Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09B997BC4A5811EF961C4856762E951A.roa
File: 09B997BC4A5811EF961C4856762E951A.roa (raw, json)
Hash identifier: oATNjjlHH7SCaFxbl9UFSyjNzIFriFP2ioESaIIZQOg=
Subject key identifier: 11:04:7B:38:34:F6:8B:F9:6E:C4:EB:F9:B7:F0:0E:6C:BD:2A:17:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D6CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09B997BC4A5811EF961C4856762E951A.roa
Signing time: Thu 25 Jul 2024 07:32:25 +0000
ROA not before: Thu 25 Jul 2024 07:32:22 +0000
ROA not after: Fri 11 Jul 2025 07:32:22 +0000
asID: 42960
IP address blocks: 154.91.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54988 (0xd6cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 07:32:22 2024 GMT
Not After : Jul 11 07:32:22 2025 GMT
Subject: CN=66a1ff89-4a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:61:a2:b6:fe:9d:78:a7:a9:a9:af:8d:9b:
ee:85:dd:e7:19:95:f7:c0:1f:b1:ed:f6:0e:c8:0f:
17:00:a5:4c:33:b5:a3:bf:cb:b7:c1:b5:d1:bb:56:
fd:49:fd:03:2f:76:4b:1b:11:1d:f7:61:92:9b:81:
d1:f7:0c:fb:d1:54:57:34:42:ff:57:ea:66:bc:1e:
a7:3e:36:26:19:f7:57:95:44:bd:9d:e7:a8:33:b2:
7d:8b:41:2e:b4:74:ff:0c:7a:3d:e1:bf:5c:1e:57:
cf:c5:09:fa:df:8e:79:25:84:a4:c7:81:34:a0:b1:
0c:78:72:dc:00:ad:6f:82:07:df:79:ab:ca:f0:20:
0d:1a:36:02:eb:c1:dd:d5:7d:43:83:5f:32:43:12:
f5:fc:a5:9d:3c:12:2d:58:7e:4b:c1:eb:17:e9:84:
d5:8c:93:dc:6c:59:11:27:66:56:de:66:78:b7:27:
c2:c2:e9:d8:53:ea:a0:ca:e5:8e:3f:cc:09:f8:e6:
6b:72:5e:b8:a1:9b:50:fb:36:32:80:c8:9d:00:fe:
35:a2:9f:1a:da:d9:ca:70:2e:35:0e:0c:e0:8c:c0:
fb:a8:16:f0:f8:6f:5a:93:ad:07:84:fe:91:7d:32:
e4:68:8e:d8:3f:cd:d1:21:0b:85:d0:05:53:ff:fd:
8e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:04:7B:38:34:F6:8B:F9:6E:C4:EB:F9:B7:F0:0E:6C:BD:2A:17:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09B997BC4A5811EF961C4856762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.196.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:96:9d:67:82:c7:19:92:b1:3d:79:95:53:c6:6e:8d:a1:f8:
4e:90:69:c7:d0:ae:54:b4:75:af:92:50:c7:34:65:34:56:ac:
08:4c:26:f1:df:31:69:d1:da:92:22:a9:36:ea:86:34:52:e4:
0d:c6:34:ae:e5:1a:ed:e5:1d:43:00:03:0b:57:02:34:ce:74:
53:a9:c3:b2:b4:0d:eb:84:59:ee:e5:ed:6b:aa:da:f1:5e:34:
17:a5:7f:60:eb:54:80:0c:42:38:51:92:3e:1d:37:25:40:8d:
3d:dc:96:84:34:57:3e:2c:f1:90:da:00:97:97:bf:7f:57:ef:
df:31:78:0f:4b:67:7c:ca:2f:1f:f4:63:01:5a:51:81:72:4a:
45:54:f5:42:0e:4c:5f:c7:cf:a2:24:40:fc:33:76:74:e8:26:
e8:a0:4c:99:72:d2:27:7e:88:ff:0c:af:7a:85:a0:8b:5c:94:
ae:68:94:95:6d:ae:50:7c:2b:5a:18:4f:68:3a:59:83:da:4a:
65:7c:76:c5:02:f3:83:86:12:8e:a0:65:d8:d7:c8:54:48:05:
ee:c4:32:16:96:8a:b5:b7:60:56:07:b4:dc:dd:aa:b4:20:96:
3e:05:8e:7e:72:29:da:f4:ff:a4:a5:29:9b:98:7a:ca:c9:d4:
67:6f:cb:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:02 2024 by rpki-client on console-fra.rpki-client.org