Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCF32486A8E511EF8607699A762E951A.roa
File: DCF32486A8E511EF8607699A762E951A.roa (raw, json)
Hash identifier: Zcy4zpd5GORhuXeJ/d7sMmEQ8JxK1kUR1JyIwkV1bDo=
Subject key identifier: 0D:63:E0:15:36:40:4F:90:C2:81:DA:42:98:11:D5:26:AD:ED:1A:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110CD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCF32486A8E511EF8607699A762E951A.roa
Signing time: Fri 22 Nov 2024 15:24:28 +0000
ROA not before: Fri 22 Nov 2024 15:24:24 +0000
ROA not after: Tue 03 Dec 2024 15:24:24 +0000
asID: 62240
IP address blocks: 154.194.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69837 (0x110cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:24:24 2024 GMT
Not After : Dec 3 15:24:24 2024 GMT
Subject: CN=6740a22c-b529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:61:dc:c8:89:5e:31:45:fe:cd:65:60:35:ce:
56:27:d3:0b:5e:ab:90:ea:ce:2a:63:db:81:a1:73:
27:67:f9:e4:b5:8f:26:b5:3f:49:2f:a8:89:a8:18:
1a:11:96:51:98:29:90:d9:56:02:2a:bd:a3:7c:3e:
fb:c2:d3:3c:c9:78:c1:dd:dd:02:df:1b:b0:de:f4:
ee:06:c2:5b:31:03:27:41:d0:a5:8f:66:be:54:72:
c9:1a:fb:96:8a:79:12:29:8c:44:be:6c:a7:26:c8:
c1:f5:6e:64:02:34:d9:f1:99:74:a6:e2:8f:3f:04:
54:58:60:bd:67:fd:fe:11:18:3c:80:2b:95:dc:86:
20:95:75:21:ec:56:a7:f6:58:56:29:ea:c8:95:81:
12:81:c4:d3:75:26:d4:65:b8:01:34:ee:ab:7b:c7:
e4:4d:09:49:8b:f6:a7:64:95:16:cf:94:d8:98:7e:
ee:29:a0:85:e6:3b:5b:77:73:0b:41:c1:7c:9e:74:
36:ad:2a:d8:61:a8:f0:d0:40:f4:ee:0c:c0:bc:4e:
d7:d2:dd:87:5e:f2:5e:5d:79:ec:be:de:a9:7d:04:
23:38:96:b4:d0:af:b6:7c:3b:eb:8d:fa:0e:79:49:
ba:7a:3e:b4:9f:85:73:ef:35:c6:4f:e7:eb:51:19:
ee:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:63:E0:15:36:40:4F:90:C2:81:DA:42:98:11:D5:26:AD:ED:1A:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DCF32486A8E511EF8607699A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.103.0/24
Signature Algorithm: sha256WithRSAEncryption
29:94:32:6e:1d:23:1f:ff:20:cf:fb:e3:f2:d8:c8:03:be:47:
e5:4f:a3:ae:05:15:7d:dc:bc:76:13:67:35:d8:56:52:8e:a8:
7a:47:d1:a7:b6:75:0c:8a:77:35:89:fc:42:b3:97:11:b5:85:
6e:99:e8:d9:e6:52:56:05:ce:43:a4:2b:db:d4:82:39:e0:5c:
5d:75:7f:aa:23:5b:27:1e:9f:0d:40:45:e4:ad:e0:8d:5e:1c:
aa:db:48:d4:a5:a2:c7:48:2a:fe:d9:22:6a:a2:01:a9:ad:9b:
8c:98:54:51:e6:26:8c:85:82:63:54:5e:5d:e4:d6:38:22:0d:
2e:9f:c9:60:d6:06:64:76:bf:82:f1:7a:5a:e6:a2:c8:a9:0a:
48:e0:1c:6a:d0:d0:1f:60:bf:a2:80:82:06:87:72:54:10:e2:
99:63:89:8f:20:f5:2b:66:86:e3:28:a4:1a:9f:7a:35:6a:0d:
1f:d9:1e:2a:82:f5:b3:fd:95:44:e4:ab:a7:ed:c1:85:0e:e9:
2e:b9:4e:9f:b5:6e:1c:ce:e4:7c:37:18:5e:d0:75:24:f6:99:
62:65:b7:27:e3:5b:61:9d:1e:02:01:1d:86:58:b5:d8:af:e1:
43:c4:b7:2b:0c:f4:91:72:c8:f5:d4:ae:14:ed:d8:73:e5:2d:
87:38:3e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:41 2024 by rpki-client on console-ams.rpki-client.org