Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39180F40A8DE11EFA84A3D6A762E951A.roa
File: 39180F40A8DE11EFA84A3D6A762E951A.roa (raw, json)
Hash identifier: CXl4zM4AxWGeCH2R3BUJI4cWPj8QOnK7CCJavdb4iV0=
Subject key identifier: 8F:20:3A:45:08:F4:01:AB:E7:36:90:68:3B:D3:F5:A3:D8:C0:F4:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011071
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39180F40A8DE11EFA84A3D6A762E951A.roa
Signing time: Fri 22 Nov 2024 14:29:47 +0000
ROA not before: Fri 22 Nov 2024 14:29:43 +0000
ROA not after: Tue 03 Dec 2024 14:29:43 +0000
asID: 395886
IP address blocks: 154.201.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69745 (0x11071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:29:43 2024 GMT
Not After : Dec 3 14:29:43 2024 GMT
Subject: CN=6740955a-97d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c6:e1:08:9b:d5:24:8b:a5:25:99:35:0d:ed:
b7:b8:82:55:10:f0:7e:c5:a1:fb:18:3e:83:95:eb:
2d:1f:09:fb:a9:6f:e7:ca:ba:3e:8a:6f:44:21:2c:
70:78:d6:9f:6f:df:f7:3e:8a:3d:b4:06:0e:04:6d:
78:15:e3:7f:e3:62:32:4f:91:ba:7d:31:c5:78:24:
e7:cb:b9:b4:59:72:2b:e4:ef:e3:44:9a:05:a1:78:
0f:e7:64:2c:7c:8f:e8:87:ed:fc:f9:fb:f9:f9:60:
7e:50:01:a4:88:5f:d5:98:1d:c1:33:e9:1d:35:80:
ec:50:1b:f9:69:77:3b:b7:c3:21:da:db:58:7c:95:
68:be:a1:ee:bf:a6:78:3a:9c:28:b9:ff:07:15:80:
b1:5a:b0:6b:13:19:82:6e:a4:2c:9e:1f:fc:01:93:
f2:74:d1:5f:6a:82:e6:70:96:13:ac:71:6b:10:32:
1a:31:62:ce:1b:ad:b1:ed:98:87:00:71:6e:e0:c5:
32:f2:91:d0:78:24:70:6a:fc:9a:1d:63:d4:28:3d:
39:48:1e:ff:8c:29:34:7e:e9:61:15:66:7a:7d:68:
ee:82:64:1c:13:da:15:52:d4:c6:3a:5a:cc:ab:b1:
32:50:3c:aa:b3:32:b9:2b:f4:1b:2a:ff:a9:e8:3d:
09:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:20:3A:45:08:F4:01:AB:E7:36:90:68:3B:D3:F5:A3:D8:C0:F4:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39180F40A8DE11EFA84A3D6A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.92.0/23
Signature Algorithm: sha256WithRSAEncryption
53:65:99:a2:f2:8d:df:cb:a5:93:08:44:10:7e:2d:80:86:6d:
e8:7b:d7:98:9b:01:fb:67:94:2a:93:cc:c6:57:1c:81:f4:31:
ca:62:9e:c4:6e:bb:cb:5d:db:b7:9c:f3:a1:67:fb:47:1b:57:
5d:1a:3a:2a:b7:72:26:14:c7:57:45:4e:aa:be:98:a0:f2:4e:
65:90:2e:6e:83:15:3f:27:e2:96:e3:c7:69:f5:01:79:42:3b:
f3:cf:e8:99:24:49:c1:4e:ff:35:bb:54:0f:5c:ce:7e:f2:cc:
9b:f9:d8:4a:ae:ae:70:91:2f:fd:37:85:fe:02:47:b8:79:5d:
52:fa:2b:df:68:4c:1a:f9:0d:ca:fc:ec:b6:c5:53:94:4f:35:
83:90:26:7b:db:d8:5d:b7:0b:3a:cc:73:19:c5:2f:bf:e8:f2:
3e:01:42:63:11:81:30:43:fc:7a:17:73:8c:63:d7:18:61:be:
d3:4e:dc:44:f5:82:68:c1:c4:2c:8d:5e:3f:06:f4:b9:cd:11:
cc:34:bd:b9:e0:55:e3:12:04:e4:57:60:d0:20:8c:63:3f:80:
46:a8:b5:2b:11:c5:1f:28:7e:70:ee:b4:3b:28:09:f4:cf:42:
af:8e:6c:28:7d:4e:03:8f:0b:8e:c6:cb:c7:82:e4:52:6a:cc:
32:98:2a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:27 2024 by rpki-client on console-fra.rpki-client.org