:6c:8b:47:3b:ff:46:ca:71:ad:da:14:60:
58:83:bd:3f:53:79:17:be:1e:31:5f:e9:52:0c:fa:87:36:64:
64:4f:9d:f5:95:ce:0d:a7:82:ba:7c:8f:2a:17:1b:c8:c0:b7:
2e:b7:7b:de:02:06:7b:9e:33:bf:e6:6a:d4:64:97:c5:9e:bb:
e8:70:e2:08:1a:88:f6:e9:b7:6e:66:69:95:e5:41:90:72:d1:
98:5e:39:b0:21:bd:fb:07:37:df:ad:d8:79:d5:f0:b4:57:99:
97:e1:a8:5a:0b:39:9d:41:d3:5a:bb:0c:09:da:22:2a:be:2e:
02:d2:8d:cb:cf:fd:69:50:bf:c2:bd:88:d3:80:36:6d:9c:43:
e5:9f:e5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:18:16 2024 by rpki-client on console-ams.rpki-client.org