Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E45B899674D011EFA8362F5C762E951A.roa
File: E45B899674D011EFA8362F5C762E951A.roa (raw, json)
Hash identifier: kuN+SrESq6TRt/ohduXUoRJ+0ZuvexVeiNWYw7OoACU=
Subject key identifier: 97:40:47:6C:CC:2B:18:A7:E3:D4:6B:E4:72:99:9A:9C:F6:69:B8:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F022
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E45B899674D011EFA8362F5C762E951A.roa
Signing time: Tue 17 Sep 2024 08:43:21 +0000
ROA not before: Tue 17 Sep 2024 08:43:17 +0000
ROA not after: Sat 30 Nov 2024 08:43:17 +0000
asID: 142403
IP address blocks: 154.92.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61474 (0xf022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:43:17 2024 GMT
Not After : Nov 30 08:43:17 2024 GMT
Subject: CN=66e94128-c8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:86:b8:d0:62:48:62:b8:9d:1a:bf:50:b4:7b:
7a:b7:99:94:d1:8e:ab:ff:ba:9d:a5:8f:d7:13:c9:
f8:a4:fa:c8:07:86:30:7c:29:a9:f5:81:eb:d0:19:
55:22:4c:ce:ba:46:ea:95:79:80:40:3d:cb:4b:46:
5d:4b:eb:cb:8a:b9:30:2a:fa:69:40:18:f0:98:01:
04:83:83:ad:35:19:6b:cc:34:41:e5:48:21:22:9d:
07:0d:82:75:cb:11:26:60:86:21:53:9d:4a:00:54:
3d:ce:93:24:cb:6b:01:06:35:57:6e:7d:d5:52:39:
a4:e4:3e:2d:26:8d:ca:4c:58:6f:eb:7b:35:45:0f:
5d:f8:07:f1:d0:ca:49:cd:dd:42:64:6f:6c:5e:74:
10:11:a0:b1:56:db:41:9f:e1:ee:c5:ca:5d:29:d8:
5f:a4:ae:51:f8:e2:86:c9:1d:5c:f1:2c:ed:7a:e3:
f7:74:99:e5:a3:92:53:3b:cb:6e:96:0d:1e:31:58:
7c:91:c1:88:36:6f:6e:9c:4d:e0:c1:58:7c:8d:2f:
ca:07:25:6e:96:c0:be:3c:60:ff:c4:02:b5:4e:69:
70:d3:b6:bc:7d:16:7e:e3:51:07:16:7a:2c:86:33:
08:3a:68:59:02:01:51:78:a7:db:86:21:5d:b8:fc:
a1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:40:47:6C:CC:2B:18:A7:E3:D4:6B:E4:72:99:9A:9C:F6:69:B8:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E45B899674D011EFA8362F5C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.15.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:f6:ee:1f:92:20:3b:f8:b4:08:95:37:db:10:39:af:29:e2:
af:f9:51:c7:03:7e:84:ee:66:71:60:36:0e:60:1d:5c:f4:3f:
2e:e0:38:54:b0:1a:32:45:a5:88:c8:06:0a:e0:4e:ac:d3:97:
65:10:7a:b5:fe:d7:b6:cc:9e:20:ac:dd:39:0d:f8:58:5f:cf:
ba:3d:7e:de:84:d9:48:72:9a:d7:f7:6a:72:5b:c5:67:e7:8d:
42:cd:fc:d2:19:90:e9:f2:f3:1d:11:69:fa:37:ca:91:55:20:
6e:6b:6c:79:e3:d3:78:79:95:e5:d7:a0:e3:fc:fe:4d:c3:b7:
01:cc:34:3a:25:3d:3e:d6:e6:36:1e:ff:57:ce:2a:3a:69:01:
2c:04:93:18:99:3e:82:4b:a0:c0:fc:95:29:df:08:b2:6a:a0:
ff:3e:8c:4b:79:67:95:ae:f8:1e:b3:ca:d1:c4:a4:0a:d7:99:
88:a1:a2:f9:d1:f8:1d:d4:97:fa:95:b5:bb:98:ac:d0:50:72:
24:ef:f7:c1:fc:31:7a:05:56:16:4e:49:7a:26:59:cb:55:f9:
4e:08:31:fd:75:5b:8b:52:02:88:5a:e2:1f:ec:81:01:67:98:
04:82:86:c5:cf:4e:45:41:59:b8:c9:5d:0f:69:c0:31:58:60:
95:9a:fd:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:32 2024 by rpki-client on console-ams.rpki-client.org