Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0940E100725811EF9EFD2668762E951A.roa
File: 0940E100725811EF9EFD2668762E951A.roa (raw, json)
Hash identifier: QPIRZkqLw4PsvDZUHDZYw2obuM9fuDJl+aoEXYtlQ3E=
Subject key identifier: FC:B5:7B:A6:C7:82:D1:C7:ED:91:94:FC:B9:76:14:26:E8:45:CA:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EDDA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0940E100725811EF9EFD2668762E951A.roa
Signing time: Sat 14 Sep 2024 05:13:11 +0000
ROA not before: Sat 14 Sep 2024 05:13:08 +0000
ROA not after: Tue 31 Dec 2024 05:13:08 +0000
asID: 17561
IP address blocks: 154.217.112.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60890 (0xedda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 05:13:08 2024 GMT
Not After : Dec 31 05:13:08 2024 GMT
Subject: CN=66e51b67-6dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:14:0e:97:9f:f3:15:7e:f4:8d:66:d2:8f:
7c:6b:42:49:d2:6d:6d:3e:67:33:fe:1e:77:67:44:
73:e4:9f:27:1b:e0:97:16:1b:c4:4a:cc:91:86:2e:
9f:d1:d8:08:ac:81:94:86:59:43:a1:7a:e5:c1:3f:
64:c7:d6:d2:ce:33:56:4a:f9:2f:4b:93:56:d4:88:
65:37:2f:7b:d7:58:2c:9e:a1:14:0b:2b:85:c7:bf:
80:ec:97:7a:bb:0e:88:ba:56:8c:34:9e:bd:d9:b2:
e6:28:cb:36:22:47:f5:bc:d4:a0:eb:28:bb:e3:ce:
3f:0e:40:63:83:c8:d9:b1:41:c4:7f:aa:21:c5:3c:
02:66:7b:da:e6:5c:30:f5:82:1c:e9:4e:aa:2c:bd:
78:cc:a6:e3:4e:57:fb:83:d0:32:29:02:c7:94:6d:
8c:b5:36:ba:7c:32:c6:68:ce:63:2c:bd:20:2e:a3:
5d:f5:30:55:02:ea:78:1b:24:d0:84:51:55:9e:07:
e6:ec:bf:c2:99:3a:9e:e1:40:38:7f:98:d2:a6:23:
94:11:cc:73:a1:cf:55:e2:fa:32:c6:44:57:f5:ad:
73:65:5d:1f:fc:ce:fd:ac:df:ee:7d:c1:0d:74:21:
df:a0:2b:25:66:c7:27:d7:e9:dc:a0:6e:62:b7:40:
d4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B5:7B:A6:C7:82:D1:C7:ED:91:94:FC:B9:76:14:26:E8:45:CA:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0940E100725811EF9EFD2668762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.112.0/20
Signature Algorithm: sha256WithRSAEncryption
d3:92:66:7e:65:2f:fe:21:d7:34:79:ae:1b:2d:63:94:67:02:
6d:21:86:d5:38:c8:27:5b:07:13:ae:a3:09:7c:a0:38:71:53:
fb:f4:da:b4:cf:ee:4d:fc:4a:07:87:05:c9:a1:88:3b:07:5d:
8b:4e:01:8f:62:47:4c:b5:32:60:21:43:11:33:a4:94:9b:ff:
71:04:bc:ec:7a:32:82:59:1e:40:87:14:d1:4b:02:70:a0:e3:
e3:46:fd:45:ee:f6:ba:5e:cb:50:2c:f2:75:07:2a:7a:31:8e:
6c:00:a1:ea:c2:6f:2a:09:aa:17:d4:ce:46:74:1d:20:ac:e3:
b4:33:51:0e:fd:4c:95:a7:77:e5:f5:08:d9:10:0c:6d:0e:e5:
4c:6f:68:fd:64:9f:13:eb:29:7b:0c:27:03:06:05:06:c0:ac:
d0:7e:be:4f:cd:1f:c5:9c:1d:d5:a9:23:4d:30:a1:5a:95:4e:
40:20:52:50:db:45:1a:9d:82:20:4c:cd:83:ca:ae:14:5c:ab:
90:78:c7:ed:f3:1c:7d:ed:28:6c:6f:c6:a9:6a:c8:01:a1:d3:
15:9e:99:61:ae:52:40:94:e3:f4:c0:58:e6:31:ac:b4:c2:c0:
02:89:40:d6:8c:54:7e:f2:a4:7d:73:59:68:09:57:70:d7:61:
23:9b:40:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:54 2024 by rpki-client on console-ams.rpki-client.org