Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8B35A56C47711EFA67CC16F762E951A.roa
File: C8B35A56C47711EFA67CC16F762E951A.roa (raw, json)
Hash identifier: ZH/xOTOFZtVGCOSRzkR3od2HsRV44j633Wrceq3dOBk=
Subject key identifier: A8:CA:1C:54:A3:3B:7F:AF:B1:1A:91:57:DE:A4:9E:89:96:0A:F5:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012AD2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8B35A56C47711EFA67CC16F762E951A.roa
Signing time: Fri 27 Dec 2024 17:27:02 +0000
ROA not before: Fri 27 Dec 2024 17:26:58 +0000
ROA not after: Tue 04 Mar 2025 17:26:58 +0000
asID: 136907
IP address blocks: 154.93.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76498 (0x12ad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 17:26:58 2024 GMT
Not After : Mar 4 17:26:58 2025 GMT
Subject: CN=676ee366-c51e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:18:b9:82:6a:cb:75:0d:ed:47:83:c1:89:0a:
59:7c:e4:0f:cf:a1:22:ec:e6:f9:bb:3b:a9:e0:34:
c0:ee:c7:75:4c:93:09:80:2d:62:5f:bb:86:3c:a6:
8d:0d:1b:dc:5f:31:fc:90:3b:b9:36:f0:e5:72:5a:
3a:d7:db:d8:7a:51:24:7c:55:08:aa:fc:07:f0:ed:
23:f8:67:f0:9a:3d:b3:19:d0:a9:0e:5b:1e:ff:de:
b6:31:fe:88:d7:9c:f9:23:d2:b3:ea:f9:a8:66:c0:
a1:cd:4b:3e:cc:cc:b2:7d:8d:ed:44:ea:92:3a:99:
37:b7:90:29:e8:a0:fe:fd:4b:dd:fe:c2:c9:ce:b9:
17:0e:1b:97:bf:bb:03:d7:fb:da:b1:36:e8:bf:af:
48:5c:92:41:f5:bf:89:27:fe:6a:d4:14:43:78:e8:
91:d7:91:8a:a9:57:ba:d4:f1:34:bb:b7:7f:1c:05:
84:5d:29:14:c4:1f:d7:1e:ca:fe:60:48:ac:5b:a4:
e0:cb:88:fe:59:42:04:56:81:77:d1:22:6b:9a:0d:
f0:13:56:1e:1a:70:ec:e3:6e:88:ae:79:6c:8a:59:
cb:5a:b9:f2:8b:d5:44:f6:04:0c:f0:4f:41:4a:9f:
45:81:3f:fb:13:a7:de:67:72:e3:f9:42:c7:c1:f8:
06:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CA:1C:54:A3:3B:7F:AF:B1:1A:91:57:DE:A4:9E:89:96:0A:F5:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8B35A56C47711EFA67CC16F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
06:a5:98:6a:38:0e:c0:a7:a7:a1:95:a5:52:db:1c:dc:4b:11:
c0:41:3b:a3:f0:19:14:7b:c2:7c:ef:b3:14:f4:25:08:f8:aa:
90:91:98:28:e1:ee:6b:77:0e:9b:a0:2d:d1:72:ea:6c:e3:87:
89:f8:60:f9:f7:a2:6a:2e:d3:6f:88:75:24:49:2e:4d:ee:b1:
69:90:fd:f0:aa:5e:05:99:c5:ee:8f:b2:ed:ee:e4:1e:fb:d4:
80:13:c7:45:e1:77:63:71:dc:58:b9:74:9d:19:af:95:ed:7f:
09:47:91:22:12:98:3e:2d:d8:77:95:57:bf:fc:2b:20:56:8b:
62:ff:62:52:f9:4b:d7:e9:73:c7:86:10:a8:3a:af:28:79:0b:
27:15:e8:0e:fd:69:90:a7:bc:4f:7a:28:83:de:c2:d5:5a:76:
75:36:5c:49:f5:66:90:f6:41:b3:36:dc:66:b9:f5:65:ef:4e:
45:fb:24:25:6a:d1:87:5c:ec:65:f4:a0:9e:e5:a2:a9:c2:86:
59:a3:04:ab:d1:e0:a5:e0:2e:44:b2:63:8e:3e:7c:51:4a:24:
5c:24:15:2e:b8:9d:a6:5a:70:b1:a0:e9:42:38:ce:5f:58:96:
2c:f9:db:6d:5e:4b:ed:7d:49:34:1b:ac:fb:41:55:4e:ac:1b:
58:20:a0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:40:29 2025 by rpki-client