Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DDD1DF8E736911EF857EBA52762E951A.roa
File: DDD1DF8E736911EF857EBA52762E951A.roa (raw, json)
Hash identifier: X4iN3UhK6rM54h8pu9LPAo/uqGr6tvhwQrKs0+SCz1Q=
Subject key identifier: 7C:27:E9:7D:A9:6E:5D:B5:9D:35:40:29:DB:94:CB:3E:01:0E:1C:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF3C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DDD1DF8E736911EF857EBA52762E951A.roa
Signing time: Sun 15 Sep 2024 13:53:20 +0000
ROA not before: Sun 15 Sep 2024 13:53:17 +0000
ROA not after: Sat 30 Nov 2024 13:53:17 +0000
asID: 142403
IP address blocks: 154.83.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61244 (0xef3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:53:17 2024 GMT
Not After : Nov 30 13:53:17 2024 GMT
Subject: CN=66e6e6d0-8f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a5:99:f3:d4:98:f4:58:06:03:e9:56:fc:ea:
a4:e7:fe:bc:e1:60:a5:01:92:a9:38:c2:db:b7:4b:
9c:d7:ca:1b:22:85:b6:02:2e:f3:ab:b2:6a:9b:31:
bd:77:7d:dc:26:2c:b8:76:f8:c8:86:6e:90:d2:df:
c8:ff:49:56:4e:bc:bc:6b:13:9e:82:a1:6f:d1:ef:
cc:bd:47:92:cc:a8:cd:ab:a1:4c:df:70:94:61:c1:
84:68:83:56:84:53:e5:9d:79:47:cd:00:dc:ba:6b:
95:e0:ed:5d:67:98:f7:13:d8:0e:4c:fc:28:4d:79:
6b:c1:14:e6:17:26:2d:77:36:f8:7b:ba:fa:70:c8:
0a:bf:82:12:1b:d2:8c:fe:0e:1a:d3:c5:62:01:86:
b8:24:3b:75:13:e2:a9:b2:b4:10:cf:22:0e:83:7e:
df:d5:c3:17:f4:13:5b:33:93:06:b3:6a:8f:d4:cf:
ea:3c:86:09:0a:c1:6d:a9:ce:17:9d:ed:0a:44:26:
78:d8:ab:ae:ca:a6:9c:59:8c:72:be:d7:d4:c0:ad:
c2:aa:59:7b:5b:38:b0:c7:d1:1f:dd:6f:2b:70:e6:
12:1c:4a:06:1e:40:35:51:f2:cb:61:5b:8d:4a:15:
c2:47:87:7f:e8:6a:ba:45:37:cf:b8:1b:50:4d:63:
c8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:27:E9:7D:A9:6E:5D:B5:9D:35:40:29:DB:94:CB:3E:01:0E:1C:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DDD1DF8E736911EF857EBA52762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.15.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:6e:a8:d0:26:92:e6:d5:b8:f0:58:68:4c:91:37:a8:4f:14:
50:a7:86:e8:81:15:21:5e:3d:21:14:75:61:a3:a5:c2:34:d9:
36:18:cd:11:be:56:40:5f:d2:5b:be:d4:f5:b7:5e:4b:2f:bd:
8c:32:be:fd:ee:29:f0:33:72:32:75:ca:c1:57:a4:cc:07:ba:
cb:eb:e0:14:36:c2:22:89:0a:14:ee:c2:67:00:f2:fc:12:e7:
cf:df:0f:f3:b1:c3:35:0a:6b:ad:24:df:73:ff:8f:ed:4e:ac:
c7:ea:63:64:64:46:d8:53:b0:b2:08:c4:d6:d8:b2:02:e5:67:
69:c9:ac:69:40:0f:4d:da:b4:59:d9:46:b2:00:29:8b:1f:26:
e9:34:b1:ba:5a:be:f1:57:73:c2:72:1d:e1:3a:82:99:9a:90:
75:10:c6:83:64:5d:cb:5e:41:09:e8:fe:4b:77:c6:7b:1b:fb:
2c:0b:2d:7a:ff:73:1e:f0:26:77:8a:49:91:c0:f1:b7:7f:25:
e1:6e:6a:94:7c:60:39:37:1c:4e:bf:30:94:05:3a:39:df:d3:
39:ca:18:a4:e0:bf:6d:d5:8a:a3:e2:fa:6c:3b:70:4b:ba:86:
c8:c2:64:97:9c:c7:3c:d0:68:8e:ba:e0:96:9a:06:08:6f:d3:
67:e6:ae:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:30 2024 by rpki-client on console-ams.rpki-client.org