Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A2363C985E11EFB2CBC35F762E951A.roa
File: C6A2363C985E11EFB2CBC35F762E951A.roa (raw, json)
Hash identifier: 0clxg3LMH8zA6igvDy8EcpkStgIvHIX5l6lOZDJq5Nw=
Subject key identifier: 40:29:C8:B6:E3:21:2F:A2:89:57:C4:43:71:56:BA:AC:3E:73:89:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104D5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A2363C985E11EFB2CBC35F762E951A.roa
Signing time: Fri 01 Nov 2024 14:37:10 +0000
ROA not before: Fri 01 Nov 2024 14:37:06 +0000
ROA not after: Tue 03 Dec 2024 14:37:06 +0000
asID: 203020
IP address blocks: 154.204.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66773 (0x104d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:37:06 2024 GMT
Not After : Dec 3 14:37:06 2024 GMT
Subject: CN=6724e796-303c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:6a:34:0a:0d:27:98:af:d9:1c:6a:56:76:
a0:2a:71:b3:93:3f:12:e6:3b:5e:a4:2b:e1:15:58:
34:f9:62:04:21:cc:3a:99:23:14:97:84:48:44:22:
be:ff:b2:30:be:76:96:b1:11:5a:d6:8c:98:e2:9f:
d8:8b:ec:56:53:7a:a2:9a:8a:5e:66:cd:39:8d:a2:
0b:d6:1d:d8:1e:e8:c6:8b:d2:0f:44:6f:db:f6:b1:
29:d4:f7:21:0b:68:c0:e2:4a:14:3e:90:e8:1e:c4:
ae:d2:75:47:fd:cc:67:9f:80:0a:44:70:85:3d:e9:
29:69:1b:ff:cc:1b:d4:f7:26:0e:10:8f:07:3a:c3:
0f:8b:5d:36:de:4b:f0:0f:d3:e7:fe:ec:fa:49:d5:
84:c5:7b:4b:0d:80:10:c1:8f:19:e4:f8:36:47:ae:
ed:2b:d2:70:97:6f:6f:58:fc:da:d3:01:90:46:a3:
eb:b5:5f:7b:ee:13:5e:26:1d:b3:bf:bf:31:27:4b:
55:f5:03:30:a4:b1:a0:f1:65:7b:f1:98:74:6c:cb:
2e:24:84:9e:f8:e0:db:9f:0c:4e:c5:49:87:0c:7d:
0d:fc:e3:b8:76:9a:12:f1:97:36:5c:32:8f:dc:5e:
7f:68:ee:f7:10:1a:6f:61:67:8c:8e:c0:60:59:4b:
db:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:29:C8:B6:E3:21:2F:A2:89:57:C4:43:71:56:BA:AC:3E:73:89:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A2363C985E11EFB2CBC35F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.37.0/24
Signature Algorithm: sha256WithRSAEncryption
04:9d:30:61:61:31:a8:8c:77:45:53:37:57:35:53:0f:5a:88:
05:13:9c:3f:3d:46:62:81:aa:7e:21:46:19:de:ec:3f:19:06:
21:bf:41:32:73:6c:23:4d:1d:c6:19:d4:59:7d:f6:d3:2f:c6:
d5:02:d3:d6:d4:7a:2f:37:1b:87:21:ca:4c:c2:d8:44:d0:49:
d2:a6:12:48:06:97:6d:a5:72:c6:b7:cb:ac:ce:55:82:92:d0:
27:28:5f:2d:92:1d:45:cf:1a:0c:c7:10:ea:ef:0c:b8:90:3c:
c5:89:69:40:b6:24:1b:fc:2b:3b:ac:07:4a:a9:9c:b5:d6:a1:
72:59:1f:ad:3c:3c:4c:fa:bf:7b:b7:4b:83:57:44:ea:a8:7f:
57:f5:fc:c6:77:d4:64:4e:78:3f:52:a6:17:91:79:4b:fe:26:
2c:b0:a1:ab:fe:8f:b4:c2:86:98:50:42:49:ec:db:11:9f:5a:
74:2c:ac:66:63:30:c0:17:e3:cc:f3:f0:dc:e5:ad:e4:cf:93:
a7:18:7f:b0:3f:bf:69:49:c9:83:f7:61:41:61:92:9f:f6:5c:
18:63:fd:65:e7:0e:af:32:36:cd:ba:11:31:7b:8b:f6:b9:9a:
ea:a8:54:7a:1e:a0:73:00:53:74:83:34:e0:5d:76:e3:46:89:
ab:f7:46:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:24 2024 by rpki-client on console-fra.rpki-client.org