Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2FD1046B34811EE918AD176775412E6.roa
File: E2FD1046B34811EE918AD176775412E6.roa (raw, json)
Hash identifier: WJfskjNZAksAlgGlR+TSTZkTqZmvoqCsWftbnmbG3iE=
Subject key identifier: 0C:8A:52:B5:16:B1:AF:A8:89:C4:6E:15:18:87:5A:3B:C5:19:DA:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 753C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2FD1046B34811EE918AD176775412E6.roa
Signing time: Mon 15 Jan 2024 01:53:32 +0000
ROA not before: Mon 15 Jan 2024 01:53:29 +0000
ROA not after: Fri 13 Dec 2024 01:53:29 +0000
asID: 8796
IP address blocks: 154.205.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30012 (0x753c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 15 01:53:29 2024 GMT
Not After : Dec 13 01:53:29 2024 GMT
Subject: CN=65a4901c-499c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:98:85:c8:9f:af:bd:3f:c0:2c:12:2b:08:99:
82:f2:5f:cb:12:4c:0b:f1:72:51:1d:8e:e9:77:39:
a2:63:0c:2c:8b:dd:f7:87:da:fd:15:15:be:b3:28:
17:77:53:39:a4:53:59:ea:4f:0c:1a:8e:b5:37:ef:
49:20:e7:df:cb:af:fb:33:53:03:90:9d:db:a1:2f:
b0:26:82:93:eb:d9:83:5e:81:48:96:7f:de:e7:5e:
53:2a:09:dd:fc:21:9b:08:02:29:5d:83:f8:b2:0f:
dc:78:a4:e1:1f:a6:5e:1b:05:cd:34:62:ea:29:e7:
0e:96:a7:f0:63:33:04:db:ee:9c:93:ad:c0:a2:cf:
44:0a:81:78:73:4b:1e:e7:df:c5:1c:d2:b6:c9:fe:
32:21:3c:53:09:ae:97:5a:7c:a5:79:d6:6b:1a:db:
16:c1:85:54:6e:79:58:b8:e6:ea:ae:20:f4:35:fd:
38:69:fe:92:3e:6d:a5:10:54:6d:0b:48:0e:73:25:
b2:04:75:d2:93:76:60:7d:d7:44:5e:47:8d:f3:34:
ea:d4:b8:c4:5a:61:12:0e:95:8b:5b:71:b1:65:a3:
3a:1c:5e:cc:7f:85:f3:ff:ca:9c:40:48:7e:c6:db:
4b:12:64:01:f4:6a:b2:28:25:64:cd:a1:36:6b:c5:
9e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:8A:52:B5:16:B1:AF:A8:89:C4:6E:15:18:87:5A:3B:C5:19:DA:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2FD1046B34811EE918AD176775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.204.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:f4:bb:17:69:58:f4:aa:a4:60:ff:86:ce:93:db:fc:a2:70:
46:b9:32:60:2f:5e:6b:37:80:ca:e5:31:ca:c3:44:f0:e5:7d:
84:1d:11:4e:1d:94:82:95:18:1f:fd:ba:61:2e:8d:e6:29:ea:
09:52:fa:90:c6:93:0d:d2:7a:49:61:87:87:b7:f5:aa:50:1e:
82:f1:17:50:a7:41:e1:78:5d:ee:d0:a0:30:61:1b:35:1f:34:
85:56:c7:08:e5:3a:be:4f:c9:27:75:32:b3:43:d5:ee:b0:4c:
06:65:e3:60:7e:46:73:4e:22:df:27:52:46:b6:90:ca:ee:b5:
54:48:8b:b9:53:23:90:01:f6:ba:c2:3e:28:32:5a:4a:5a:63:
f5:64:1d:b0:d2:3a:78:28:08:92:e3:e6:fe:33:6a:f4:f5:b3:
6c:56:27:b7:e1:52:9d:8c:7d:2b:3c:64:63:ea:4e:ce:bc:d3:
bf:84:fb:56:48:61:80:e2:76:80:c3:d1:be:66:60:7f:e6:39:
c7:cf:24:e1:d4:c8:56:0b:2e:cd:da:84:c6:b3:0a:56:5b:5a:
66:80:83:89:45:08:2d:fd:0c:4c:b2:d5:cb:0d:9f:28:7f:39:
aa:9c:75:fc:06:31:d9:d9:ee:89:ff:a2:dc:ff:83:50:7a:25:
2a:a8:03:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:32 2024 by rpki-client on console-ams.rpki-client.org