Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6713CEE8B9111EF9683E5B4762E951A.roa
File: E6713CEE8B9111EF9683E5B4762E951A.roa (raw, json)
Hash identifier: j3fxzRpYstWH5gqTtwOY0pToqsgWmxNit3ckJdKN1Ks=
Subject key identifier: 73:3A:0F:9F:EF:89:09:F3:72:88:D8:37:02:04:C0:D5:B9:79:62:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE85
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6713CEE8B9111EF9683E5B4762E951A.roa
Signing time: Wed 16 Oct 2024 07:40:22 +0000
ROA not before: Wed 16 Oct 2024 07:40:19 +0000
ROA not after: Sun 31 Aug 2025 07:40:19 +0000
asID: 132513
IP address blocks: 154.210.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65157 (0xfe85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 07:40:19 2024 GMT
Not After : Aug 31 07:40:19 2025 GMT
Subject: CN=670f6de6-ee52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:f5:0e:44:59:b4:a6:f1:ae:f0:99:77:6a:
ea:68:e9:a3:f9:c1:a8:64:7c:03:6b:9c:72:4a:f7:
c7:6e:ab:9c:27:9a:82:da:ac:a0:9c:21:73:9f:43:
c5:db:5d:ed:9b:f0:17:b6:75:05:9d:fc:1c:ca:0c:
c0:d0:7e:ec:89:33:82:68:29:3c:c1:06:08:2d:ca:
97:3f:74:36:40:8a:d2:88:96:a2:70:2f:6e:49:6b:
8b:d9:6c:f3:94:03:ba:48:cf:ec:37:3d:13:bb:1d:
47:9d:9d:36:96:4f:27:99:e7:d9:db:1f:a9:8e:2c:
0f:5d:fb:7f:17:df:8c:bb:df:6e:70:12:93:bd:49:
f0:b0:9b:da:46:68:68:e9:14:38:0a:75:6b:e2:8c:
82:8c:bb:10:be:0a:c1:26:70:4c:e1:e4:58:39:19:
a3:91:07:8b:f1:55:c0:e0:70:6a:eb:a1:15:ac:94:
be:34:c4:12:f6:73:46:96:4e:ee:05:ec:1f:c0:71:
f7:93:0f:10:34:cc:ae:0c:38:5f:67:3a:89:e6:d5:
1a:7f:15:fb:d0:d1:c8:99:35:3e:41:a9:3e:68:c4:
34:19:a8:0b:b8:f2:83:37:8e:13:95:ea:37:13:33:
50:a4:57:77:3f:92:f5:af:e2:df:0a:ff:f3:d9:2b:
34:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3A:0F:9F:EF:89:09:F3:72:88:D8:37:02:04:C0:D5:B9:79:62:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6713CEE8B9111EF9683E5B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.14.0/24
Signature Algorithm: sha256WithRSAEncryption
99:50:8b:12:9f:5f:b2:95:1a:f4:76:db:07:96:6f:80:0f:94:
dc:f4:9e:3b:b2:d5:e5:3d:92:6f:57:af:12:a0:35:90:27:98:
ba:b0:df:ec:df:7b:5a:b9:99:76:3e:cd:5b:3c:08:a9:16:44:
95:f4:bb:00:26:48:40:8e:30:ed:3c:fd:3b:cb:ea:10:c9:7c:
cf:f2:57:81:1b:6c:18:0c:ce:b5:b4:d1:20:f1:fa:88:ee:cd:
72:52:5a:92:7b:c2:55:27:a2:f4:c4:b0:e9:4d:99:f9:cb:66:
36:c8:65:e1:85:6c:60:4b:dc:a4:9e:c4:7e:d0:2f:e3:c3:fb:
06:2b:48:08:00:73:96:23:ec:f4:30:6b:bf:a9:8c:a8:74:87:
0f:76:82:56:08:08:3a:88:e6:33:45:d5:22:01:1e:29:98:c7:
d2:db:ea:ee:cc:80:9a:26:01:2e:ba:05:6f:9d:3d:9b:fb:cb:
b7:c1:83:ba:96:de:c6:e8:52:88:e3:a0:0c:93:d6:d0:8c:fa:
85:75:db:d5:e2:05:6a:96:ed:d1:92:56:83:cb:c6:0e:8a:6d:
24:a5:40:27:5e:e6:9e:e3:2a:fa:af:24:31:56:08:fb:05:9a:
5b:1e:10:d3:4f:aa:7a:0a:1f:9d:87:ee:c8:99:16:6e:1c:c1:
63:09:3a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:51 2024 by rpki-client on console-fra.rpki-client.org