Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A773ED8911E11EF9E7FE0AC762E951A.roa
File: 3A773ED8911E11EF9E7FE0AC762E951A.roa (raw, json)
Hash identifier: NVB2C+YWCwhWzKBUmOccS3MYNhMybThavvDvUVIMXWk=
Subject key identifier: 24:94:A2:EB:5F:01:4B:4F:AA:F0:55:A9:0D:10:B7:B9:F8:C4:A0:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A773ED8911E11EF9E7FE0AC762E951A.roa
Signing time: Wed 23 Oct 2024 09:07:29 +0000
ROA not before: Wed 23 Oct 2024 09:07:25 +0000
ROA not after: Tue 26 Nov 2024 09:07:25 +0000
asID: 149513
IP address blocks: 154.201.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65766 (0x100e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:07:25 2024 GMT
Not After : Nov 26 09:07:25 2024 GMT
Subject: CN=6718bcd1-517d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:18:04:e4:9b:31:54:35:11:74:cb:b5:79:95:
a3:2b:39:89:98:de:3b:4c:5f:5d:34:b1:da:a8:6b:
33:25:04:77:44:96:5d:c6:e3:19:1f:88:c4:1d:52:
cf:3e:55:e8:83:bf:37:2d:89:2a:ba:f6:e0:bc:4d:
1e:2e:c2:7d:af:bd:ed:19:94:9e:4d:eb:1c:d2:63:
e4:16:22:81:00:8a:b4:1a:3e:45:d1:49:6f:92:75:
1d:a2:54:e5:c0:42:3e:0d:fa:bb:8b:dd:ad:c2:2b:
93:6a:9b:24:96:8b:9d:d6:c7:68:ae:0b:62:d5:95:
d8:4a:04:c9:74:c7:31:82:f4:92:d1:2e:83:bb:a2:
9c:a2:aa:2e:df:4a:99:00:ea:b0:0b:93:e0:fe:b3:
9f:ef:5e:53:39:61:f6:42:af:07:7b:f4:3d:24:22:
4a:05:d3:3b:67:51:cd:45:26:5d:af:af:4f:55:6f:
70:40:3c:eb:59:c4:08:6a:c3:50:89:98:3e:cc:e4:
36:db:31:68:b8:50:a0:39:61:26:6a:37:8b:fa:17:
65:1d:db:5b:e9:58:4e:c7:ab:27:5c:62:e1:f5:8a:
10:8a:0d:06:c7:3e:0a:b9:27:b8:3d:47:04:7f:6d:
96:32:45:49:2b:e6:bc:82:68:6a:70:62:86:01:5d:
57:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:94:A2:EB:5F:01:4B:4F:AA:F0:55:A9:0D:10:B7:B9:F8:C4:A0:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A773ED8911E11EF9E7FE0AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.94.0/23
Signature Algorithm: sha256WithRSAEncryption
11:95:93:f3:31:31:db:d3:59:48:7f:16:e4:80:39:ee:00:33:
4e:6e:51:d7:b7:73:20:6c:8e:8a:55:f5:4d:b6:3f:9e:57:a0:
19:82:d2:f1:f9:03:e8:d1:47:c1:40:0f:a8:58:b4:3d:1a:d9:
f0:ec:92:9f:ff:c6:07:2b:c1:b4:ae:e1:24:42:42:2c:5f:47:
91:94:2e:68:17:f7:3e:57:b3:48:ee:55:70:f3:a2:d5:44:d1:
93:81:b5:9e:f3:18:c2:cd:87:82:e4:41:f3:ad:1b:3b:4e:4d:
23:8c:a0:01:7f:6e:43:d0:dd:fa:94:45:ce:b2:e5:c9:59:63:
65:95:77:4e:8f:b9:e0:9a:04:cb:d8:35:5b:78:82:77:98:c7:
d2:8a:39:69:85:ef:99:7c:9c:e3:0b:a6:a1:84:0c:92:24:b3:
e4:20:11:28:cf:82:5c:80:45:66:95:fe:d3:2f:20:24:0e:a2:
af:d3:d7:12:ae:3a:be:d6:b8:85:5d:5f:d5:de:d3:73:a6:a9:
e0:14:d0:d9:2c:00:eb:c5:d3:b3:f3:76:ed:52:11:4c:d9:46:
2d:dc:ee:55:71:86:2b:91:84:dc:ad:71:5a:8d:c9:cd:ed:b0:
29:9e:27:18:af:f2:d6:c8:2a:f8:f6:ca:8f:ae:de:e2:9b:bf:
db:80:2e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:04 2024 by rpki-client on console-ams.rpki-client.org