Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35DB8090A8E411EFBF4AFC8F762E951A.roa
File: 35DB8090A8E411EFBF4AFC8F762E951A.roa (raw, json)
Hash identifier: iK/+wryorj1pkBaDtgXV0hQEWZ5+HucQt5GS9MWvtxM=
Subject key identifier: 88:2A:E3:11:75:3A:D8:D4:4D:B1:91:CD:63:EF:7A:2C:1C:8A:78:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110B9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35DB8090A8E411EFBF4AFC8F762E951A.roa
Signing time: Fri 22 Nov 2024 15:12:38 +0000
ROA not before: Fri 22 Nov 2024 15:12:35 +0000
ROA not after: Tue 03 Dec 2024 15:12:35 +0000
asID: 62240
IP address blocks: 154.194.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69817 (0x110b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:12:35 2024 GMT
Not After : Dec 3 15:12:35 2024 GMT
Subject: CN=67409f66-705b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bd:29:84:12:3d:10:ab:7e:d5:ec:ba:53:19:
b7:97:4f:1e:04:d7:a3:df:16:b4:af:ea:c1:0c:53:
39:c6:9b:fb:ae:78:6a:3f:b6:ca:f5:d9:ee:20:a2:
36:53:b8:9b:7e:3e:8d:04:b6:3b:7f:a5:99:f3:dc:
87:ea:ad:f6:57:c0:e0:dc:e0:97:5f:cd:5b:7c:a2:
10:29:1a:40:90:c7:60:40:14:ad:1e:ea:e3:0d:a8:
ec:57:66:cd:9e:a7:7c:81:a9:94:f3:31:4a:fa:4c:
3b:ac:3a:d3:d6:74:23:03:3f:93:bd:bb:c9:ef:95:
92:5b:a0:7e:69:59:ef:0e:32:81:e7:b5:11:4a:62:
d0:6b:20:5d:cf:08:cb:df:26:a0:e1:fa:b3:f7:53:
bf:18:88:1d:ef:ea:ef:f7:04:10:ed:8d:9f:e6:cd:
6d:12:80:fe:fb:e6:73:bc:38:8b:1a:40:a8:36:3e:
3c:45:ca:7c:7e:87:e8:3c:04:55:06:a1:bb:93:19:
80:e4:30:ac:97:2c:78:4d:dd:61:1f:81:b4:8a:92:
e5:ee:1c:3b:fc:43:01:0a:07:e3:92:bb:b4:79:5f:
d5:2c:0e:d0:fd:5a:f9:47:6b:45:3b:22:5f:b6:98:
49:8a:b2:6c:42:10:47:08:2f:54:12:30:fd:4e:e2:
26:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:2A:E3:11:75:3A:D8:D4:4D:B1:91:CD:63:EF:7A:2C:1C:8A:78:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35DB8090A8E411EFBF4AFC8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.94.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:28:27:57:9f:42:c0:f2:16:96:1e:1b:51:0a:88:da:8b:2f:
97:ab:6b:ea:71:53:e7:39:d5:ce:e7:23:f0:29:a5:70:f7:cf:
7e:dd:5d:98:dc:55:ef:03:73:70:5a:3e:5d:12:de:62:84:b5:
ea:1e:49:e3:1b:33:60:07:8e:66:92:00:8d:a4:47:14:b9:1d:
d8:06:fa:dc:22:c4:e3:f7:05:6b:f2:4e:fe:ff:42:45:33:d2:
f4:f0:a8:df:cc:d2:fc:e3:ad:68:cb:6d:3d:ab:a8:f0:4f:4a:
dd:d2:7c:8f:11:b9:48:4e:4b:ea:02:37:1a:78:24:e7:40:07:
22:25:20:eb:6b:a1:37:62:7a:7c:84:91:4a:5c:2a:c5:63:24:
94:28:48:bf:66:19:6e:fc:b8:08:3f:9a:f4:e8:eb:bd:c5:02:
3d:89:37:3a:92:e2:39:6a:df:cd:ef:d1:17:23:ed:fd:05:d8:
6a:5d:96:dc:91:c8:22:09:66:06:53:ef:47:10:65:80:0a:aa:
70:ae:12:b7:3d:78:b9:41:4d:1f:fb:02:eb:52:76:81:ef:a1:
6d:fd:19:4c:95:d5:ed:b3:0d:d5:0b:05:38:91:71:ff:f2:b8:
19:f7:13:1a:01:1c:01:01:ed:c2:c1:6c:e0:7f:f9:cd:53:aa:
d3:b8:4e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:26 2024 by rpki-client on console-fra.rpki-client.org