Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C380E61CA27011EFB3182679762E951A.roa
File: C380E61CA27011EFB3182679762E951A.roa (raw, json)
Hash identifier: 5ZuZH8aTxu28cqUdWjnC3v1Gv84G8gsdkAvwx6heo9U=
Subject key identifier: CE:BA:FF:A3:04:49:28:CD:BF:E2:3C:96:C4:CE:47:76:5A:D5:DB:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C380E61CA27011EFB3182679762E951A.roa
Signing time: Thu 14 Nov 2024 10:11:07 +0000
ROA not before: Thu 14 Nov 2024 10:11:04 +0000
ROA not after: Sun 24 Nov 2024 10:11:04 +0000
asID: 151800
IP address blocks: 154.197.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68888 (0x10d18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:11:04 2024 GMT
Not After : Nov 24 10:11:04 2024 GMT
Subject: CN=6735ccbb-8ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a2:18:10:c5:d7:64:d5:88:de:2b:00:a4:0c:
05:e1:6f:da:de:07:1c:a3:79:38:0f:40:83:fe:f2:
01:bb:47:18:e4:ed:ad:c2:4e:38:d6:fa:e2:bc:d9:
dd:20:ed:cc:9a:25:dd:87:ba:98:5c:66:d0:ce:7d:
0f:f7:82:5f:5f:8d:99:f2:df:91:95:22:85:45:21:
50:53:a7:c7:13:39:8c:d3:e8:32:b9:c5:6d:ee:e6:
1c:f9:f6:73:60:a9:be:e1:0d:ef:01:72:97:dd:65:
91:b8:35:b7:cb:36:0a:4d:4c:40:ab:f7:20:d9:ef:
72:0a:c8:dd:7e:0b:f5:4a:ae:47:9f:53:e3:93:82:
35:bc:7f:d1:e6:c3:d7:82:a4:e1:bd:e5:8f:da:10:
6a:1b:af:f4:83:e3:a8:46:32:21:41:55:04:69:fd:
9c:a2:21:87:b1:c6:fd:62:5f:cb:7b:0d:d5:c8:41:
ad:0e:09:29:9c:d6:87:23:40:f7:28:ad:b6:2a:66:
7d:da:94:a6:0c:89:af:a0:9c:1b:76:bb:25:df:8b:
a1:71:cd:48:a8:bf:8e:b4:65:e8:43:fb:3f:8d:3f:
b0:14:61:b0:5e:37:dd:f6:9e:41:c7:45:fd:1d:a6:
d8:b3:06:36:f3:ae:0e:65:02:d2:cc:24:31:99:eb:
e7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:BA:FF:A3:04:49:28:CD:BF:E2:3C:96:C4:CE:47:76:5A:D5:DB:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C380E61CA27011EFB3182679762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.94.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:e9:74:fb:e8:ad:76:fe:ad:9b:95:9b:a1:97:4b:84:01:68:
4b:10:97:a4:03:32:d7:90:be:76:33:6c:de:dd:a0:23:73:54:
22:a3:d5:7a:0b:4f:1a:18:16:75:5c:41:6a:a5:24:67:33:ae:
5c:0e:e0:34:a3:84:44:01:3c:f2:42:ff:ea:ee:08:50:5f:b8:
c1:14:70:7e:f7:a6:5e:c1:0e:6b:ca:81:bd:69:85:3d:59:c0:
a8:73:2b:33:98:57:d9:7d:e6:33:ba:4b:bc:0f:e9:90:cb:4e:
87:ac:92:d1:e0:55:3d:0b:39:66:40:fc:73:1f:91:14:25:1c:
98:92:1f:25:9e:12:be:dd:74:c6:47:12:8f:c8:fe:d0:d9:c7:
58:e3:6b:66:f5:0f:96:97:b7:5b:c1:e3:6e:c0:dd:19:74:19:
e1:4e:8d:b6:a7:25:30:55:af:f0:42:47:30:00:99:d4:31:cf:
93:42:3c:c7:75:d9:12:21:ff:b8:f7:95:f4:31:0c:fb:5d:9f:
6a:12:84:34:c0:2b:96:ef:63:da:73:1a:57:c9:d0:75:23:cb:
61:d1:37:bb:f4:ca:de:4e:7d:ef:9a:ee:24:16:4d:8a:ae:47:
ba:cb:a0:2b:20:da:e2:76:f1:d9:79:75:cf:82:2f:d7:06:e6:
07:07:9d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:24 2024 by rpki-client on console-fra.rpki-client.org