Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D401A3AA9AE11EFAAE6998A762E951A.roa
File: 6D401A3AA9AE11EFAAE6998A762E951A.roa (raw, json)
Hash identifier: xwa6Bqu4gOB6P+yAW+510wKFVfsl353o7ieiiOp/4Ts=
Subject key identifier: 37:E9:BD:41:55:FD:E8:7F:91:6D:17:CF:87:00:6E:7E:1E:EA:A7:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01118E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D401A3AA9AE11EFAAE6998A762E951A.roa
Signing time: Sat 23 Nov 2024 15:20:09 +0000
ROA not before: Sat 23 Nov 2024 15:20:06 +0000
ROA not after: Thu 26 Dec 2024 15:20:06 +0000
asID: 395886
IP address blocks: 154.201.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70030 (0x1118e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 15:20:06 2024 GMT
Not After : Dec 26 15:20:06 2024 GMT
Subject: CN=6741f2a9-6146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:82:2e:d7:ee:4d:79:d3:90:6b:2d:b0:8d:46:
0f:a1:90:79:16:cb:a7:44:6a:e9:d1:71:10:7c:7a:
d1:ff:f6:3b:b6:08:81:fb:2e:a8:a1:d4:98:31:e7:
84:8a:c7:4c:2b:4a:e8:93:d1:ba:0e:37:fc:39:5b:
34:8b:1c:83:32:68:c9:c8:83:11:8f:81:73:67:2e:
fe:63:be:ae:87:9e:16:a4:9b:04:73:af:72:65:a0:
5d:a5:e2:35:da:89:75:1a:a2:ac:20:38:e5:20:68:
01:c8:43:06:3e:53:1f:50:68:3e:14:a7:63:dd:dd:
7f:d5:40:0b:4c:67:5d:93:4d:5a:1b:3d:97:15:42:
9f:eb:03:33:5c:ac:76:68:e6:e1:c2:b9:d5:da:8f:
83:98:cd:29:6a:13:0a:77:02:ca:8f:7d:c5:00:a7:
da:4c:65:ee:60:23:d7:1e:6a:a5:6e:b0:8b:77:cc:
b0:21:82:fc:4e:be:22:0b:17:3c:06:43:7f:b9:d4:
2b:ed:f9:2e:b4:68:0e:4a:84:e1:89:b7:27:b8:47:
b5:fc:e2:6b:d6:b7:19:74:9c:8f:12:39:2f:b7:8f:
8d:e5:4e:c5:9d:58:50:28:5e:27:3e:3d:2c:a7:b0:
36:1f:5f:33:79:ce:41:af:02:4a:ac:6b:6a:c5:8f:
45:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E9:BD:41:55:FD:E8:7F:91:6D:17:CF:87:00:6E:7E:1E:EA:A7:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D401A3AA9AE11EFAAE6998A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.92.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:e5:28:da:ef:4f:02:a2:4d:1d:56:d5:af:f5:96:4b:1d:6e:
0d:84:e5:ec:ce:87:7c:ab:4c:00:ae:53:92:04:70:2e:fd:a3:
a5:8b:44:33:40:ae:30:3d:17:ef:48:98:4e:9d:51:3a:c7:42:
1a:fc:e2:7d:1b:4e:9d:27:ad:04:f3:f7:e7:26:a1:9a:d2:1b:
e7:dd:da:41:4f:67:c3:ed:90:5d:ff:a4:a5:11:85:41:34:22:
2a:a4:fc:05:55:d4:bf:c3:2e:8e:97:de:05:6b:a9:bb:ec:a6:
1e:83:a8:50:d5:f5:2f:29:a5:00:b7:05:1e:89:0c:68:9e:b6:
f1:c3:7f:ec:18:0d:d5:48:89:79:92:29:72:19:a2:25:2c:48:
16:8e:c8:86:7c:1f:4b:08:48:75:dd:4d:e9:89:44:fa:eb:26:
d6:97:83:ad:ef:f0:ec:61:bb:81:80:81:f5:6f:34:2b:51:57:
0e:0f:89:07:88:0c:70:e9:07:10:55:7d:8e:f5:bb:96:12:13:
73:d5:24:19:18:74:23:8d:36:0a:4a:39:41:09:5d:31:e2:a9:
5c:47:1b:39:cd:d3:a8:68:8b:0a:ce:34:cc:03:ae:60:99:94:
b5:f4:c6:d3:51:11:f9:4c:9c:69:86:7b:f7:d9:16:e2:b6:bf:
20:50:83:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:15 2024 by rpki-client on console-ams.rpki-client.org