Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3C741E69AA611EF97651647762E951A.roa
File: D3C741E69AA611EF97651647762E951A.roa (raw, json)
Hash identifier: VHNghCSyK3cSCZ1oFOk/tZ5Sm31AQX3Q6QmlS+sL2ls=
Subject key identifier: CC:C4:B6:03:3F:BC:10:A6:50:E0:06:BB:FA:E9:4B:D2:78:AD:A3:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010694
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3C741E69AA611EF97651647762E951A.roa
Signing time: Mon 04 Nov 2024 12:17:58 +0000
ROA not before: Mon 04 Nov 2024 12:17:54 +0000
ROA not after: Mon 09 Dec 2024 12:17:54 +0000
asID: 141883
IP address blocks: 154.216.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67220 (0x10694)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 12:17:54 2024 GMT
Not After : Dec 9 12:17:54 2024 GMT
Subject: CN=6728bb76-abb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b1:d2:58:83:4b:8f:2f:9b:c5:29:60:78:5a:
78:b3:7a:36:71:28:f6:79:f4:40:4e:02:80:7c:49:
40:bb:1d:02:6a:04:a3:55:9b:34:91:23:82:fd:dd:
63:57:29:ee:db:9a:8c:5a:80:ea:93:a7:36:9f:e3:
ac:0d:0b:57:55:cc:9f:a0:2a:1f:6c:4a:56:d9:8c:
5d:8d:98:93:db:18:4a:a2:85:23:a8:53:c2:07:0c:
57:04:9e:dd:3e:15:b3:10:78:5c:c7:fc:ea:9f:35:
c0:68:33:be:cb:79:cd:2f:aa:2f:07:b5:ca:1a:81:
8f:da:1c:69:62:f0:8c:f6:99:f7:29:16:eb:62:89:
47:5b:46:4f:6d:ae:75:08:18:1c:e5:26:67:c5:99:
c9:88:94:0b:48:29:66:d1:1b:31:b6:f5:da:0a:c8:
4f:3a:fe:2e:96:29:21:ce:18:34:2a:a3:12:01:a1:
d8:80:0c:e8:01:28:a1:09:5b:1b:ed:d5:da:52:71:
54:4e:84:18:a4:fd:47:3c:ee:65:f2:98:06:6e:f0:
98:f4:b0:4d:30:f2:df:95:0e:cd:72:a4:e4:67:82:
59:3e:14:fb:1d:e7:e0:fd:4d:8a:7b:bd:fd:ab:73:
3c:36:8e:ca:db:28:b1:a8:72:8d:c2:f3:f0:0f:73:
9b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C4:B6:03:3F:BC:10:A6:50:E0:06:BB:FA:E9:4B:D2:78:AD:A3:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3C741E69AA611EF97651647762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a4:1a:7c:f2:90:09:99:db:68:df:ff:52:15:88:1d:f9:2b:94:
f4:cf:3f:5c:e8:7e:3e:a2:6a:66:c8:43:50:24:cc:99:ab:98:
14:0d:f5:28:b3:66:82:be:3c:7d:7a:c7:56:fe:80:ba:0b:e0:
1e:81:82:63:06:2c:34:3b:9e:4d:d9:61:3a:08:02:11:12:43:
96:d4:ec:98:9e:10:cb:de:40:1e:86:dc:ea:60:b8:fc:de:de:
49:7f:b7:c1:58:9d:12:81:04:75:19:b6:63:d0:db:25:ef:80:
21:48:6b:67:bd:96:bc:e5:77:58:44:cc:53:f0:58:f0:ee:eb:
53:6f:ce:a9:ef:0f:3f:51:3d:e7:cc:dd:07:bb:22:e0:ed:69:
7e:a1:bc:c7:1d:5e:87:55:97:7e:0d:e8:a5:14:0d:2a:b8:52:
84:3f:bc:37:f0:ac:6d:e4:00:7d:f2:d5:d0:97:f2:43:56:7e:
d7:ba:65:98:47:8e:da:b9:c3:26:78:3f:71:d9:9b:71:c8:07:
88:af:91:dd:fd:66:e3:fc:35:b0:45:bf:26:58:79:d5:22:ae:
e7:33:3f:04:c1:87:8a:80:a0:00:fb:b0:9f:b5:14:00:41:36:
3a:10:15:a0:67:1c:4d:e3:c2:24:7c:22:fc:5b:07:b4:27:66:
f4:d2:25:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:29 2024 by rpki-client on console-ams.rpki-client.org