Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE1D9A3440FD11EFABFECB8C762E951A.roa
File: EE1D9A3440FD11EFABFECB8C762E951A.roa (raw, json)
Hash identifier: 9adNDp5uJH7VzYsf60ro6UgWo3ECRiFbl/vNszcQ/Co=
Subject key identifier: E4:C6:F7:33:C7:71:45:E4:08:B7:1D:9F:81:31:3A:DB:17:FC:1D:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D108
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE1D9A3440FD11EFABFECB8C762E951A.roa
Signing time: Sat 13 Jul 2024 09:54:44 +0000
ROA not before: Sat 13 Jul 2024 09:54:40 +0000
ROA not after: Mon 14 Jul 2025 09:54:40 +0000
asID: 140867
IP address blocks: 154.89.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53512 (0xd108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 13 09:54:40 2024 GMT
Not After : Jul 14 09:54:40 2025 GMT
Subject: CN=66924ee4-e836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8e:d7:6d:d2:0c:04:46:c8:ef:ba:c8:25:79:
93:f7:75:7d:e4:cb:f3:40:2f:a8:70:4e:aa:fa:6f:
33:36:78:ee:97:41:1d:89:85:0b:2b:11:9d:55:c1:
15:69:a8:ba:35:8f:f5:48:36:3b:a7:7f:4f:86:7f:
27:de:ca:16:b5:8e:d5:49:4f:dd:d5:bf:97:6b:a7:
dc:03:93:f0:58:03:d7:f4:da:af:dd:e7:11:ee:79:
8b:8d:8f:df:47:66:d9:9e:c8:a6:70:af:e9:40:9c:
68:45:cb:e5:7a:ce:ba:a1:43:c9:1a:aa:08:ef:0f:
2c:65:ca:78:c1:c4:eb:f8:e9:26:ca:a4:2c:42:42:
62:d8:dd:a7:b2:77:38:22:b3:4c:25:57:3a:96:8f:
7e:ad:fd:59:57:9c:27:70:9b:24:33:45:e4:10:8f:
4e:fa:fe:22:88:c4:a7:0f:cd:9d:0f:4d:56:30:8b:
c5:39:75:74:a3:e5:b5:48:8c:2b:ac:0e:6d:52:52:
43:68:cf:7d:73:03:72:ed:de:87:72:d2:b8:71:c1:
3f:88:ba:d2:c2:20:b8:5a:c2:23:63:77:da:c5:b9:
bb:82:75:73:87:90:db:30:99:26:84:d0:89:2c:b0:
67:09:7b:ac:b7:be:bf:8a:dc:e8:36:cc:4b:a8:27:
6f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C6:F7:33:C7:71:45:E4:08:B7:1D:9F:81:31:3A:DB:17:FC:1D:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE1D9A3440FD11EFABFECB8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.6.0/24
Signature Algorithm: sha256WithRSAEncryption
78:94:c4:08:05:6b:6b:d1:db:39:5c:2c:b8:5a:b8:6f:89:21:
27:b6:c9:69:10:1e:f9:87:9f:96:c4:22:3d:bf:ec:5e:70:c0:
59:ac:4d:26:6e:2b:86:3b:aa:99:1a:68:82:c9:9f:91:17:ea:
21:66:4c:ba:ee:6f:f6:9b:97:0d:2e:c2:3e:9c:b5:94:d3:68:
81:4f:8d:6a:0b:1f:f8:7a:11:ab:ae:0d:87:4d:00:fc:a5:b3:
4c:81:80:6e:ff:ab:d1:23:ee:40:a8:2d:1d:15:e7:e6:36:df:
6d:21:58:05:67:11:30:f8:0d:13:45:67:85:15:60:05:b6:f9:
69:d2:94:b7:68:9e:ed:d2:74:3f:ff:f5:7d:67:10:7e:40:a5:
4e:da:f7:df:b5:57:22:34:8b:18:d0:6e:32:41:37:e4:1f:0d:
8e:2c:66:71:ae:bb:44:65:c0:f7:c6:74:aa:5e:dc:f5:ba:b2:
b4:b2:1b:1d:6d:db:c4:13:77:40:09:8a:3a:16:37:8b:bb:5f:
f1:8c:a1:84:11:cc:e1:5a:0a:bd:c7:cf:7e:00:fc:d4:5a:81:
19:b5:12:fa:f0:dc:db:94:8f:ad:e5:f6:35:ff:95:97:d2:4b:
f6:94:7d:29:ed:51:37:f5:98:49:ba:bf:45:62:0c:7b:36:7f:
11:35:a5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:33 2024 by rpki-client on console-ams.rpki-client.org