Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0C78F906A5E11EF8382AC44762E951A.roa
File: E0C78F906A5E11EF8382AC44762E951A.roa (raw, json)
Hash identifier: 49Gm90Q/c930zZCW0mhf0k2LBi9VxpA0vNyW5CeO7rA=
Subject key identifier: 68:42:62:5B:B3:34:44:D6:49:BA:39:47:E9:91:9A:8F:98:F3:40:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E9FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0C78F906A5E11EF8382AC44762E951A.roa
Signing time: Wed 04 Sep 2024 01:42:00 +0000
ROA not before: Wed 04 Sep 2024 01:41:54 +0000
ROA not after: Mon 30 Dec 2024 01:41:54 +0000
asID: 17561
IP address blocks: 154.207.226.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59901 (0xe9fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 01:41:54 2024 GMT
Not After : Dec 30 01:41:54 2024 GMT
Subject: CN=66d7bae8-8368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:95:87:32:88:72:28:7e:28:41:26:91:2c:b2:
20:c1:dc:9a:07:38:3e:33:7b:17:4c:bb:f3:3f:46:
33:4a:60:cb:5e:46:ae:ef:32:22:54:a9:89:04:f8:
85:dc:4e:3e:3a:0e:3e:13:0d:29:7d:68:cb:f7:81:
5a:11:fa:48:a5:3c:8e:75:25:fc:4a:5a:d3:0b:63:
00:a0:34:68:7e:e8:20:a9:69:98:03:fe:63:d1:29:
cb:22:26:8c:54:1d:17:1a:c4:60:56:34:a6:e5:15:
1c:69:5a:b8:63:c3:a1:d8:59:36:99:01:bb:c8:51:
a9:7b:22:47:de:ce:37:24:3c:db:6d:c2:bb:a2:c9:
d0:db:8a:75:bd:17:f4:5d:7f:bf:de:52:7a:e8:5a:
72:c7:27:ee:97:67:f1:1f:0f:0c:20:60:66:86:a8:
1d:03:fa:c0:93:7e:75:3c:92:2b:f7:95:31:0b:c2:
36:a5:25:b0:aa:7a:8f:f5:33:5b:7e:c8:fa:af:41:
39:fb:55:65:64:00:09:38:34:b2:5f:f4:a3:e0:c8:
41:5e:a9:cf:05:f8:f6:79:16:d0:91:7a:b1:0a:d2:
0b:c6:d1:3c:0a:68:0c:cb:b0:1f:94:c3:9e:04:6c:
50:f9:01:f1:42:83:db:3e:cd:25:b2:43:80:bb:ba:
61:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:42:62:5B:B3:34:44:D6:49:BA:39:47:E9:91:9A:8F:98:F3:40:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0C78F906A5E11EF8382AC44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.226.0/23
Signature Algorithm: sha256WithRSAEncryption
93:6d:00:8a:09:12:be:d7:54:68:a1:89:5a:b1:c2:63:e5:1e:
98:ea:01:fd:0b:de:1a:2c:28:fa:c6:59:60:2e:61:e9:26:8a:
c9:41:89:ff:b6:73:1e:2e:b9:1b:70:33:fc:51:a4:79:53:01:
52:df:89:b7:92:13:a6:49:97:96:31:20:1e:97:8d:36:39:ee:
19:80:71:ad:07:32:bf:b6:81:33:3c:89:cc:1c:2d:2b:78:3b:
df:3e:1b:a0:93:ff:ea:e9:57:d6:7e:2f:3c:d9:20:27:d7:51:
c2:bb:21:cf:52:09:92:a6:5a:55:cc:72:62:70:f7:46:06:1f:
38:17:d2:55:d0:16:1f:cf:85:ca:9a:92:29:5b:4b:8a:4a:b0:
d9:6e:f2:17:96:db:49:97:05:e1:6f:95:1e:06:ca:96:76:53:
ec:17:19:fd:5e:f1:d0:06:0b:2b:f5:29:2c:6f:16:e0:36:67:
2b:c5:29:f6:da:05:db:e4:07:99:da:52:e9:f7:fd:c9:52:07:
ca:e0:fd:57:6f:fe:d0:41:14:d2:be:a9:67:ab:f5:10:73:25:
70:47:69:97:6a:0f:82:3f:52:ea:e5:2c:29:91:0b:24:64:ee:
fc:28:73:72:a6:48:bb:1c:4e:72:19:df:7a:59:63:d7:23:8c:
27:18:dc:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:31 2024 by rpki-client on console-ams.rpki-client.org