Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE5A509EA9C111EF9FCF6282762E951A.roa
File: BE5A509EA9C111EF9FCF6282762E951A.roa (raw, json)
Hash identifier: C5VMElhKc+cKr4yU40CVKeuO9GacmyqPUDjTXovMhpU=
Subject key identifier: 6D:F1:70:68:5C:C8:9F:FB:37:82:55:0C:14:8C:EE:56:C9:05:C6:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111C2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE5A509EA9C111EF9FCF6282762E951A.roa
Signing time: Sat 23 Nov 2024 17:38:26 +0000
ROA not before: Sat 23 Nov 2024 17:38:22 +0000
ROA not after: Mon 09 Dec 2024 17:38:22 +0000
asID: 5065
IP address blocks: 154.206.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70082 (0x111c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:38:22 2024 GMT
Not After : Dec 9 17:38:22 2024 GMT
Subject: CN=67421312-fe32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:55:c2:34:31:73:4e:35:39:7f:b6:1a:4f:86:
7d:c1:92:4a:30:a8:00:93:bb:c5:60:25:8d:32:f7:
df:0e:32:d8:cb:a7:8b:1c:0a:6a:8b:97:cb:da:0e:
8b:22:5f:98:45:da:a9:d7:10:b5:ab:c0:df:6e:b9:
5a:50:f3:b3:b9:d8:f2:62:b0:43:b6:c7:30:bb:08:
26:8a:c1:19:eb:65:f7:a1:26:1d:5f:5a:6d:84:dc:
25:cc:d0:29:9f:08:3d:6b:df:0a:87:17:20:5f:51:
9d:00:b1:0f:11:84:61:62:f6:09:ae:89:a8:71:4c:
c8:15:c5:45:d9:02:07:71:9c:2e:b4:a4:e3:2f:f2:
9a:f7:fe:04:92:d6:cf:68:81:ba:b6:c3:21:a0:f1:
d0:5e:63:08:d7:ca:a0:f4:d6:e6:29:1e:dc:a1:3f:
c7:25:81:5d:64:84:20:a6:0a:79:f9:56:ef:d4:89:
59:89:a8:18:f5:b4:5a:9b:7b:79:89:69:47:8e:6e:
cf:4a:37:46:86:7f:b0:b5:94:5e:4d:43:7b:36:62:
47:11:75:9c:b6:90:f1:0b:f9:5f:68:3d:e7:6b:d4:
18:66:9d:90:3a:80:c4:0d:24:bb:72:f4:1f:49:7c:
57:2b:d7:6f:83:5d:3a:3c:5e:a2:d0:a4:76:0d:96:
ae:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F1:70:68:5C:C8:9F:FB:37:82:55:0C:14:8C:EE:56:C9:05:C6:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE5A509EA9C111EF9FCF6282762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:a1:a9:57:c9:74:09:95:5f:de:1e:2a:47:d4:50:84:ce:cb:
0a:b2:8e:b9:aa:20:d2:c7:92:2d:ec:87:e9:6d:04:e3:69:f5:
51:a4:b0:74:f8:ad:e4:2f:b5:1e:5f:c6:4c:e0:20:49:bd:53:
72:77:e8:32:d6:66:ee:c0:0a:28:f6:d9:a9:5b:a7:0f:96:9d:
26:33:f0:d4:8b:59:d5:c0:01:72:62:ea:ac:db:e0:06:88:56:
25:be:72:c8:b7:6f:00:33:f4:a2:b2:2c:7d:f9:98:84:69:07:
24:70:26:85:52:48:6e:07:b1:b4:2e:08:68:35:2b:be:d3:49:
27:99:3e:10:3a:cf:46:28:26:f8:35:a2:e0:4f:30:5d:d1:b3:
dc:a9:99:9d:9e:ea:5a:9d:c4:65:b8:78:49:d1:bc:a0:35:f3:
1c:4f:1f:a4:05:df:ef:62:65:6c:64:14:ff:d6:63:cc:cc:28:
af:81:74:a4:c3:4b:13:5c:5f:2f:c7:e9:1d:44:96:1e:89:21:
45:e3:5f:bf:92:ce:39:64:3b:30:64:7d:1d:5b:a9:af:e9:7e:
f6:94:f4:42:24:69:3f:36:9c:83:00:a2:58:6e:01:5a:db:47:
ff:b5:70:7f:98:d9:2a:55:fa:3e:23:08:be:b0:10:d4:eb:7d:
82:70:c7:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:45 2024 by rpki-client on console-fra.rpki-client.org