Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2762AE29C1A11EF9A985976762E951A.roa
File: F2762AE29C1A11EF9A985976762E951A.roa (raw, json)
Hash identifier: PlW1CoOvjULEW+AP0OBSj6mg4+8KAGuEG8WE4OikqOc=
Subject key identifier: 8C:B9:13:07:7B:0D:28:48:79:82:0D:7B:71:1A:5F:D7:11:76:F5:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01085C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2762AE29C1A11EF9A985976762E951A.roa
Signing time: Wed 06 Nov 2024 08:41:42 +0000
ROA not before: Wed 06 Nov 2024 08:41:39 +0000
ROA not after: Mon 30 Dec 2024 08:41:39 +0000
asID: 138915
IP address blocks: 154.93.108.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67676 (0x1085c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 6 08:41:39 2024 GMT
Not After : Dec 30 08:41:39 2024 GMT
Subject: CN=672b2bc6-0fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bc:fc:40:bc:e6:ef:b7:4b:24:54:80:4b:47:
04:b4:ce:94:de:49:b5:b9:6a:05:17:d3:3b:96:66:
85:85:c3:ec:2e:f7:d1:c4:56:d5:95:36:29:90:84:
57:fb:e6:76:26:ff:f2:92:37:31:04:67:9e:87:5f:
8a:9e:38:be:38:28:78:2e:41:83:17:da:e9:97:71:
6e:dc:e0:77:bc:19:f4:53:89:2f:8e:10:70:b3:1a:
37:ae:4e:4c:d8:07:bd:70:20:30:ce:00:f3:c7:64:
ac:13:f9:78:b4:b0:fb:a7:04:90:33:ad:31:db:7c:
ea:2f:43:9d:45:8c:b4:73:0b:e0:12:50:84:b4:93:
a7:d6:0c:11:5c:1e:c2:0d:20:1a:43:6a:45:28:5b:
c0:8a:77:bb:a1:7a:a5:ba:4a:d6:d4:dc:ad:67:db:
44:db:55:8a:7b:f9:a4:ad:8d:f1:b7:db:8f:90:04:
63:98:7b:a7:65:0d:47:68:62:88:37:d3:fe:09:e9:
b2:6a:49:de:f5:e5:50:ad:70:f2:35:b0:ec:ab:9a:
ff:0e:50:12:02:a0:80:0b:9d:06:0b:1e:d1:95:6f:
3c:8e:20:e0:ce:ad:87:5d:3e:2e:4f:d6:4a:bb:db:
61:98:50:41:76:87:85:ee:4d:d5:e9:e7:28:15:49:
77:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B9:13:07:7B:0D:28:48:79:82:0D:7B:71:1A:5F:D7:11:76:F5:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2762AE29C1A11EF9A985976762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.108.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:52:47:0a:33:66:08:7c:ba:8d:87:16:4a:07:61:f8:16:a4:
95:84:33:bc:fa:97:85:45:5e:c8:47:36:e0:eb:2b:8b:77:30:
c5:2a:9b:52:46:c4:9b:86:dd:c2:f5:9e:a5:8a:37:6d:85:92:
73:a1:ad:3e:52:30:c8:54:3b:20:dc:59:43:fa:b5:94:b5:57:
36:cc:a5:1e:41:06:bf:7d:ff:7c:a9:98:8c:eb:8c:65:0b:d6:
c8:12:ff:cf:23:44:05:d4:29:52:4e:1b:57:18:81:b7:df:ba:
5d:d9:9a:ff:80:7b:0c:34:34:f6:a1:c2:5f:f3:86:a9:05:e6:
6a:3b:db:2f:85:bf:a0:fd:27:48:bc:f3:f3:d1:f8:cc:55:f4:
22:16:ec:55:e1:a0:48:d0:6f:4d:00:12:a2:65:b7:04:8f:8c:
6d:9a:e5:c0:74:40:41:15:0d:28:35:ed:5c:ca:a4:c2:cd:1c:
a3:29:fa:21:dd:00:8c:2f:e0:cf:77:cb:1c:ee:b6:ac:1f:f1:
c3:b5:50:57:94:3b:9d:0b:42:cc:41:bb:05:ad:30:3c:bd:65:
ab:56:82:2b:d4:42:b0:a2:db:ed:b0:d4:24:ca:61:ba:06:28:
c3:4f:9f:c4:64:4a:83:49:45:44:44:70:79:b1:98:6f:23:13:
8a:40:f7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:53 2024 by rpki-client on console-fra.rpki-client.org