Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7E63D1E9B7811EF93CBFC72762E951A.roa
File: C7E63D1E9B7811EF93CBFC72762E951A.roa (raw, json)
Hash identifier: fGXetSCUXoeH7rvlUMXBEN5+QCNX9L/frlNzb4Uuiys=
Subject key identifier: 62:B1:F1:C0:92:F9:4B:5E:31:0E:43:5E:60:32:07:8E:C5:8A:D1:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7E63D1E9B7811EF93CBFC72762E951A.roa
Signing time: Tue 05 Nov 2024 13:20:52 +0000
ROA not before: Tue 05 Nov 2024 13:20:49 +0000
ROA not after: Mon 13 Jan 2025 13:20:49 +0000
asID: 7018
IP address blocks: 154.212.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67551 (0x107df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 13:20:49 2024 GMT
Not After : Jan 13 13:20:49 2025 GMT
Subject: CN=672a1bb4-626f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:89:07:7e:04:c6:fb:a8:94:c9:ac:ab:c9:
a6:3d:73:02:97:f7:40:32:77:d5:75:76:e0:ed:94:
11:df:e1:07:8b:80:1f:0e:99:78:50:a2:7a:57:f6:
32:19:cb:38:53:e7:1c:80:4b:78:f5:47:b0:9d:89:
cc:c9:30:2e:0d:f6:7f:d3:f2:29:0a:10:8b:45:13:
30:38:28:b6:36:16:3f:55:4d:0d:4b:06:70:97:96:
e6:fd:28:23:42:ae:88:85:22:87:bc:02:34:3d:d9:
25:2a:71:f8:b7:67:5b:7b:96:f9:e7:30:eb:ee:4c:
59:0e:55:d8:c5:3a:c6:61:67:00:5e:df:5a:90:0c:
ca:b6:be:fc:90:b1:04:eb:73:f5:bb:91:47:26:9d:
16:0d:80:a3:15:ec:31:8d:f9:ca:86:77:2f:24:e7:
4f:51:4e:45:ea:39:ba:4e:60:55:01:71:e2:9e:27:
3a:01:49:1c:4e:a9:f1:a7:ff:c5:c4:84:3d:69:cf:
1f:5c:15:67:ec:c4:7d:f6:99:36:a2:99:8a:ac:5e:
92:57:bc:a8:1f:7b:fb:d3:2d:89:5a:c7:f9:db:54:
b7:f9:77:d8:c2:ab:5c:ae:21:60:54:be:18:ae:b6:
03:98:a2:67:54:8f:48:5c:8c:3f:68:2e:e7:0d:4f:
63:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B1:F1:C0:92:F9:4B:5E:31:0E:43:5E:60:32:07:8E:C5:8A:D1:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7E63D1E9B7811EF93CBFC72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.26.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:60:84:16:1f:2e:8c:0e:b6:ad:36:dc:ab:95:24:e0:cc:e7:
23:01:b7:27:ce:8c:f7:a0:4f:db:ef:7f:1e:60:27:0f:28:18:
a9:b9:fc:eb:98:eb:a2:17:77:77:c6:ad:d5:19:70:4c:3a:2e:
ec:97:76:5f:10:60:eb:03:56:f8:9e:4f:4e:05:33:d8:ad:22:
da:d2:33:53:54:d6:46:65:42:a2:94:6d:93:0f:c6:ae:ab:24:
0c:b9:12:da:e2:64:80:76:e8:51:6f:74:72:62:4b:75:6e:9f:
b5:c7:39:b7:5f:3e:bc:51:cf:fc:07:7b:b8:36:ce:e6:56:1a:
c0:be:a1:c6:12:22:47:21:0d:6e:84:00:d3:49:94:6d:84:08:
18:05:20:da:08:7e:75:09:10:af:08:dc:80:b8:b8:34:cf:fa:
26:c6:e3:38:8f:f6:14:33:9c:69:1a:26:b2:3b:56:51:94:c2:
fc:f7:6c:e3:85:a4:0b:6c:31:2b:05:33:cb:c6:01:2d:d2:f1:
d7:d4:3e:f7:b6:0b:6e:28:67:0c:df:8a:ce:3c:dd:2b:6d:39:
eb:3e:2c:07:1e:b7:b4:91:d6:8f:68:d2:1c:58:af:86:b7:da:
67:dd:35:72:35:43:dc:fe:75:e3:9e:56:14:ac:c7:fb:fe:1c:
c7:40:29:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:24 2024 by rpki-client on console-fra.rpki-client.org