Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C9B1194A71D11EF9E3C8E63762E951A.roa
File: 2C9B1194A71D11EF9E3C8E63762E951A.roa (raw, json)
Hash identifier: x6tKlvQOsTGVufWwOwKcg1xK7wRvEIoj7nVEWPWn4+A=
Subject key identifier: 5E:8C:4D:F1:D8:1D:2D:C9:AA:E2:6C:65:40:E5:A4:18:6D:54:EA:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F43
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C9B1194A71D11EF9E3C8E63762E951A.roa
Signing time: Wed 20 Nov 2024 08:55:22 +0000
ROA not before: Wed 20 Nov 2024 08:55:18 +0000
ROA not after: Thu 05 Dec 2024 08:55:18 +0000
asID: 39600
IP address blocks: 154.94.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69443 (0x10f43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 08:55:18 2024 GMT
Not After : Dec 5 08:55:18 2024 GMT
Subject: CN=673da3fa-a5f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9b:72:87:74:c5:3d:c6:87:9e:8c:e5:5e:e9:
6e:c7:39:9e:1f:18:11:6d:8d:60:2f:d7:d3:25:ee:
38:f3:e8:0f:e3:15:18:e6:88:92:84:9f:fa:75:ef:
86:c6:7d:a4:e8:ec:1f:26:65:bf:0b:74:04:9e:03:
07:6a:56:ae:7c:73:60:5c:94:e1:45:b3:7d:50:05:
d0:09:e1:dd:7c:db:ac:ae:75:81:48:a7:74:74:fd:
50:ae:b1:04:d9:27:71:e0:fa:04:05:b7:85:a6:50:
78:7d:04:17:36:e9:a2:a8:d3:80:f1:84:76:39:43:
a3:98:27:e0:1f:f8:83:18:17:11:49:e9:b8:59:c7:
b5:fc:04:63:d6:83:65:d1:c0:c2:29:e8:a9:29:6b:
ac:fe:79:35:ed:66:f2:ce:6f:73:77:e3:89:ed:94:
7c:89:f9:9d:4d:05:59:b0:d7:d1:c2:3a:f4:69:4c:
eb:8b:0c:d0:2b:f5:a2:a3:9a:8b:6a:d1:54:4f:86:
fe:22:33:a1:32:fe:02:aa:1b:ee:09:02:15:9f:3d:
78:25:f1:31:34:ef:7d:48:04:dd:a2:bd:f1:81:d7:
e4:8a:e3:28:67:b9:c3:c5:08:38:e8:6c:79:5d:ce:
ba:c5:11:d0:c8:74:4c:9c:f8:67:e2:c0:34:a6:40:
59:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8C:4D:F1:D8:1D:2D:C9:AA:E2:6C:65:40:E5:A4:18:6D:54:EA:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C9B1194A71D11EF9E3C8E63762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.33.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:ab:aa:b7:ca:54:9e:46:da:0b:87:ec:12:ac:3e:28:ec:26:
a5:96:e0:10:83:3a:33:81:20:52:63:be:64:95:81:39:8f:d2:
e0:d8:64:bb:93:f2:14:68:98:26:de:b0:95:83:cc:4c:ef:ae:
e4:8e:1a:8c:0a:9d:a0:8b:b4:5e:2d:f6:d1:ab:94:8a:41:73:
91:e1:f8:7f:67:17:74:c6:79:61:be:a3:26:4a:3e:2d:23:99:
54:55:b4:89:b0:73:5a:ec:c2:dc:cf:3c:73:14:33:ef:4d:19:
05:8c:3e:94:22:08:21:69:a9:4d:f2:3e:19:1e:c2:2b:42:47:
14:9c:25:bc:dc:d1:0c:26:92:7c:21:f1:c2:08:d7:21:de:ce:
fc:b5:0e:69:11:68:6d:99:f2:d6:05:32:98:93:4f:65:2c:6f:
a5:3f:3d:2a:71:4c:e6:02:23:2b:f2:60:fa:24:ae:32:c3:26:
13:d2:71:81:9b:8e:51:f6:42:bf:33:55:1a:28:fe:15:87:7e:
38:e8:98:35:4f:be:10:6d:d6:1f:c4:a9:5a:eb:b7:33:d2:87:
29:3a:7a:77:f9:9e:94:41:db:f0:6f:9f:e5:f5:9f:ae:87:52:
cf:8c:bc:10:39:ef:d2:14:79:b7:fc:05:0c:b6:48:91:f6:26:
41:d0:e1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:02 2024 by rpki-client on console-fra.rpki-client.org