Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E87E4932A19911EFBDAB04B6762E951A.roa
File: E87E4932A19911EFBDAB04B6762E951A.roa (raw, json)
Hash identifier: PxXpzBU5k09i2iB2BzkRAVqVGGGcNJQiVuV+TnugNR0=
Subject key identifier: 2D:D8:BD:6C:22:3D:C6:70:6C:FC:02:2F:DD:8E:36:D7:E9:EA:10:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CB5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E87E4932A19911EFBDAB04B6762E951A.roa
Signing time: Wed 13 Nov 2024 08:33:07 +0000
ROA not before: Wed 13 Nov 2024 08:33:04 +0000
ROA not after: Sat 23 Nov 2024 08:33:04 +0000
asID: 139471
IP address blocks: 154.215.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68789 (0x10cb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 08:33:04 2024 GMT
Not After : Nov 23 08:33:04 2024 GMT
Subject: CN=67346443-b2e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:51:bf:27:24:40:af:77:7b:dc:94:14:b5:e2:
54:01:5a:7c:64:6f:b9:86:6c:90:dd:47:40:65:08:
53:2f:e5:d5:c2:39:ad:ae:9f:aa:47:f6:0d:6b:99:
32:2d:1f:c9:e3:a1:9d:7b:52:38:75:83:2f:0c:63:
34:34:ac:0e:91:bd:c4:38:c3:0c:dd:24:d9:0d:d6:
1c:c3:e6:d2:91:62:e1:a1:f2:86:7c:0f:fa:45:cc:
b1:71:c2:0a:dd:f4:4c:2f:8e:ac:99:5b:ff:48:d7:
68:11:4a:35:07:1d:08:1a:54:1c:9e:ca:04:ac:9b:
13:e9:9a:e4:81:ac:c0:62:a9:da:4a:bf:e0:e8:db:
7f:24:b2:20:66:1e:13:e8:cb:4f:e3:05:13:a3:38:
15:b5:d0:9c:ed:7d:50:5e:70:07:4e:c2:1d:b3:b8:
65:29:35:11:a2:dc:48:63:3f:b5:0a:e8:2f:96:6c:
e9:ee:27:f7:a7:22:cf:f7:c4:4b:f8:f3:81:45:a0:
a1:29:43:95:5b:12:41:31:5b:85:f4:38:1e:65:49:
8a:4c:be:18:aa:9d:2d:01:84:34:f5:eb:ec:44:0a:
ea:30:c0:e8:65:80:f0:54:5f:f2:98:c9:09:85:cc:
c2:76:16:e2:85:ed:eb:df:6f:bb:3f:c1:bb:b7:49:
6a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D8:BD:6C:22:3D:C6:70:6C:FC:02:2F:DD:8E:36:D7:E9:EA:10:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E87E4932A19911EFBDAB04B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.16.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:ff:20:f6:ec:59:d6:cc:0b:3d:95:35:cf:e6:7d:2a:00:16:
a6:aa:38:3c:50:74:52:02:ff:06:f1:6d:5d:15:91:e9:5d:f4:
cc:a9:ed:e5:07:22:ed:ef:6e:64:0f:cb:ca:c9:8d:ef:7f:07:
1a:71:26:46:b4:8f:64:1d:f0:cf:87:36:0b:c2:7d:ec:da:69:
53:32:11:8a:57:77:49:24:c7:70:45:78:4a:af:98:0a:aa:b7:
42:ae:04:c6:d5:ed:7c:f9:01:0d:a8:44:64:9b:48:82:11:53:
7f:51:79:e8:f6:0f:76:22:57:08:f9:89:92:72:8e:c9:d5:14:
17:58:99:df:e7:f5:a0:96:5d:f4:e6:cc:a2:32:86:61:40:8e:
dc:7d:90:18:50:f5:56:30:2d:9e:45:2c:ad:9c:0c:93:3e:fe:
49:e3:47:11:6d:a2:cd:77:dd:65:a8:da:83:bb:ed:c2:85:ad:
a0:98:6f:2c:db:41:1a:70:8e:5f:a6:f5:cb:48:59:b2:72:15:
87:48:b0:9a:8e:53:75:91:6c:45:ac:f5:09:77:1a:50:56:2b:
46:24:48:89:94:5b:41:04:5a:72:59:7f:a2:fa:30:51:9d:06:
fa:98:41:6c:c8:63:e0:86:b0:37:b4:54:6e:43:57:bf:5c:1e:
df:a6:c6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:32 2024 by rpki-client on console-fra.rpki-client.org