Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8F397A28E2311EFBB536867762E951A.roa
File: E8F397A28E2311EFBB536867762E951A.roa (raw, json)
Hash identifier: zmy0kfUKrghTU+7+Knzr2vf8kw6BKmk+0zO1nZal37w=
Subject key identifier: FF:28:FF:52:6E:FB:65:76:4C:FF:AA:82:79:B1:F8:8B:70:19:AB:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010008
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8F397A28E2311EFBB536867762E951A.roa
Signing time: Sat 19 Oct 2024 14:10:36 +0000
ROA not before: Sat 19 Oct 2024 14:10:32 +0000
ROA not after: Sun 12 Jan 2025 14:10:32 +0000
asID: 328608
IP address blocks: 154.201.6.0/23 maxlen: 25
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65544 (0x10008)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 19 14:10:32 2024 GMT
Not After : Jan 12 14:10:32 2025 GMT
Subject: CN=6713bddb-43f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:c0:31:53:24:e5:d6:fb:0b:06:a7:d3:54:
e8:5b:96:de:b4:c7:e4:f7:fd:c6:42:33:c5:71:8e:
b3:71:d4:b9:c2:4f:04:40:4f:be:f9:7e:92:62:15:
a1:f2:e4:ce:54:08:bc:00:0e:a6:8c:4e:0c:91:22:
8e:6f:e8:ba:f1:3b:59:e7:0c:fd:07:ca:01:93:fd:
a0:02:37:7a:11:a6:8f:3f:a4:e9:bc:dc:aa:1c:f5:
98:2e:e6:28:64:83:0d:aa:5f:9d:c3:b0:3b:a9:66:
d2:99:e5:96:dc:9d:e2:00:40:59:a9:3c:67:cc:62:
fa:91:f3:4b:81:4e:96:79:c6:fe:d8:b3:6e:fc:64:
fc:f5:40:33:e7:34:87:49:b2:29:ec:32:0c:e0:80:
82:6a:11:b5:1e:7a:0b:f7:de:f3:10:c8:b9:af:aa:
4d:09:ac:69:42:07:81:31:7e:50:0b:68:3c:ba:f1:
65:d0:cb:b8:6e:9a:1e:ae:7b:eb:aa:72:70:93:cf:
9c:21:ff:91:f1:c6:4f:01:b1:4e:71:7f:ce:e8:c2:
c9:99:85:b3:0d:1d:92:fb:47:4e:68:e8:65:5b:14:
41:10:2d:32:00:b5:f4:b2:16:9a:d4:1b:69:04:cc:
bd:55:0f:ef:c7:30:ca:0d:d1:25:6f:0c:eb:62:e6:
33:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:28:FF:52:6E:FB:65:76:4C:FF:AA:82:79:B1:F8:8B:70:19:AB:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8F397A28E2311EFBB536867762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.6.0/23
Signature Algorithm: sha256WithRSAEncryption
79:52:0d:bb:29:46:98:50:68:49:cb:98:57:5e:57:86:c8:a5:
85:80:1a:34:76:0e:bb:73:e6:38:94:ea:5b:e1:d1:92:96:e2:
58:1a:9f:5d:e9:71:1a:59:6b:0b:c6:13:d0:68:b2:a3:fd:6e:
5f:23:e6:79:b4:26:d2:6d:4c:3d:15:36:be:93:b3:09:13:2b:
90:d8:7c:c7:e8:42:66:7a:28:a7:38:2f:98:b1:50:fa:16:13:
d4:fd:c2:93:61:6c:5f:dc:5b:ca:b4:33:4c:6e:fd:1f:2a:2c:
f5:8a:ed:7a:22:39:a3:7a:4b:f5:1f:84:a2:1f:a6:12:96:f4:
63:37:33:6d:fe:56:f2:56:1c:aa:35:4c:59:0f:07:f6:5e:5b:
18:9b:c2:28:8b:fe:46:ff:90:14:a0:43:ad:76:aa:0b:7a:9f:
88:5e:1f:7f:4a:62:4b:01:d0:2a:02:a8:4a:f1:cb:58:56:42:
be:3e:41:23:6a:02:5d:d5:5b:9f:9b:34:4e:fe:ec:0e:a3:1b:
98:67:22:ce:86:d2:f8:47:56:cb:cf:b4:7f:17:55:ec:a9:c5:
62:eb:0a:9a:a1:74:67:5a:88:a8:ef:ed:a0:09:0b:72:51:0c:
b3:42:10:02:14:be:44:0c:4e:40:ce:88:b3:e8:9b:b9:27:21:
c9:f3:a7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:29 2024 by rpki-client on console-fra.rpki-client.org