Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/094C0FAAA44211EFB092416B762E951A.roa
File: 094C0FAAA44211EFB092416B762E951A.roa (raw, json)
Hash identifier: GYyIT/terXTtnhhQWf9jupt6jLdh7aUipswr4ChFsSo=
Subject key identifier: 2F:E3:BA:57:7F:64:B9:A4:E2:C7:DE:D1:D8:53:B4:DE:5F:B7:DC:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DC7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/094C0FAAA44211EFB092416B762E951A.roa
Signing time: Sat 16 Nov 2024 17:41:40 +0000
ROA not before: Sat 16 Nov 2024 17:41:37 +0000
ROA not after: Sun 12 Jul 2026 17:41:37 +0000
asID: 55967
IP address blocks: 154.85.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69063 (0x10dc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:41:37 2024 GMT
Not After : Jul 12 17:41:37 2026 GMT
Subject: CN=6738d954-1913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:59:3f:d4:4c:50:7e:99:d7:34:a3:95:6e:5d:
b0:83:7d:e0:66:a1:c9:fa:4e:99:c1:db:36:bb:69:
64:19:eb:58:f0:bd:78:2c:b3:9d:07:ce:fe:12:03:
7c:ff:b7:27:46:00:c7:4e:02:6d:4e:5c:30:98:e4:
cc:65:db:84:aa:bb:5a:f4:b2:64:8a:b6:59:9f:2b:
df:59:83:67:fc:e1:03:b1:95:9a:00:9e:80:67:40:
f7:79:22:2d:3d:eb:f7:3e:c1:ce:3d:09:04:c6:26:
c8:a1:30:e3:95:15:9a:a2:90:fa:6c:57:25:e3:c7:
31:da:50:02:f3:7d:e0:86:3e:b6:97:69:5d:af:fc:
d4:74:b3:17:18:8a:18:65:47:a9:67:f4:4f:7d:9b:
a6:1b:05:db:fb:34:d0:80:9d:cf:08:62:f4:a0:24:
f8:23:0a:14:3f:01:a4:ee:7c:da:4a:f5:2c:82:9f:
ab:2a:5d:00:09:43:dc:f6:36:a0:b0:91:97:76:f3:
39:70:4a:27:80:83:ac:06:a2:e3:a0:a6:e9:d3:9b:
85:17:51:be:b2:b7:9c:87:b8:46:72:7b:83:9e:f2:
e0:50:fd:a3:b7:85:72:37:32:5e:88:5d:f0:c8:f8:
69:77:a3:82:f1:56:b5:bc:3b:5e:2d:48:91:6b:cc:
50:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E3:BA:57:7F:64:B9:A4:E2:C7:DE:D1:D8:53:B4:DE:5F:B7:DC:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/094C0FAAA44211EFB092416B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.40.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:ed:9f:ee:de:3d:51:01:cf:08:68:a3:95:72:00:05:9e:c1:
13:b6:86:78:e4:7f:da:40:74:7a:1c:bc:21:32:d1:04:5a:c2:
77:5e:ea:09:77:2e:d5:6a:cb:2d:23:18:0f:4e:be:43:9e:11:
c8:f3:8c:aa:b1:33:65:3d:c2:b0:9e:1d:53:3c:09:f8:d4:6b:
4e:f5:4a:96:f2:c7:ac:4f:86:97:eb:c3:91:16:63:66:bd:74:
96:a4:92:ea:bb:b7:69:64:bd:cd:ff:d3:78:4c:06:57:2a:4d:
ca:e0:48:94:76:76:cb:96:f9:04:0b:10:f3:60:06:c6:a7:06:
5e:39:95:24:a9:d7:91:94:33:89:3f:b2:fb:11:07:84:c8:a0:
95:98:d6:a2:52:86:a9:12:fc:3b:be:a4:34:a9:e9:a3:36:f8:
f0:a8:0a:88:ac:e5:55:b5:90:a8:d9:5a:a3:b5:78:2d:a0:92:
53:fe:1a:ef:8f:45:52:df:9c:24:ce:d7:f3:20:f5:c0:12:e5:
8d:df:d0:19:59:26:65:80:7d:5b:cd:e9:ad:0c:9a:38:e0:5d:
50:2b:9c:06:97:59:79:ba:ee:31:2c:3c:8e:47:2c:aa:95:21:
37:24:0a:37:ec:65:88:93:85:80:7d:3a:2d:8b:20:58:79:12:
07:26:bd:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:21 2024 by rpki-client on console-fra.rpki-client.org