Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB89E2CEB6CB11EF96C4BCB2762E951A.roa
File: FB89E2CEB6CB11EF96C4BCB2762E951A.roa (raw, json)
Hash identifier: X7RP3QnZqQCGYCnuKTooKbO7qTOrM/REkneg7UA26ow=
Subject key identifier: 75:EB:BC:90:74:51:3F:6C:29:43:A1:C8:48:35:65:BE:1F:6C:8B:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011A26
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB89E2CEB6CB11EF96C4BCB2762E951A.roa
Signing time: Tue 10 Dec 2024 07:54:29 +0000
ROA not before: Tue 10 Dec 2024 07:54:25 +0000
ROA not after: Sun 12 Jan 2025 07:54:25 +0000
asID: 54252
IP address blocks: 154.201.54.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Dec 2024 00:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72230 (0x11a26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 10 07:54:25 2024 GMT
Not After : Jan 12 07:54:25 2025 GMT
Subject: CN=6757f3b5-c504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:39:a7:28:e1:7c:f8:2d:23:b5:83:81:3d:6b:
48:a3:f7:b0:f0:b7:64:59:65:f9:58:b5:b1:27:33:
75:ee:22:e4:f6:39:8a:50:5a:6e:a9:85:d8:4e:3e:
fb:c0:c2:d7:70:ad:fe:e2:22:84:73:a7:88:fd:d8:
d5:8c:69:3c:17:86:c4:00:53:4e:c6:72:72:7c:62:
b7:2f:40:98:20:bd:80:09:8a:3d:6e:b6:42:3a:b0:
0d:96:e5:5b:21:b1:29:24:7c:be:ea:d4:4c:7e:b1:
e1:65:ea:d9:76:71:19:5e:70:28:92:46:c2:3f:75:
a5:83:05:ea:d4:6d:b4:f2:93:ed:70:74:87:ef:75:
35:5b:9f:6d:ae:c8:02:a0:dc:dc:c3:21:57:49:20:
d1:42:82:5b:02:9d:da:64:c2:b3:0f:ba:c5:5b:7b:
ba:99:48:45:22:62:c7:b2:46:3a:40:78:2a:ae:af:
7d:7f:7d:a3:29:0e:32:00:ba:15:e2:dc:9c:2a:0b:
53:28:7f:5c:dd:ce:38:fe:b0:17:0a:a0:04:d9:79:
19:83:d2:26:a5:61:60:2a:9c:64:58:20:84:e2:25:
99:5f:2e:3c:32:ed:b8:d6:cb:ee:79:09:87:53:1e:
05:66:c7:fb:fe:7c:53:dd:7b:c6:19:23:92:24:38:
e2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EB:BC:90:74:51:3F:6C:29:43:A1:C8:48:35:65:BE:1F:6C:8B:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB89E2CEB6CB11EF96C4BCB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.54.0/23
Signature Algorithm: sha256WithRSAEncryption
52:d3:2f:17:bd:97:80:88:62:f3:be:1d:67:ef:e1:5d:02:b0:
70:ca:c3:28:84:68:7a:86:4d:ca:de:81:66:19:6f:8f:57:70:
ac:73:63:38:3b:0f:79:b3:92:8f:88:4d:52:bf:46:33:6e:c2:
f3:89:f2:f1:6e:44:d1:9f:01:55:cb:b5:28:66:7e:5f:b2:89:
2b:a8:d2:a6:06:c6:ed:33:f3:3a:d4:bd:02:4e:e9:90:66:f4:
7e:46:77:48:4e:50:28:32:c7:e7:87:a8:63:64:0d:57:37:bb:
37:f1:27:83:48:4a:02:0b:5c:a4:7f:77:89:b1:1e:38:d7:67:
43:c1:6d:bb:cd:ea:7a:fe:63:57:1a:79:a8:41:0b:72:ec:a4:
63:b4:06:4a:4b:e6:a6:07:84:5f:97:5a:63:fe:e1:bb:24:b6:
fb:30:f2:ab:de:fa:fc:aa:7f:32:6f:39:47:ad:23:9a:95:8f:
8b:58:8e:15:4b:ae:69:4a:bc:69:a5:63:01:ed:d3:30:be:6a:
2e:e9:e6:ad:f4:e1:07:5c:97:b9:45:a4:c3:fc:7e:da:76:18:
b7:07:84:62:23:6d:eb:16:df:f7:bb:9c:16:bd:ea:b6:e2:fe:
f5:e7:12:ec:5f:47:d0:39:86:cf:9d:c4:c8:3b:9b:15:2f:97:
37:e8:f6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 11:37:36 2024 by rpki-client on console-fra.rpki-client.org