Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/095AF670A8E611EFB700B89C762E951A.roa
File: 095AF670A8E611EFB700B89C762E951A.roa (raw, json)
Hash identifier: HQ4hyQRubK62Zpwpmtt2qPLWjA84FGa5Q8s7XP/SZ1g=
Subject key identifier: 57:3C:25:5E:7B:4A:70:8F:A5:05:39:87:1F:DC:6B:08:DF:7D:16:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/095AF670A8E611EFB700B89C762E951A.roa
Signing time: Fri 22 Nov 2024 15:25:42 +0000
ROA not before: Fri 22 Nov 2024 15:25:39 +0000
ROA not after: Tue 03 Dec 2024 15:25:39 +0000
asID: 62240
IP address blocks: 154.194.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69839 (0x110cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:25:39 2024 GMT
Not After : Dec 3 15:25:39 2024 GMT
Subject: CN=6740a276-760d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:75:cc:74:b7:ff:9b:ec:ff:0a:49:0c:cf:88:
6c:c3:0f:99:6b:52:61:65:e3:f0:65:a2:0d:b1:ed:
79:68:33:28:76:89:42:64:df:18:a0:d2:49:fc:ab:
ba:eb:be:5d:e3:71:9e:f7:0e:75:41:cf:e7:4f:72:
ce:36:07:0f:73:57:28:00:8d:02:5b:ff:ac:6d:29:
6b:4e:bf:9a:c3:ce:2b:1b:33:5b:36:a6:3f:65:85:
c4:87:b2:6c:3f:99:cb:68:f2:96:02:e9:88:f7:1a:
38:45:54:df:53:2c:b3:aa:cf:4a:34:32:c8:9b:5e:
d6:e3:18:c1:34:88:53:53:4e:3a:18:3f:82:d1:1d:
c6:9e:5c:26:29:6c:2e:96:38:e2:5e:81:d6:b5:db:
18:48:b8:40:aa:55:72:87:cf:7c:1e:2a:92:f4:56:
8f:f8:62:3f:ff:83:c3:23:e4:e1:c8:cf:1d:9c:92:
02:58:af:bc:24:0f:ef:46:b4:54:70:71:b9:45:02:
ea:46:2f:fa:93:fb:15:b8:62:5b:56:2b:75:2a:c6:
d1:10:50:2e:71:f2:38:66:9f:92:28:43:bd:c4:a8:
2d:c4:be:bb:a2:2c:e4:18:45:b3:7b:f5:6f:e7:b3:
61:20:d0:d1:96:7d:94:34:99:95:cf:1a:01:d5:18:
77:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3C:25:5E:7B:4A:70:8F:A5:05:39:87:1F:DC:6B:08:DF:7D:16:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/095AF670A8E611EFB700B89C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.104.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d7:91:db:f1:d9:7c:70:ac:6e:0c:8f:d3:c0:0f:43:08:82:
74:89:32:b2:b7:4c:72:b7:22:ef:50:3f:42:43:10:1c:b7:de:
2f:2d:59:4a:b0:ee:14:01:77:37:9d:90:79:3c:f9:2e:44:d3:
62:9c:c1:63:03:bf:94:04:27:7b:a8:90:2a:cf:ca:e5:95:03:
e5:61:5d:1f:c2:36:f6:bc:34:10:92:dd:dd:da:bc:e1:8e:e5:
a9:33:04:d7:0e:48:b2:fd:c4:7b:78:a1:8b:41:32:77:60:9a:
e4:34:d4:11:34:82:d2:cb:6c:7c:e0:d6:dd:da:3d:0b:7f:eb:
67:66:ed:9d:6d:50:2b:91:38:e1:ad:a0:c3:a9:f5:97:11:96:
5b:21:c4:c1:76:ad:b9:f0:67:63:2b:63:57:05:e0:99:29:61:
93:12:ee:e9:e5:84:12:af:45:73:3e:00:3f:ec:b4:d4:a2:43:
ee:ec:69:37:f6:ca:d7:6b:81:e2:a8:28:95:47:8d:b7:6a:fb:
92:cb:74:e1:9f:bc:21:dd:8b:ed:34:da:1b:07:e5:5f:f8:b2:
e1:53:a4:8d:07:29:53:2c:fb:6d:53:51:91:ba:ca:55:50:6f:
bb:ce:88:fa:92:b2:d1:43:fd:53:7e:58:73:77:9b:63:8f:3e:
c7:60:2d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:54 2024 by rpki-client on console-ams.rpki-client.org