Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0FA6CECA64C11EF8FE69148762E951A.roa
File: E0FA6CECA64C11EF8FE69148762E951A.roa (raw, json)
Hash identifier: uxUAQehfOdcduPknWXmD0VH8AKUsqmBI3nSinhMg+Ro=
Subject key identifier: 83:AB:2D:A2:42:48:E7:A9:9B:21:3F:38:D9:AA:CE:E0:AD:89:B1:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0FA6CECA64C11EF8FE69148762E951A.roa
Signing time: Tue 19 Nov 2024 08:04:19 +0000
ROA not before: Tue 19 Nov 2024 08:04:16 +0000
ROA not after: Sun 15 Dec 2024 08:04:16 +0000
asID: 51396
IP address blocks: 154.213.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69388 (0x10f0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 08:04:16 2024 GMT
Not After : Dec 15 08:04:16 2024 GMT
Subject: CN=673c4683-8b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ba:99:19:03:de:16:62:25:1f:f9:45:e3:ec:
20:ac:05:1b:6f:c6:0a:bc:f7:42:1d:67:5b:17:64:
37:c3:01:60:30:52:e0:2e:d3:3d:fd:9f:6f:51:78:
e7:e5:71:c4:42:7d:b2:5c:72:cc:c7:d5:1d:32:5e:
ca:57:b2:43:a6:e3:e2:80:10:28:37:91:8c:72:0c:
7d:04:60:63:82:a2:b5:87:bf:72:a9:b4:c3:e7:45:
d1:53:25:9d:5e:39:54:e4:fc:d0:92:84:79:e9:37:
04:f2:56:c6:19:d1:47:fa:1d:00:65:b4:3a:7c:9b:
ef:57:d8:41:d2:9f:e2:83:20:18:74:ca:fb:4a:c7:
37:3c:06:45:15:b3:db:0b:bb:f4:4e:c7:80:a4:5e:
a7:00:3e:f6:91:73:60:5b:dd:50:58:66:c8:78:41:
89:d0:d6:ff:b9:14:68:1f:3b:74:32:cf:af:59:18:
d5:0c:2c:d1:62:cf:d4:06:15:90:f9:4a:c7:28:42:
10:14:74:36:b6:58:70:74:d8:f6:f0:71:35:80:32:
63:6a:a0:83:e3:de:3b:17:9f:c8:03:20:13:81:30:
71:d2:33:19:db:95:c2:fd:f1:d8:7e:6b:c3:0e:6d:
22:fe:8e:60:4c:2f:6b:e3:35:a2:85:80:23:29:c1:
88:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AB:2D:A2:42:48:E7:A9:9B:21:3F:38:D9:AA:CE:E0:AD:89:B1:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0FA6CECA64C11EF8FE69148762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.184.0/24
Signature Algorithm: sha256WithRSAEncryption
80:fb:07:aa:25:d0:85:2f:ae:d5:ee:49:0c:b1:4b:8c:bb:49:
47:3b:72:84:ad:8c:35:9d:e8:2e:cc:0d:c0:ba:97:fc:49:45:
ca:8d:82:9d:2e:23:fe:c5:73:e0:e5:b0:8e:ff:43:05:20:cb:
21:4a:9b:34:03:81:b9:bb:93:84:00:2c:06:f5:16:df:ad:d0:
7b:14:9b:8d:0a:c5:bd:4f:cc:fd:5b:fd:c9:ae:f7:f3:f9:27:
5a:22:19:21:6c:b0:bb:f3:b1:43:0f:eb:26:cc:77:a1:da:2c:
bc:14:53:bc:2e:5a:d2:88:8f:ad:4b:be:3b:48:e8:a3:fd:c5:
1f:09:5e:f3:d6:e5:b4:ee:da:6c:11:e4:5c:00:9c:08:03:bd:
f3:5f:34:80:58:4b:8f:bd:c8:5c:6b:f9:c8:e1:63:92:45:49:
e2:bc:0e:21:00:97:94:ce:d9:11:ac:e9:71:71:b2:b4:63:ee:
bb:f2:81:22:6c:3f:38:64:5c:5d:df:d7:41:f4:50:39:55:68:
52:fc:8a:5b:ee:6f:75:95:47:c3:ba:23:18:f1:f2:69:b4:a1:
6b:be:45:26:10:62:77:21:08:13:1b:a3:2e:09:d3:4f:e7:e1:
3b:85:89:66:28:bc:d2:25:a8:6e:a5:ed:28:84:cd:13:9e:31:
79:77:d9:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:10 2024 by rpki-client on console-fra.rpki-client.org