Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA17B5689EA811EF85D6CE83762E951A.roa
File: BA17B5689EA811EF85D6CE83762E951A.roa (raw, json)
Hash identifier: ryiFS1puNNHG75Prqd+UoWybTPplh+uUYoi9ckDQZzw=
Subject key identifier: 67:F3:B4:DF:3A:16:A6:E5:0C:64:AE:7E:92:98:BA:43:5A:DC:7C:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010A01
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA17B5689EA811EF85D6CE83762E951A.roa
Signing time: Sat 09 Nov 2024 14:41:39 +0000
ROA not before: Sat 09 Nov 2024 14:41:35 +0000
ROA not after: Thu 12 Dec 2024 14:41:35 +0000
asID: 395793
IP address blocks: 154.91.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68097 (0x10a01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 14:41:35 2024 GMT
Not After : Dec 12 14:41:35 2024 GMT
Subject: CN=672f74a2-c5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ec:d5:bc:1c:f0:f1:4a:d4:2e:82:b2:f5:48:
87:da:d9:35:0f:a0:83:a1:b7:c1:7a:7b:ef:6a:27:
ff:53:4b:f3:3e:1e:1c:24:3a:a4:b7:da:bc:3c:d5:
5b:94:7d:62:f1:42:28:25:2c:69:31:8b:5e:fb:02:
ba:53:91:8b:74:a9:78:91:6e:0e:3b:5b:4c:16:b8:
5d:12:0f:a1:e1:f7:b0:77:64:eb:ca:c1:db:3a:40:
74:6a:48:aa:91:a9:ed:85:22:9b:f1:47:d7:70:1d:
eb:50:62:40:0e:36:27:34:7b:fc:ee:31:c6:80:60:
b0:f2:17:fe:9b:ce:ce:96:7f:a6:0a:62:3c:8e:10:
cb:bb:81:b9:7d:05:ab:17:9a:d6:18:2b:14:81:16:
fc:56:5c:9c:7d:5a:f6:f6:32:92:34:10:5c:2d:c7:
b0:9d:9a:5e:7f:71:db:4c:1d:e6:64:41:92:b5:84:
74:29:5e:ad:5c:65:50:92:9a:68:22:17:55:92:2c:
3f:3b:bc:77:b0:0e:3e:3e:0e:44:cb:62:cf:2e:e7:
33:30:19:c2:49:a6:c6:77:91:42:ad:83:5b:bc:e4:
1b:1a:9d:a5:08:b4:a9:a9:4a:73:19:1a:8b:b5:57:
3a:22:aa:b4:20:37:48:28:3d:a2:33:0f:77:c8:54:
21:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F3:B4:DF:3A:16:A6:E5:0C:64:AE:7E:92:98:BA:43:5A:DC:7C:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA17B5689EA811EF85D6CE83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.155.0/24
Signature Algorithm: sha256WithRSAEncryption
00:09:9c:da:a1:67:f0:8c:39:b3:94:30:1e:4b:e4:03:f7:43:
00:bf:b7:44:ce:9b:1d:82:c0:00:50:87:f2:17:cd:a8:a7:38:
16:33:b9:ce:b1:04:87:9f:22:2e:6c:ea:a9:f5:28:ae:5c:66:
1c:42:97:af:80:00:2f:03:bf:80:d5:ca:d0:80:8e:4c:b2:42:
5a:8f:f6:d0:4f:88:1f:57:23:f8:ce:b5:87:3e:87:a2:d0:a3:
be:20:92:ac:87:aa:19:a7:a3:a9:a1:58:be:84:01:7e:6e:24:
4f:2e:aa:6a:87:a2:c4:45:80:e9:6e:80:e9:52:94:27:34:17:
20:dd:cf:7d:7c:12:e8:ad:75:8b:be:6b:bb:a1:56:08:ea:2f:
3c:35:b7:f0:f4:18:dd:a9:cc:fb:e0:28:e5:52:14:9e:d2:90:
d2:e0:3c:aa:09:84:e1:d7:d4:b3:eb:f4:45:8b:66:aa:23:d2:
83:5b:3e:97:d2:47:cb:81:10:75:a7:b8:51:65:7a:10:41:f0:
44:34:0c:57:27:10:11:72:82:d1:04:cd:53:89:de:49:97:28:
ab:54:11:ad:0f:dc:15:07:64:94:bf:4b:e4:00:0b:58:7c:9a:
30:b1:4c:07:14:61:51:d4:93:31:bc:e7:80:73:e5:de:ad:bf:
9d:5d:90:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:22 2024 by rpki-client on console-fra.rpki-client.org