Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE08093EA9D011EF87D3C760762E951A.roa
File: FE08093EA9D011EF87D3C760762E951A.roa (raw, json)
Hash identifier: UIvJuAqFsrUsZawRCUfA9Suwal9huksag6iBl/l4wsI=
Subject key identifier: 42:09:33:BF:6F:BC:16:1B:FF:70:6E:3F:86:D3:82:76:32:AF:31:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01121C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE08093EA9D011EF87D3C760762E951A.roa
Signing time: Sat 23 Nov 2024 19:27:35 +0000
ROA not before: Sat 23 Nov 2024 19:27:31 +0000
ROA not after: Tue 03 Dec 2024 19:27:31 +0000
asID: 62240
IP address blocks: 154.194.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70172 (0x1121c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:27:31 2024 GMT
Not After : Dec 3 19:27:31 2024 GMT
Subject: CN=67422ca7-2a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:47:9b:ef:49:30:a8:0a:ce:25:0d:10:65:ae:
75:8a:56:01:9f:b1:92:e6:dd:58:1b:10:5c:3e:35:
b9:72:01:61:36:58:62:ec:38:a6:33:07:27:8f:07:
3a:ce:f3:42:f4:c4:54:fb:70:e7:7d:25:ed:1a:ab:
e2:1e:09:7d:17:8d:df:f7:5c:59:c6:d5:34:50:c2:
28:d9:f9:6b:32:69:bb:7e:f0:e5:6f:5d:dc:00:8d:
6a:27:a5:50:3b:99:a6:4d:bc:64:a3:17:2c:49:04:
81:f5:23:59:9a:d2:64:b3:9f:32:e8:50:84:8d:fb:
6a:63:90:e1:87:78:e5:ad:d3:6c:f8:2c:20:ea:78:
6d:5b:27:e7:06:87:19:fa:45:27:66:d2:79:2a:9b:
25:d2:de:42:f9:ac:87:fb:2d:1c:d0:2d:e2:14:73:
05:40:3b:9d:e3:d0:0c:6d:6b:6f:19:c2:69:2e:e7:
b0:98:62:7c:71:dd:21:ad:fb:61:43:fa:91:7f:5e:
5e:78:f0:7d:e4:a9:bf:78:75:ad:f7:ea:83:aa:5e:
24:a6:4f:b1:a1:ee:1c:eb:96:26:2c:21:ac:39:25:
74:fb:af:62:9d:bc:d0:83:50:9b:da:d7:ef:5c:eb:
d1:5e:63:f7:2e:c7:85:50:51:a8:a8:df:be:97:b4:
09:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:09:33:BF:6F:BC:16:1B:FF:70:6E:3F:86:D3:82:76:32:AF:31:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FE08093EA9D011EF87D3C760762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.72.0/21
Signature Algorithm: sha256WithRSAEncryption
c1:df:e1:a6:fd:e7:34:76:fb:10:ce:91:26:d5:f8:bb:c1:1d:
67:a6:8e:8e:31:2d:bf:58:57:5c:f5:af:e7:50:2f:3b:0f:ef:
e1:86:33:a2:ac:78:78:fd:ce:ba:19:a0:21:45:13:42:de:9f:
01:2b:0f:11:e4:6c:d7:81:5a:83:40:d9:b4:ca:5d:7f:30:b7:
43:89:9f:f6:33:0b:ce:d5:cb:3c:2e:4a:13:ce:05:b1:ae:e0:
26:53:e3:1f:96:f6:b8:95:af:a3:f9:8c:e2:cb:89:f8:a5:5d:
7f:ef:cb:ea:bd:9d:b2:81:83:1f:ea:4c:57:ba:a5:ad:c4:8a:
df:9f:20:08:a0:b6:71:cf:af:82:e8:15:64:26:6d:b8:e2:3d:
2f:2c:36:8e:13:d2:b8:61:62:ca:0d:bd:2c:32:b4:ab:4a:08:
a7:40:b0:80:ed:35:81:31:ca:37:da:27:3b:cb:53:f9:88:84:
84:63:12:9a:4e:8c:06:6e:49:e5:ee:59:0b:ee:f7:c1:01:72:
a3:4c:27:b9:27:53:09:53:6a:69:de:03:41:d0:c6:98:fd:86:
0f:b5:77:e1:ef:03:17:85:d1:96:20:8f:a0:7b:a0:71:f1:6c:
c4:03:7a:d5:5f:e7:02:51:db:aa:4c:28:ff:fc:5d:fe:0a:c0:
72:ef:65:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:54 2024 by rpki-client on console-fra.rpki-client.org