Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E91C3B2339C11EFABA44359762E951A.roa
File: 1E91C3B2339C11EFABA44359762E951A.roa (raw, json)
Hash identifier: MItdEC5mSjojBRblVw0ylwb3qMNNZApXXv2tFEv9z+g=
Subject key identifier: C9:1A:C2:09:DE:44:0B:C4:57:B1:9B:19:FE:C7:74:DB:72:D4:61:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C764
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E91C3B2339C11EFABA44359762E951A.roa
Signing time: Wed 26 Jun 2024 09:11:50 +0000
ROA not before: Wed 26 Jun 2024 09:11:46 +0000
ROA not after: Mon 30 Dec 2024 09:11:46 +0000
asID: 984
IP address blocks: 154.90.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51044 (0xc764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 26 09:11:46 2024 GMT
Not After : Dec 30 09:11:46 2024 GMT
Subject: CN=667bdb55-5ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7a:3d:1a:ff:b9:4c:c7:e4:72:40:85:8d:31:
bc:c4:69:35:0d:12:e2:b8:04:92:7a:ca:b1:27:2e:
ec:18:c1:44:2c:1c:cc:8a:53:a6:b8:c5:bb:28:33:
ce:a1:18:78:51:64:18:97:75:7d:65:dc:49:46:af:
72:a7:77:e5:f4:98:34:42:24:e5:40:0a:72:9d:43:
72:63:7a:1e:10:c0:85:2c:7d:5a:82:cc:4b:e6:6e:
44:31:70:b1:c1:d0:c4:ed:ff:eb:69:4a:a1:83:74:
90:c9:8e:bd:ac:4e:1c:a9:75:28:b7:70:e2:c7:d9:
56:10:41:b3:2e:31:81:f9:23:ff:05:d2:31:d1:34:
70:d1:29:c0:22:bd:b7:98:62:96:cb:6e:0c:be:51:
2b:35:66:fe:dc:f0:47:a4:30:dd:d0:64:71:f5:40:
be:78:1a:be:c8:7f:0e:25:34:0e:be:30:17:d9:c3:
c3:42:cb:5f:60:0d:6a:a0:a7:e8:f9:fd:3f:05:a9:
d0:04:1a:3d:8f:fb:20:29:7f:43:c4:59:ac:6d:63:
e3:61:f6:e9:b2:17:37:60:61:4c:3c:c7:8b:f4:f8:
3c:db:ec:f6:70:b8:86:89:47:7e:91:b6:a5:3e:7c:
a8:ba:51:bb:62:22:bb:ca:99:76:24:e7:ac:3a:53:
ed:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1A:C2:09:DE:44:0B:C4:57:B1:9B:19:FE:C7:74:DB:72:D4:61:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E91C3B2339C11EFABA44359762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b5:bb:52:1d:f4:bf:a4:16:9b:98:fa:a5:3b:3a:3f:48:82:de:
7d:2d:a2:9b:6e:3e:01:44:26:5f:ff:6e:8c:34:72:86:82:f1:
ff:40:85:f1:a7:8b:47:5e:26:47:38:30:3d:38:80:95:e2:ac:
ee:b6:ed:a3:65:83:5c:65:cd:6c:36:95:b7:72:06:91:7a:f4:
0b:e1:2c:87:26:8d:ae:16:61:a8:e3:35:c8:b6:9d:f0:d1:20:
17:2f:6e:ac:0d:26:af:6e:40:45:93:c3:3d:79:c6:28:09:4b:
74:47:ea:be:8f:39:74:ef:2e:6c:4d:6c:f4:27:0d:df:07:ae:
4e:e0:d5:f5:ea:cd:8a:67:ba:af:fe:9e:33:97:42:b8:9f:2b:
c7:0f:04:f0:e1:7f:8c:81:13:58:bb:c5:eb:ba:69:94:29:c6:
17:9e:32:a1:e4:ad:90:f3:5b:eb:de:1c:6f:d9:03:66:77:58:
8d:fe:36:a9:cc:8e:9d:5c:19:4a:ba:b1:ca:bf:79:25:98:15:
a6:9e:ac:ca:0e:53:a5:ac:b0:81:c9:da:c6:76:da:52:89:b1:
9e:15:c6:86:79:1a:bc:15:6a:59:66:e0:f3:ef:c5:07:dd:e9:
d1:60:20:ce:19:82:f6:70:4a:5f:72:e7:f5:ab:1d:f6:94:33:
b7:22:2b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org