Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D19C7E449AAC11EF80DB0E6C762E951A.roa
File: D19C7E449AAC11EF80DB0E6C762E951A.roa (raw, json)
Hash identifier: twWX4tJKGG1wXz75PiBfnswE89Y8+ygqbCMM8TNLxpM=
Subject key identifier: DF:53:6E:6B:19:16:20:48:AF:11:86:F8:90:5A:D6:DA:92:2D:74:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0106B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D19C7E449AAC11EF80DB0E6C762E951A.roa
Signing time: Mon 04 Nov 2024 13:00:51 +0000
ROA not before: Mon 04 Nov 2024 13:00:48 +0000
ROA not after: Tue 03 Dec 2024 13:00:48 +0000
asID: 139646
IP address blocks: 154.204.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67250 (0x106b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 13:00:48 2024 GMT
Not After : Dec 3 13:00:48 2024 GMT
Subject: CN=6728c583-f20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:85:56:05:d6:6b:b2:1f:6c:05:74:4e:d7:eb:
2b:7d:49:74:0c:fb:c0:e1:ca:bc:aa:39:f6:23:71:
b1:41:ec:e0:ec:bf:c5:42:62:05:0c:d1:aa:4a:48:
68:2d:9c:f3:ca:97:73:95:4a:45:83:dd:ab:9e:72:
16:e5:29:63:40:97:4c:a4:f5:c7:c6:63:4a:f8:4c:
29:de:26:4e:7a:09:0c:96:7b:87:2e:97:f0:89:02:
c2:33:09:e8:39:30:56:c8:1a:19:8b:5a:8a:73:72:
d5:c0:0d:57:e9:51:33:c6:57:30:ea:3d:d4:1f:89:
43:ed:ea:82:d4:33:b7:48:59:8d:6f:a9:b4:81:cc:
7b:f3:9d:ee:ba:7f:30:7e:ff:1c:8b:de:6c:f9:2b:
99:3d:98:72:9d:14:f7:ef:b2:b8:c0:68:81:50:b0:
28:6e:39:7e:6d:54:09:5d:09:b7:66:11:d0:fb:02:
8f:85:34:09:eb:f5:a8:32:05:6c:ff:12:f0:0c:ad:
c8:39:37:63:b6:fc:08:4a:7f:96:bd:17:67:7c:c0:
27:92:96:3b:39:ac:fd:e2:ca:71:fa:fe:4c:81:db:
ac:45:d4:1d:ce:cc:11:fa:e1:85:f7:54:74:35:6f:
0f:98:1d:f5:56:23:83:c6:02:2c:95:eb:c4:e9:82:
7d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:53:6E:6B:19:16:20:48:AF:11:86:F8:90:5A:D6:DA:92:2D:74:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D19C7E449AAC11EF80DB0E6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.0.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:98:a2:bf:4a:13:c5:82:64:67:ce:e4:03:87:d1:cd:95:76:
5d:75:03:ed:c2:f2:58:1b:e2:06:45:f5:94:9b:19:33:93:a7:
b4:ca:65:ab:38:5b:58:41:13:2d:b4:bb:a7:22:7a:21:e1:39:
64:4a:3c:86:be:47:e4:0b:1d:77:dc:f7:75:5f:7b:d7:82:c5:
d2:f2:bf:82:85:e1:cf:c9:40:08:81:1d:e2:c8:89:95:66:72:
94:0e:ab:53:6f:8f:9c:34:fc:13:36:84:f5:d9:69:d0:53:75:
32:c8:6b:c9:4c:c9:8d:93:c4:81:31:54:bb:e0:87:9e:c2:c7:
b4:62:f7:37:f7:c7:e1:19:7e:b5:67:55:fc:89:05:97:8c:b9:
b8:8c:e4:94:b6:51:88:2d:c8:2e:15:31:ae:46:cc:f5:2a:6f:
ab:3b:d8:9a:d0:80:b7:ba:3c:b1:d6:6a:80:b5:33:e6:18:9c:
aa:7b:ca:b2:6b:58:7d:23:4d:e2:64:b2:f2:86:51:f3:30:c7:
ce:2e:e4:79:57:7f:e5:fe:e0:68:6b:50:52:be:91:d8:23:cf:
cc:6f:d8:4c:ab:8c:57:38:45:c3:09:24:a6:8e:83:a9:c2:2c:
00:d1:42:d0:50:8b:21:26:eb:79:85:25:b0:6a:37:5b:96:c1:
a1:8b:6f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org