Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AF1332AA9BF11EF865A3F70762E951A.roa
File: 1AF1332AA9BF11EF865A3F70762E951A.roa (raw, json)
Hash identifier: Wdr9d41CR+PQ9WmIFiXUTAcpa7UbBEsycd7aX0k484c=
Subject key identifier: 28:0A:91:2A:A4:FA:2E:3F:26:B1:82:0C:4C:79:9C:D8:7C:56:EA:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AF1332AA9BF11EF865A3F70762E951A.roa
Signing time: Sat 23 Nov 2024 17:19:33 +0000
ROA not before: Sat 23 Nov 2024 17:19:29 +0000
ROA not after: Mon 02 Dec 2024 17:19:29 +0000
asID: 44559
IP address blocks: 154.94.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70072 (0x111b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:19:29 2024 GMT
Not After : Dec 2 17:19:29 2024 GMT
Subject: CN=67420ea5-79d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d6:56:e1:03:c3:c6:d2:2c:ea:18:10:bd:13:
76:5a:db:ff:07:66:64:2a:4f:95:b0:42:c9:53:4e:
19:dd:6f:0b:3c:fd:de:5f:81:2e:c2:38:df:87:4c:
08:4c:f3:11:73:68:db:24:9c:41:d3:86:89:e5:aa:
3a:75:f4:08:a9:7f:98:33:22:3a:45:8a:88:fe:1c:
75:e3:b8:a5:9e:de:95:65:62:ce:06:73:cc:7d:da:
b6:0f:1e:73:51:d9:bb:a6:8e:37:ac:e8:ef:51:f4:
8b:e5:63:b5:69:36:14:d3:ce:84:e5:d4:2a:f1:fe:
13:b1:98:43:1e:f2:fb:5e:be:af:17:d9:5d:27:53:
67:92:29:b1:3f:9c:d1:97:13:d1:db:0c:be:43:2d:
0a:ae:d1:49:57:54:0c:aa:de:36:69:04:0c:17:41:
e4:e3:d3:23:47:b8:4a:46:82:62:06:f2:36:14:90:
54:15:11:92:ad:0a:2f:b1:24:e0:de:fb:48:d3:e6:
dc:f8:9d:da:63:ee:89:80:8d:42:41:2f:6f:83:48:
54:aa:d2:37:a7:03:ec:16:b6:39:fb:0d:5a:53:95:
ab:0b:cd:45:6f:e6:b6:fd:59:bf:9b:0e:d6:7c:ba:
f6:3e:d2:8e:c2:61:28:d2:2e:50:ab:1c:dd:c2:e6:
19:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0A:91:2A:A4:FA:2E:3F:26:B1:82:0C:4C:79:9C:D8:7C:56:EA:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AF1332AA9BF11EF865A3F70762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.240.0/24
Signature Algorithm: sha256WithRSAEncryption
02:4d:0a:ae:a3:ff:e8:83:13:18:8d:b9:ed:75:69:7a:17:ba:
1f:5d:60:23:b6:0a:2e:83:90:d2:16:d8:51:e0:70:39:61:c4:
8f:0d:12:9d:58:10:9f:97:5e:32:22:aa:54:15:94:40:36:4f:
2e:6c:11:29:a0:83:48:1c:98:32:9e:93:d5:7c:2a:b9:47:d7:
e6:51:e4:e3:a6:c2:74:8f:cc:44:22:13:39:17:55:89:f4:6c:
db:c5:26:dd:f1:a2:57:c7:17:bf:2e:38:51:71:1c:ed:77:46:
80:de:54:99:af:c7:76:9d:28:83:40:80:38:ba:79:25:02:41:
70:41:74:16:e2:92:45:e4:24:0b:1a:6f:f2:3b:12:47:7f:2f:
97:ff:f8:ce:e0:ae:b4:0b:96:cc:ca:2e:55:05:8b:10:dc:44:
f8:a6:5a:94:a8:89:8e:a1:0e:e8:d2:e2:d5:d2:83:03:f4:c3:
df:c9:15:fe:d9:02:07:9f:61:3c:4a:9c:ac:22:1e:57:ee:9c:
62:7c:07:aa:a4:2e:2b:67:4e:67:48:fd:42:d0:39:f2:bd:d7:
45:fd:f8:a1:7a:bc:ef:5d:fd:12:b8:05:ec:51:77:6b:88:9a:
4b:02:b7:39:22:b0:b0:f3:be:6f:ca:94:d4:7c:83:f1:36:f3:
a2:e7:4f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:23 2024 by rpki-client on console-fra.rpki-client.org