Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D59629CA92DF11EF9D035BB9762E951A.roa
File: D59629CA92DF11EF9D035BB9762E951A.roa (raw, json)
Hash identifier: 104BrRiFQiEYrKNJg1wHyJb2Jcdrxr3LVv2swGX0w+Y=
Subject key identifier: 0E:BC:CF:EB:4A:50:9A:28:54:EA:C9:AB:72:5B:23:EE:A5:DA:B7:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010246
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D59629CA92DF11EF9D035BB9762E951A.roa
Signing time: Fri 25 Oct 2024 14:45:53 +0000
ROA not before: Fri 25 Oct 2024 14:45:48 +0000
ROA not after: Sun 01 Dec 2024 14:45:48 +0000
asID: 48031
IP address blocks: 154.222.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66118 (0x10246)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 14:45:48 2024 GMT
Not After : Dec 1 14:45:48 2024 GMT
Subject: CN=671baf21-1ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2a:c7:d8:f1:af:03:1a:0b:57:d0:2c:c8:2c:
c3:4f:e7:04:56:7d:6c:5c:36:74:38:ec:7c:33:90:
9f:b4:62:51:87:62:ee:bb:e7:7b:52:9d:35:65:af:
79:cb:87:19:aa:c7:a8:34:18:c3:9b:84:54:57:e5:
65:38:e4:51:93:b4:85:ef:e5:f8:0b:b9:d4:c4:62:
6c:1e:11:c6:e8:c8:3b:02:d7:6f:2d:17:89:f3:4b:
4b:08:04:5b:22:58:47:c3:df:45:3e:cd:db:26:54:
dc:c9:b0:a9:25:08:15:b7:d1:8c:0c:1e:d6:5a:c0:
c5:e8:31:d9:6c:fe:29:e8:a8:ba:fc:d9:1e:81:a0:
36:8d:bc:75:fe:8c:29:9e:86:a7:44:49:92:4c:5d:
dd:71:7d:47:79:06:fd:97:bd:80:d1:20:01:86:4f:
a8:7a:03:d4:9a:59:db:1b:c8:31:2e:f0:bd:e3:d3:
6a:f2:1b:9a:27:fc:70:e6:a0:3d:42:17:cd:a5:4a:
4b:32:00:18:47:58:f4:09:79:30:78:66:ac:9e:89:
ea:4a:fd:db:3b:7a:3a:8c:4c:27:50:46:f5:67:88:
78:8b:c5:89:2d:db:b5:96:d6:85:28:c5:2f:a3:fa:
c6:4d:4b:ce:3a:77:6c:e3:40:b3:05:0e:70:8f:57:
aa:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BC:CF:EB:4A:50:9A:28:54:EA:C9:AB:72:5B:23:EE:A5:DA:B7:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D59629CA92DF11EF9D035BB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.240.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:3f:81:a0:4d:cb:cb:3f:40:29:b3:19:a7:e9:8a:7b:db:8a:
93:98:c5:f1:da:4d:44:eb:9a:79:26:af:2e:5d:93:46:13:50:
8f:b1:f6:79:b6:0d:50:16:c6:a9:2d:d3:9d:b3:6f:5e:c6:fc:
c1:34:ad:ec:7f:e3:5f:b5:ae:98:e6:b3:46:85:6c:76:f1:f6:
fa:ee:2c:1e:f9:6d:35:eb:73:8e:d5:0b:26:d0:73:83:78:c1:
c4:36:84:4d:d6:fa:04:e1:05:83:f7:28:fe:5c:8d:2a:b6:f3:
c3:02:fb:ab:10:56:3a:f8:19:6b:69:14:f8:45:96:82:64:39:
ff:35:ff:e8:cd:47:6a:41:e8:d2:2b:9a:d5:c8:82:ee:9c:d4:
67:1e:88:f3:21:84:81:f1:00:45:a3:4e:b8:d6:33:0b:2b:13:
4d:bd:d1:32:f3:2e:0c:fa:d8:46:f0:49:94:d7:36:ed:4b:13:
fa:c0:37:08:f7:33:c1:0c:53:8d:16:7b:17:b9:76:ed:d9:fe:
e0:b0:9f:cb:75:c4:f3:cf:7c:89:95:73:c5:5a:c1:dc:f2:a3:
99:03:a8:6b:61:2a:8e:ef:df:39:15:60:b0:9a:5e:4e:4a:30:
a9:5a:3f:d8:3b:f0:58:25:f1:2a:93:1a:09:5c:4f:76:3b:5b:
d3:52:68:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:29 2024 by rpki-client on console-ams.rpki-client.org