Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDB15A0AB34211EEA0954765775412E6.roa
File: BDB15A0AB34211EEA0954765775412E6.roa (raw, json)
Hash identifier: YZcGOezBbDBO+e0UAly//nNdCCTUwhX+jS3W8gjM8v0=
Subject key identifier: 90:D3:D4:43:2E:A4:6A:16:49:E7:CE:B4:D3:9F:DE:6A:6F:6B:35:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7514
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDB15A0AB34211EEA0954765775412E6.roa
Signing time: Mon 15 Jan 2024 01:09:33 +0000
ROA not before: Mon 15 Jan 2024 01:09:29 +0000
ROA not after: Fri 13 Dec 2024 01:09:29 +0000
asID: 140227
IP address blocks: 154.205.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29972 (0x7514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:09:29 2024 GMT
Not After : Dec 13 01:09:29 2024 GMT
Subject: CN=65a485cd-34af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:aa:e4:34:8e:f7:c4:a7:1c:55:27:f9:f3:9e:
bd:04:8d:dd:fd:bc:f3:55:6e:31:77:7d:31:3d:90:
f6:9b:0c:75:1d:ab:dd:10:e2:3d:5b:c8:bb:8c:6f:
3c:11:70:4b:87:f8:ec:5e:6c:5a:54:43:04:07:ab:
31:7f:b3:20:0d:0a:65:ac:16:98:2c:89:19:f5:23:
12:ff:1c:da:91:3f:bf:14:4a:a1:e8:41:66:0c:f9:
19:8c:cc:37:ff:8c:54:e0:9a:ce:9f:03:0b:f3:79:
57:c8:17:b5:9e:92:ea:8b:ef:7e:80:7a:1d:c0:b2:
8d:f5:2d:39:f0:d5:85:64:0d:7a:1f:15:35:e5:04:
cb:68:d7:db:c9:26:7e:00:62:99:31:f2:28:cf:ee:
eb:3f:53:2a:cd:4d:e4:3c:bf:47:07:0a:32:ff:a0:
b9:e7:3c:27:df:28:74:b3:de:43:ee:e3:db:74:6b:
17:7c:ea:57:76:16:44:0e:8b:cf:4d:4e:9e:1a:8a:
5b:1b:e2:4d:77:57:cb:a3:e2:3c:d7:62:ba:c0:f9:
2c:e7:c8:8d:58:02:a0:e8:cb:86:0b:5a:d4:8e:2f:
e4:8f:34:87:6b:c4:e3:5e:28:96:d8:f2:91:4a:3a:
72:98:bd:f8:39:5f:9b:b8:ad:12:b9:c8:32:ea:f0:
3e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D3:D4:43:2E:A4:6A:16:49:E7:CE:B4:D3:9F:DE:6A:6F:6B:35:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDB15A0AB34211EEA0954765775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.208.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:a2:12:b0:67:95:32:51:31:41:31:66:e8:b0:bf:1e:fe:a5:
a9:90:f2:84:b6:cf:4a:19:99:34:2f:84:f4:92:9c:32:bb:63:
0b:96:a3:5b:5b:80:0a:3a:9a:53:be:1d:73:9c:1c:d9:92:9f:
ae:d8:0c:36:ff:66:15:39:a6:12:a8:30:48:94:a2:91:47:d9:
f9:7b:de:06:ff:fc:a3:fc:2e:f9:00:da:68:6f:cf:00:65:83:
b0:c1:e8:df:97:01:4d:77:04:79:48:6b:36:95:be:22:94:15:
f7:35:3e:1b:0f:9f:d9:b3:e2:17:07:4f:48:95:28:02:d8:c8:
f9:08:18:ee:86:bd:5c:2b:39:41:b4:8b:12:8d:0e:af:3a:39:
09:4b:4a:a4:59:ab:14:2c:d8:1e:7d:85:03:b0:cf:51:e6:0f:
36:df:29:2a:22:00:26:b2:44:e7:d5:2b:35:02:d7:ff:c9:5a:
f3:03:0f:c4:48:d6:2c:77:6b:26:07:10:1b:06:fd:10:36:1a:
00:d5:83:f1:fa:29:52:d4:90:72:75:bf:c4:93:c2:c0:b9:7a:
3a:41:2e:a3:fa:77:95:44:71:13:f8:bf:43:bf:29:cf:f2:da:
60:bb:ae:18:c4:f1:33:03:a2:ea:3d:81:5f:8b:a3:58:38:8a:
a3:35:3b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:25 2024 by rpki-client on console-ams.rpki-client.org