Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF210ABCA92211EF8D450895762E951A.roa
File: BF210ABCA92211EF8D450895762E951A.roa (raw, json)
Hash identifier: X6h93dYTMv2nzCN5cXevXEm19AAC7LbrEueIFM+I+2w=
Subject key identifier: 3E:01:3E:AC:0D:D8:F1:C0:1E:08:AE:76:27:DF:DC:41:65:01:1F:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01116F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF210ABCA92211EF8D450895762E951A.roa
Signing time: Fri 22 Nov 2024 22:40:17 +0000
ROA not before: Fri 22 Nov 2024 22:40:14 +0000
ROA not after: Wed 04 Dec 2024 22:40:14 +0000
asID: 136969
IP address blocks: 154.204.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69999 (0x1116f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 22:40:14 2024 GMT
Not After : Dec 4 22:40:14 2024 GMT
Subject: CN=67410851-124f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:0f:a2:47:37:52:a0:a8:4a:7e:25:e8:18:9b:
dd:da:18:d0:31:fd:a4:3e:cd:8d:3b:2e:ea:31:05:
45:1b:b0:ea:97:67:97:4f:66:cf:ac:df:fe:37:ed:
5c:a9:eb:29:23:47:e7:6b:de:47:08:08:05:d1:f2:
51:80:d9:39:e4:e9:0c:64:e3:04:99:bc:2b:81:61:
cc:38:b3:22:55:3b:f4:f5:da:f6:9d:0d:f4:6f:93:
6d:a6:35:63:71:db:87:be:6b:54:f4:14:3b:79:fc:
06:5a:99:d0:f8:6f:21:7c:9e:a8:99:aa:c3:40:57:
7f:e5:5e:fa:0b:c8:d2:b5:3b:eb:69:d1:bd:5b:22:
a3:04:45:c0:ed:a0:b4:aa:c8:df:85:9d:ee:f7:dd:
fb:07:ee:d7:b1:1c:81:72:61:4c:d2:75:10:aa:b3:
87:04:44:ba:e4:76:a3:ec:5a:7e:af:73:41:bb:40:
91:9b:48:2e:9e:ce:a5:19:3d:e4:44:b8:69:c3:9d:
36:23:0f:6e:2e:cc:56:87:07:83:b4:89:53:37:8a:
a5:19:c7:f1:6b:1a:26:ad:9a:94:ee:a9:8e:57:89:
86:47:28:7d:c2:96:3e:d4:29:2b:a7:2c:d8:38:80:
bc:ec:f2:65:ac:02:3b:80:9a:f7:c8:2c:e2:1f:c2:
42:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:01:3E:AC:0D:D8:F1:C0:1E:08:AE:76:27:DF:DC:41:65:01:1F:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF210ABCA92211EF8D450895762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.64.0/18
Signature Algorithm: sha256WithRSAEncryption
95:94:e7:32:7a:1d:28:f3:62:07:a4:32:d0:fe:df:32:47:69:
e5:cd:44:87:9d:ac:8e:39:28:cd:95:e1:3b:e2:d9:3b:f1:fe:
ee:92:50:e1:cd:26:e6:bb:66:e4:16:f9:c8:53:6b:9e:03:41:
d2:34:70:ee:ad:0e:f6:a7:ef:38:41:92:6f:fa:54:91:99:05:
f7:7e:75:a3:e8:e2:5f:d8:b7:a3:d7:d6:a4:e5:69:4a:2f:20:
a0:41:ad:d1:54:eb:ee:f0:a6:73:7c:12:f3:ba:f1:9f:3b:fa:
20:06:57:21:88:90:10:18:78:48:ec:9c:fb:23:a8:44:6b:29:
8e:0e:bc:d0:11:e2:08:0c:57:cf:cb:f0:f9:5f:c6:1c:e4:f7:
68:b7:d0:40:a4:86:15:78:a1:d2:04:66:2a:0a:c1:9a:7f:d2:
69:fa:df:09:c9:86:44:15:9e:75:50:b1:5c:97:f9:0e:de:df:
06:78:f8:72:da:57:86:83:76:3f:70:7c:b8:ec:4f:d0:98:61:
80:25:a3:51:47:89:aa:86:1d:75:3b:71:0c:fa:d3:e4:b1:6b:
7b:74:67:c8:80:c1:b4:96:8f:ba:58:b8:51:de:f3:60:70:a9:
ed:fe:25:e5:92:4e:a4:ab:95:be:ee:4c:91:db:ac:b3:5a:47:
ee:59:48:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:45 2024 by rpki-client on console-fra.rpki-client.org