Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/105D0DEA9F8211EFBC6E275C762E951A.roa
File: 105D0DEA9F8211EFBC6E275C762E951A.roa (raw, json)
Hash identifier: DZDbBz71aesTJM6s70J9WXZNLQEUcL+Sq63DORk4x4k=
Subject key identifier: 45:F9:07:E9:E7:F3:33:2B:3D:D3:48:73:DD:CE:9C:40:24:D4:57:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/105D0DEA9F8211EFBC6E275C762E951A.roa
Signing time: Sun 10 Nov 2024 16:37:24 +0000
ROA not before: Sun 10 Nov 2024 16:37:20 +0000
ROA not after: Fri 17 Oct 2025 16:37:20 +0000
asID: 137443
IP address blocks: 154.91.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68386 (0x10b22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 16:37:20 2024 GMT
Not After : Oct 17 16:37:20 2025 GMT
Subject: CN=6730e144-6aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b9:96:43:75:40:04:aa:44:21:ee:dc:7b:8a:
34:57:94:eb:81:00:06:e2:95:02:44:db:35:12:60:
e2:3f:d2:74:be:ac:9e:b1:bf:02:0b:60:5e:ca:d9:
50:91:ad:ff:6b:1b:37:51:e0:df:2d:90:ac:f1:13:
fa:ad:0a:26:d2:a2:d1:d0:b6:ba:f3:49:34:f7:10:
51:92:de:19:04:1d:91:c4:9c:a3:f4:f5:4f:6a:27:
2c:c3:a2:11:1a:b1:77:b0:f2:8b:e2:95:69:21:4c:
e1:af:90:8b:f7:7a:4a:5c:17:3d:c9:3e:86:72:4b:
89:b3:60:12:9a:31:3a:a6:3a:0d:a3:1f:8e:90:3c:
01:b6:0a:e0:60:e1:19:be:89:22:52:54:89:ec:a7:
97:cf:af:d0:94:c0:6e:4b:4e:f3:38:16:0d:a8:61:
22:91:13:a2:e8:bd:af:ae:56:2e:9c:f0:e8:88:85:
4b:ff:c8:b4:95:3b:cd:98:5f:c0:8f:4e:8c:dd:20:
f1:84:af:af:f5:93:d6:0d:61:20:2c:59:6a:74:5f:
66:8a:ed:d6:e0:8d:0f:2a:1a:be:b5:b9:9c:c2:17:
83:bd:b5:9e:74:69:f8:1a:1a:3c:05:60:28:85:81:
95:a3:fe:f7:ed:c0:67:ea:6b:c8:0d:b3:cc:2c:e5:
46:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F9:07:E9:E7:F3:33:2B:3D:D3:48:73:DD:CE:9C:40:24:D4:57:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/105D0DEA9F8211EFBC6E275C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.34.0/24
Signature Algorithm: sha256WithRSAEncryption
85:45:b4:c2:0b:47:63:34:b7:e5:b2:b6:fc:2e:91:ed:fe:b8:
5c:5c:7a:a8:82:79:cb:77:54:d0:15:ec:0e:84:38:a2:dd:84:
51:cb:1b:f7:ff:f6:fa:d6:bc:21:81:91:8d:3f:26:d3:3b:1c:
01:df:9c:1d:1e:27:90:19:fe:db:52:11:51:09:d9:80:68:f4:
28:60:20:80:a4:48:8b:85:d1:5b:57:94:47:f9:bb:98:9b:73:
d4:a2:c3:29:bf:5c:03:ce:86:be:8a:75:df:f7:29:21:1b:ef:
44:49:1e:bf:85:1e:76:ac:3f:69:74:b2:7d:66:a7:cc:56:40:
3b:a8:81:fc:21:53:e6:9c:ab:fc:4b:f5:cb:8f:f6:31:bb:86:
38:c1:f6:f8:8e:3d:c8:39:8e:54:5a:b2:93:43:db:43:1b:6f:
ff:1d:6e:34:a1:ab:32:9d:8a:d1:a1:74:a5:ed:f9:51:d4:81:
5e:56:21:8a:85:07:15:3e:7e:0c:a5:df:c6:14:8d:b7:b9:4f:
70:8f:36:65:f1:08:fc:d8:47:eb:3e:7f:9c:e8:15:67:f2:32:
6c:28:85:e0:dd:e6:51:1b:09:4d:f8:d1:a5:e0:00:dc:8f:2f:
7e:3b:87:2e:6e:c9:4f:28:6b:f6:71:8d:1a:0b:6e:73:3d:b2:
7f:ed:28:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:59 2024 by rpki-client on console-fra.rpki-client.org