Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC26196E976411EF9684D7BA762E951A.roa
File: EC26196E976411EF9684D7BA762E951A.roa (raw, json)
Hash identifier: uj9AashQPSeXGJnxkEaHo3uV3St8RBkZPbCFQJ++GSU=
Subject key identifier: F8:A9:15:50:CE:C9:B5:09:C7:5A:0C:20:5F:EB:65:04:61:2F:06:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010474
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC26196E976411EF9684D7BA762E951A.roa
Signing time: Thu 31 Oct 2024 08:48:39 +0000
ROA not before: Thu 31 Oct 2024 08:48:35 +0000
ROA not after: Mon 13 Jan 2025 08:48:35 +0000
asID: 135377
IP address blocks: 154.202.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66676 (0x10474)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 08:48:35 2024 GMT
Not After : Jan 13 08:48:35 2025 GMT
Subject: CN=67234467-3ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:37:94:3d:3d:c4:9e:d4:19:61:5f:eb:98:
3a:bf:20:f1:ef:06:01:56:83:eb:d8:b2:9f:ee:ff:
2c:e8:43:0e:5f:58:59:12:59:ea:50:8a:70:10:16:
ca:63:cd:74:b6:7c:09:22:49:d9:e3:77:1e:fa:69:
72:b1:07:64:2a:91:b0:f1:c2:b0:60:1e:be:d3:86:
56:d7:a0:fb:54:2a:f3:eb:ea:bc:32:00:fc:a8:f9:
52:3e:79:81:dd:2b:79:df:06:ce:79:57:e5:a3:c0:
e7:8c:94:37:fc:b0:0c:a6:4b:5b:2e:fc:0a:30:3c:
71:c5:93:3f:33:af:3b:5e:18:d6:98:b7:e8:81:7e:
42:7a:e3:2f:c2:84:9c:a6:ac:db:e7:5d:45:ec:15:
b8:b9:e6:65:f7:e2:ba:d5:e1:3c:c2:ef:64:72:3e:
bf:f1:f4:5b:dd:e1:59:f0:05:41:44:22:7b:0b:a4:
1d:f3:3a:06:1a:ab:01:2e:4b:a6:88:cc:06:ff:54:
0f:24:bb:20:57:73:1c:82:7e:69:78:37:21:b9:8f:
59:b2:c8:75:83:b1:57:7a:a6:7d:ac:95:93:d5:a7:
78:31:45:00:30:83:8c:5b:21:ba:66:b2:91:30:96:
b1:88:f2:6b:ba:4a:ff:a5:97:48:17:93:f6:4b:75:
0c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A9:15:50:CE:C9:B5:09:C7:5A:0C:20:5F:EB:65:04:61:2F:06:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC26196E976411EF9684D7BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.66.0/23
Signature Algorithm: sha256WithRSAEncryption
87:8f:36:a4:80:03:3b:fb:43:26:4f:b8:92:e2:3a:65:92:4e:
3e:6a:ce:73:31:77:83:5e:04:73:79:1a:db:a2:f2:5c:11:06:
ec:90:2c:f0:ee:e0:6d:9c:ae:f8:f9:19:24:da:8a:6a:f3:2f:
39:75:0d:40:c6:85:30:4f:b5:8b:4c:83:99:f7:8a:d3:32:22:
d0:05:4f:86:11:5a:5c:c9:7b:7b:f6:72:d8:4e:dc:c2:95:6a:
f3:f7:cb:7b:9d:42:a1:fa:9c:3c:7c:08:f1:2b:d2:1c:69:e3:
58:09:ee:56:01:d1:f3:08:c4:3b:ac:34:01:70:d7:e1:c5:89:
d9:53:0b:68:4a:21:8b:df:43:e5:f9:b2:8a:42:21:e6:3b:3b:
f3:f0:9e:98:e5:5f:67:6b:a2:e6:47:11:b3:7f:8b:de:bf:5b:
99:9d:9f:62:70:55:4b:07:49:b9:bf:8b:f3:d3:c4:13:d6:43:
7a:b2:51:b3:b2:ae:37:b3:0b:c6:2c:b0:c4:c9:b2:85:00:e0:
09:50:f4:ec:7e:f8:1c:f0:64:7e:38:fa:f9:51:a0:03:b8:db:
b1:14:ec:52:6e:d3:ab:07:79:d9:86:ab:77:d2:66:09:13:8e:
6a:4b:a2:89:d0:91:8d:1a:e8:c7:f1:1e:08:57:b3:74:64:77:
bd:e0:2f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:33 2024 by rpki-client on console-ams.rpki-client.org