Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E230F442B0FB11EEB83D7A55775412E6.roa
File: E230F442B0FB11EEB83D7A55775412E6.roa (raw, json)
Hash identifier: RdpV7/bcNsIBwDMoZNKw6EKatYNBFTvkOCln+FUYl/s=
Subject key identifier: 8B:69:09:F3:17:A5:CD:07:DE:F5:FC:8C:69:CA:FF:D1:95:DE:63:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7467
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E230F442B0FB11EEB83D7A55775412E6.roa
Signing time: Fri 12 Jan 2024 03:37:17 +0000
ROA not before: Fri 12 Jan 2024 03:37:14 +0000
ROA not after: Fri 13 Dec 2024 03:37:14 +0000
asID: 140224
IP address blocks: 154.205.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29799 (0x7467)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 03:37:14 2024 GMT
Not After : Dec 13 03:37:14 2024 GMT
Subject: CN=65a0b3ed-1a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a1:b3:f7:3d:fb:da:7b:3d:a7:52:ae:0e:26:
59:74:66:97:dd:55:8d:e2:07:13:cc:4b:f9:a7:7a:
4d:69:4c:fb:ac:38:1f:ee:c9:6c:85:c4:be:39:a0:
38:47:4d:9d:29:9d:bd:f3:bc:4f:b2:34:72:68:66:
0e:fa:02:78:5a:71:f0:f2:6c:c0:f0:3f:ec:50:8d:
37:bd:61:32:08:07:c2:af:fb:c3:39:31:b4:7d:7b:
46:06:6a:82:d3:ad:8c:d5:8d:55:bb:21:11:f2:38:
47:e3:f7:32:b7:6c:e5:d3:6f:3c:02:08:82:ba:7e:
f5:39:dc:a6:e6:ff:06:67:f3:cb:67:0b:cc:18:14:
6e:de:7b:5e:01:18:46:56:ec:7d:b3:89:e1:fc:2b:
4a:dc:a4:64:6f:71:1f:5b:fd:fa:3e:41:5f:a0:a7:
b5:eb:93:b0:8c:3e:18:1a:bb:7d:33:f2:9b:f2:b3:
fd:54:87:3e:e7:1f:e4:82:1c:7d:98:89:39:f6:11:
f6:6b:0b:a4:57:86:da:51:ac:dc:59:a8:c8:c5:c9:
8d:54:ec:ae:f1:df:e4:ba:a0:4c:82:29:a8:76:f7:
70:e9:8d:3c:07:66:a5:99:23:8e:74:45:d5:6d:39:
27:f2:45:c8:13:eb:2f:a2:24:53:ab:bc:94:34:bc:
7b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:69:09:F3:17:A5:CD:07:DE:F5:FC:8C:69:CA:FF:D1:95:DE:63:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E230F442B0FB11EEB83D7A55775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.196.0/24
Signature Algorithm: sha256WithRSAEncryption
29:af:ac:7e:ab:10:ef:ad:2e:ae:26:44:fd:f6:62:6a:61:52:
ed:90:d1:5a:e3:b9:2d:78:43:63:cf:af:25:02:74:1a:0f:5d:
e4:27:f5:78:b5:8c:41:1b:51:3a:df:06:1a:ce:c9:dc:ed:3a:
0e:a9:6a:de:3b:2a:b1:7a:44:6a:fb:fe:1a:80:78:9f:74:da:
11:f3:59:78:09:70:58:a9:bd:d5:fb:81:55:2e:c0:4c:64:42:
28:ab:83:f7:11:6b:39:69:eb:67:9d:77:96:8d:b0:67:66:84:
27:0c:ea:08:fe:67:19:09:07:02:e5:f6:fd:f7:30:28:53:53:
29:c5:d2:9d:f4:e8:8e:f2:51:77:76:d0:67:81:70:52:fb:22:
90:52:c9:17:8d:4f:8e:39:16:2e:df:f8:2f:80:e5:d4:e4:72:
ee:6a:38:9b:c3:ab:d4:c5:56:fd:86:94:8b:6a:57:83:ac:80:
cc:78:ce:16:e7:8e:23:aa:4b:56:60:a3:74:a4:9c:af:43:32:
ae:08:44:bb:17:1c:b1:a5:fa:78:d9:3a:a0:57:b0:79:31:3d:
30:ff:a2:2b:ed:e7:79:4b:a9:55:74:0b:58:7b:66:8c:a6:ee:
ad:2d:7b:2a:8f:c5:f2:42:29:08:d2:5b:36:ee:c3:11:ba:fd:
09:73:45:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:28 2024 by rpki-client on console-fra.rpki-client.org