Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08B69A227F0F11EF9D4E4751762E951A.roa
File: 08B69A227F0F11EF9D4E4751762E951A.roa (raw, json)
Hash identifier: 8DinPYHpuVcBjRCMzwYgMBp08v0bTlOLD0EfavLz3FU=
Subject key identifier: 9A:FD:78:51:50:65:6C:6B:84:05:64:91:4C:1A:3D:B5:AB:C4:B3:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F5B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08B69A227F0F11EF9D4E4751762E951A.roa
Signing time: Mon 30 Sep 2024 09:33:22 +0000
ROA not before: Mon 30 Sep 2024 09:33:18 +0000
ROA not after: Sat 30 Nov 2024 09:33:18 +0000
asID: 136907
IP address blocks: 154.93.104.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62896 (0xf5b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 09:33:18 2024 GMT
Not After : Nov 30 09:33:18 2024 GMT
Subject: CN=66fa7062-14e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e4:aa:3d:bc:24:d1:ae:e4:1c:ae:4c:c0:46:
9f:8c:88:e2:a2:57:7e:74:04:03:72:f0:11:54:69:
c3:ba:33:ca:2e:5f:ed:b6:07:4c:43:58:88:36:3b:
c0:63:1d:aa:af:7a:88:15:bf:2f:de:78:d9:d8:07:
58:a6:34:3e:f8:18:c8:a1:12:9b:c4:7b:3e:9d:5a:
fd:9a:33:75:35:98:b0:1f:9b:5c:f5:10:f2:a7:d6:
02:a4:e9:f8:a3:51:b9:96:89:d4:40:ee:1b:0c:a1:
f9:1e:09:e8:c9:17:a1:8d:17:20:f4:04:37:a6:44:
73:c4:e3:3a:58:1f:de:25:88:89:02:d7:ed:a7:75:
1d:1f:16:3e:b7:40:42:d7:08:3e:33:4d:75:f7:49:
ed:5a:f9:c0:2d:9f:32:52:23:dc:3c:9f:3d:c0:d7:
36:b9:57:d7:4a:91:5b:bb:27:98:b6:1f:da:17:ee:
b6:86:42:33:3a:51:b9:c4:d5:84:1e:c8:40:c7:8a:
23:22:9f:6c:57:d4:89:0d:4e:01:2a:59:45:41:f5:
93:33:23:de:ed:17:ed:ea:d2:a9:cf:e6:17:68:a0:
e9:ef:be:cd:00:7c:ef:5d:01:bf:60:32:96:13:49:
4f:8a:ef:b4:a1:20:e3:e2:a4:ab:7a:59:33:d6:0c:
64:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:FD:78:51:50:65:6C:6B:84:05:64:91:4C:1A:3D:B5:AB:C4:B3:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08B69A227F0F11EF9D4E4751762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
24:81:fd:a2:a0:78:ea:4c:16:6d:a9:a4:42:e6:40:a9:69:dd:
26:d8:0a:b4:57:c1:ee:86:a9:1a:ff:bc:9f:82:cb:54:a0:a6:
35:43:92:f7:ad:01:7c:90:dc:a1:ad:3a:94:64:c4:aa:e3:ab:
b9:93:6c:6e:41:11:10:e7:80:e2:35:8e:73:2c:1b:84:ef:d6:
7e:b5:a0:b3:90:61:dd:ce:67:12:9b:d5:95:db:c0:c7:e2:f0:
70:9f:55:6f:2a:59:7b:ba:da:af:92:0e:1b:25:89:be:ad:74:
7a:dc:d7:be:43:24:a3:c9:2e:89:95:ce:64:f2:55:72:49:d4:
d9:b9:a5:0f:99:c4:52:df:c6:4d:85:87:20:64:a0:7a:86:cf:
7f:8c:af:83:f9:9b:9f:22:05:c5:ac:0f:07:6c:c0:61:93:a0:
9c:e0:62:7a:1c:bd:37:9d:c0:f5:ec:8a:3b:3a:d9:1f:c5:90:
2e:d1:68:11:68:4a:ea:38:7f:1f:5a:03:9f:fe:43:0f:3b:e6:
63:d1:c7:af:75:04:6c:19:a3:4c:57:8b:3a:47:28:11:91:9a:
97:40:d9:74:ba:ca:ee:16:4f:87:0d:e3:1f:bb:4c:6e:ee:20:
82:ad:e7:91:70:c5:a1:56:88:31:02:0f:2e:c1:5c:e8:14:24:
77:b5:3e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:53 2024 by rpki-client on console-ams.rpki-client.org