Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE75A5D292B511EF95D5B6B5762E951A.roa
File: CE75A5D292B511EF95D5B6B5762E951A.roa (raw, json)
Hash identifier: U0EHfrIDUOIybG8Ce+tBxQQZkqntLb817X28XZjtWzM=
Subject key identifier: D8:F9:AD:65:AB:35:92:9E:13:74:3A:D7:35:DE:47:38:8C:E7:E3:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101FA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE75A5D292B511EF95D5B6B5762E951A.roa
Signing time: Fri 25 Oct 2024 09:45:02 +0000
ROA not before: Fri 25 Oct 2024 09:44:58 +0000
ROA not after: Sun 01 Dec 2024 09:44:58 +0000
asID: 202656
IP address blocks: 154.221.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66042 (0x101fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:44:58 2024 GMT
Not After : Dec 1 09:44:58 2024 GMT
Subject: CN=671b689e-5ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1e:c4:c0:4f:c7:45:da:4c:14:d5:f5:bc:fb:
78:21:c5:21:d7:7c:31:74:59:5f:f3:49:29:8b:10:
f3:6e:30:c4:00:cf:8a:14:75:97:a2:76:4e:06:ce:
e7:c9:31:1c:c4:1b:2d:8a:ec:81:ac:b6:f2:e9:92:
96:5a:6d:f3:de:33:03:bb:24:14:02:f0:98:2c:54:
7e:6a:60:9b:7b:5c:77:93:74:23:d6:8e:36:0d:97:
94:3b:97:4f:61:57:f9:8c:bb:60:a1:13:a9:d0:97:
59:09:0b:1e:53:d7:51:68:10:60:0e:47:93:ed:52:
43:33:89:d5:73:a7:f0:f4:73:49:32:3b:10:9c:0c:
d8:2c:41:a6:c9:cc:cc:f3:5d:dc:d6:cc:55:17:e2:
50:be:7d:f6:b0:0f:21:92:51:f0:d0:29:bf:44:ca:
7d:ef:67:f0:c9:43:e5:44:d6:c9:3c:c0:51:26:09:
93:06:40:f7:70:02:12:af:5b:39:e5:89:8d:62:79:
51:b3:1b:41:aa:66:66:62:d6:e5:10:f9:64:11:b8:
4d:8b:f0:b8:cf:4f:7a:46:0c:86:4c:cf:3d:b9:ca:
96:54:70:d2:19:b3:c0:e5:ce:e8:01:71:35:e6:1f:
9c:9c:8a:52:9d:e9:21:e8:8e:ef:34:dd:7e:2e:53:
2f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F9:AD:65:AB:35:92:9E:13:74:3A:D7:35:DE:47:38:8C:E7:E3:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CE75A5D292B511EF95D5B6B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.56.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:9a:73:4d:b3:12:52:fe:21:8a:5a:a3:d6:27:72:e6:77:48:
70:c9:b2:f0:ce:8c:df:ed:45:1f:bb:68:cf:91:a0:1a:5d:dc:
a4:29:d2:0c:49:d9:84:77:95:da:9e:4f:6b:58:ea:19:2b:9f:
61:d8:3d:d6:f2:1c:02:38:a4:e3:09:ad:47:79:9c:8f:38:60:
92:19:06:12:79:b2:89:85:23:7a:34:2d:54:ba:5a:b2:9e:1d:
d7:07:dc:c2:94:9f:a1:83:9f:90:56:9d:8e:5b:98:94:4a:74:
f3:f3:45:2c:ea:1a:b9:d3:76:55:04:16:82:4a:72:61:ec:12:
2d:23:4e:f0:9f:a3:e1:37:08:93:1b:18:a4:7f:8f:2d:21:3e:
54:25:0d:4c:08:ed:b1:0e:7f:5b:d6:52:24:58:26:ee:72:01:
dd:62:77:37:0f:d5:88:a4:34:d3:4d:2c:75:49:bb:4a:12:11:
94:8f:0c:8e:2e:ae:0f:53:30:66:56:de:f4:e5:5d:77:08:3b:
1f:98:9d:07:0c:5f:cf:d9:07:9d:7d:0f:5a:f1:3d:04:fa:50:
2f:6b:f8:87:12:ae:13:1f:25:cd:d5:56:d6:2e:43:5c:f8:a6:
f7:58:f2:f4:84:b9:aa:89:41:43:f4:91:ae:e6:c1:da:85:99:
89:ee:3e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:36 2024 by rpki-client on console-ams.rpki-client.org