Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C60DF200A9AD11EF98E46786762E951A.roa
File: C60DF200A9AD11EF98E46786762E951A.roa (raw, json)
Hash identifier: mZomHGE+0ejr3GetbnsyGpv3/tR7rJcsAyZFm91OHaI=
Subject key identifier: BE:0C:4F:92:5F:FC:20:90:18:7F:AA:5D:1F:E7:EE:26:EF:6B:73:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011188
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C60DF200A9AD11EF98E46786762E951A.roa
Signing time: Sat 23 Nov 2024 15:15:29 +0000
ROA not before: Sat 23 Nov 2024 15:15:25 +0000
ROA not after: Wed 25 Dec 2024 15:15:25 +0000
asID: 135983
IP address blocks: 154.200.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70024 (0x11188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 15:15:25 2024 GMT
Not After : Dec 25 15:15:25 2024 GMT
Subject: CN=6741f191-f33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b9:17:47:a3:a2:94:f7:38:f5:ae:53:22:ca:
8a:8d:6b:28:11:3b:4d:2e:fe:f9:75:44:91:b4:10:
3b:8b:e0:ba:b4:49:9b:3a:43:ec:55:6d:84:45:08:
1a:cf:3b:e8:bc:6b:4b:4d:c4:23:e2:9d:82:2d:bc:
25:94:b2:3f:f2:4c:91:ac:bf:13:d2:94:f0:af:02:
49:82:bf:51:a1:8f:89:49:a4:1f:c8:1a:2e:c4:c6:
77:fa:7f:61:a4:54:79:06:51:6f:42:85:9c:b7:49:
b4:01:ec:65:a5:63:90:01:34:a6:17:fd:41:fe:a3:
02:cf:0e:89:58:dc:c7:d7:69:37:58:fa:3d:23:5c:
5e:68:9c:6f:15:46:c3:25:15:34:05:a3:0e:d4:22:
ee:97:be:89:26:33:50:8f:f6:c2:f2:91:91:98:ca:
22:ae:0d:bc:a7:b0:de:45:10:71:0b:8c:8d:74:24:
99:7f:0c:e1:81:2f:18:99:1d:8e:0d:d0:45:48:1a:
31:b9:e5:a7:fd:be:33:68:a9:1f:77:25:c6:13:54:
e4:c3:bf:4e:9f:7e:ae:3b:ad:31:b4:ad:2a:5e:58:
2b:8b:67:16:82:8f:4f:d8:e9:05:60:c8:9c:c0:f2:
b2:2b:ac:a7:ca:67:42:d7:99:f0:8e:e1:16:82:3c:
6c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0C:4F:92:5F:FC:20:90:18:7F:AA:5D:1F:E7:EE:26:EF:6B:73:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C60DF200A9AD11EF98E46786762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.36.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:cb:a9:48:95:e5:44:41:ba:35:d3:4c:3a:0d:72:e6:b2:71:
c6:d6:c0:de:da:c9:66:25:6a:53:a0:7f:08:c9:cd:73:a3:29:
c7:52:eb:b1:2c:02:64:6d:22:74:df:dd:c6:0b:aa:f1:4e:86:
e7:e9:6f:ae:9b:bc:f3:e8:f2:0c:8b:78:c3:ba:ac:ef:ff:57:
9d:29:d3:eb:94:47:dd:ae:08:3c:14:17:74:05:f2:5f:7d:8e:
44:7b:7f:e1:8c:c8:89:19:0a:3b:88:71:53:5c:a6:8b:8b:f8:
b9:f6:f7:fe:8f:fe:ae:6e:ef:29:00:7d:6e:28:54:58:24:a2:
29:e6:37:27:9f:5a:96:28:40:46:1b:16:ca:d2:02:63:a9:43:
22:1c:5c:8c:6f:b1:5d:4a:8a:cc:84:81:68:c7:e9:14:9c:c4:
49:3d:0f:6c:78:9c:8a:a4:56:ef:50:2e:07:84:1d:bb:28:eb:
7c:35:af:e5:a6:6b:1e:d5:d6:8f:33:20:e2:3c:aa:77:86:40:
45:6e:16:20:da:fc:b1:67:24:d6:7e:95:d2:35:70:b0:fc:c6:
61:bf:e7:d3:67:5c:7f:32:f1:4b:55:f2:b7:b6:3a:15:6d:43:
a7:93:63:f8:cb:ce:f2:53:8a:69:81:f9:3a:39:a2:2f:e3:c4:
8c:05:30:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:46 2024 by rpki-client on console-fra.rpki-client.org