Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF88369C7B2211EF98CD15A9762E951A.roa
File: CF88369C7B2211EF98CD15A9762E951A.roa (raw, json)
Hash identifier: wMP3xGMfgukxWrHmLoeEiPbaItpVueIZh+xAkkbax0Q=
Subject key identifier: 45:2F:45:56:8A:DB:0E:BD:30:96:FD:9C:47:92:B1:E4:FB:78:18:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F366
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF88369C7B2211EF98CD15A9762E951A.roa
Signing time: Wed 25 Sep 2024 09:44:51 +0000
ROA not before: Wed 25 Sep 2024 09:44:48 +0000
ROA not after: Tue 30 Sep 2025 09:44:48 +0000
asID: 209242
IP address blocks: 154.84.16.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62310 (0xf366)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:44:48 2024 GMT
Not After : Sep 30 09:44:48 2025 GMT
Subject: CN=66f3db93-4dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c6:74:b6:5c:c3:ac:96:5a:ee:e8:e5:49:7a:
d8:84:20:9c:2f:5a:bd:11:b3:22:c7:d4:f1:3f:0f:
15:92:57:07:eb:0b:2f:c7:b3:ba:13:44:b2:a3:6a:
6e:81:35:21:09:74:cb:8c:2a:2f:fa:b8:23:38:0c:
90:8f:c1:8e:8a:71:0d:40:1e:e8:64:db:2d:81:69:
4f:88:7a:f5:9c:6c:a8:b5:0f:c0:a7:e6:47:b4:d3:
f6:28:ca:02:74:33:b7:32:22:b8:c0:bf:fb:4f:bd:
d2:1c:c0:ea:65:9c:4c:da:63:15:7b:e6:0b:c0:af:
2a:d7:cc:0f:f9:3f:8d:68:ba:b8:49:09:3f:30:84:
f8:d7:8d:b2:39:f7:bb:73:73:f3:ef:41:42:e7:d7:
66:96:7b:8f:f8:0f:2a:05:54:5e:73:3a:a1:b8:49:
1e:ea:0a:7d:3b:1f:f8:ed:4a:56:88:c0:e6:4b:bf:
6b:70:19:b1:14:f8:b6:d9:59:61:81:33:3c:58:db:
1f:1e:14:99:33:c6:92:ee:d9:30:7b:0e:68:c5:6c:
84:77:6c:5e:2d:a4:25:df:cd:2b:7a:9d:e5:c9:f4:
1c:f2:e4:00:65:bc:71:d0:34:d8:dd:cb:35:75:f5:
ba:f7:e7:5e:18:e9:dd:aa:f5:b1:a8:8a:99:a8:d0:
e4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2F:45:56:8A:DB:0E:BD:30:96:FD:9C:47:92:B1:E4:FB:78:18:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF88369C7B2211EF98CD15A9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.16.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:a1:64:59:e9:a2:f9:98:72:f0:01:74:19:97:6b:f8:27:de:
98:56:c7:9b:f2:8a:f1:fb:16:bc:ec:ba:d5:fd:6e:ed:96:fd:
c1:a8:b7:81:e6:33:2d:b5:d2:88:e9:04:bc:6a:59:ad:51:22:
9e:9c:2e:c9:2e:c0:15:4d:e1:61:a4:9d:a0:9f:29:00:b4:db:
a7:7a:cb:b1:d4:ab:a0:93:e9:d8:85:f9:4a:0f:88:11:e1:ef:
05:91:b0:e3:4d:fb:f3:af:99:58:1f:3a:62:86:91:81:de:e3:
d4:60:9d:2a:7e:0f:1d:f9:9c:c0:8a:ac:06:6f:34:0f:e9:f1:
db:c7:be:5b:68:e0:3f:67:b4:fc:19:bb:81:52:7f:e7:fb:c0:
58:d6:4c:f0:05:c1:26:05:a6:61:4e:0f:07:e9:7b:2a:9f:ad:
df:5f:d9:65:86:16:78:a0:8f:01:b3:7b:6d:f3:aa:6b:15:d5:
ea:1a:f1:34:10:f2:6d:30:c2:fe:e3:da:48:52:d6:2e:00:43:
f7:44:30:26:67:d4:af:1f:ff:45:96:52:b4:3c:37:7e:d2:53:
9e:6c:bd:1c:a9:a7:87:69:ac:e2:d7:39:c3:17:2f:b9:d6:46:
9b:a3:ae:b3:f0:54:b9:4d:25:8d:1a:51:4d:1d:5e:d9:47:e2:
95:cc:db:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:28 2024 by rpki-client on console-ams.rpki-client.org