Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89B6BFFC736711EFAEECE944762E951A.roa
File: 89B6BFFC736711EFAEECE944762E951A.roa (raw, json)
Hash identifier: BzQ9zAEMhcJLP1uVupMZw2UPEP54r2ubSU3mwqiECi8=
Subject key identifier: A6:FA:9F:5A:30:49:AA:71:D7:14:43:80:BB:82:6F:BD:38:01:5C:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF20
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89B6BFFC736711EFAEECE944762E951A.roa
Signing time: Sun 15 Sep 2024 13:36:40 +0000
ROA not before: Sun 15 Sep 2024 13:36:37 +0000
ROA not after: Sat 30 Nov 2024 13:36:37 +0000
asID: 138152
IP address blocks: 154.94.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61216 (0xef20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:36:37 2024 GMT
Not After : Nov 30 13:36:37 2024 GMT
Subject: CN=66e6e2e8-1b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fd:62:a6:b7:cf:9b:7c:03:a7:fc:bb:f5:64:
4b:77:42:15:49:86:a9:9e:b0:2e:bd:b8:8d:07:1c:
ea:19:97:ea:c4:f9:20:05:2c:ac:11:7c:58:12:c9:
2d:27:7d:f7:94:a4:df:77:09:9e:7a:eb:f9:a8:37:
85:2e:70:67:78:86:c7:2d:fa:22:2f:f9:1a:6f:ca:
9c:14:2a:ec:5a:1d:01:be:0c:1b:d2:6c:41:88:c2:
a1:c9:f0:5f:46:ed:3a:24:b2:13:11:08:0e:2c:ee:
25:1e:4c:fa:65:e3:37:16:fb:b6:c4:78:e0:c1:6d:
1f:2d:aa:04:3b:f0:66:9f:44:93:27:59:17:6d:5a:
34:da:b2:7e:e5:d4:26:99:d1:10:fc:e3:e5:06:40:
71:bf:fc:81:2e:71:05:0c:be:fa:52:70:95:c1:52:
5e:93:33:4b:0c:10:c2:f9:b1:1e:33:06:6f:53:56:
50:2e:41:3c:2f:57:f2:37:b1:74:c0:6c:61:49:84:
69:e5:1e:9b:40:f9:fb:58:15:98:e2:a2:e2:42:73:
22:17:d3:7a:d2:ba:8c:cb:00:3c:25:32:a4:76:86:
f9:53:58:72:f6:2b:96:c7:7c:fb:35:2b:60:11:bd:
1f:f5:d9:63:36:06:ba:bd:ca:25:d0:90:51:e8:26:
5a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FA:9F:5A:30:49:AA:71:D7:14:43:80:BB:82:6F:BD:38:01:5C:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89B6BFFC736711EFAEECE944762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.7.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:ea:aa:cc:df:15:4f:25:5b:45:b3:c3:25:eb:00:c7:fa:6b:
f3:4e:8f:6c:62:a9:9b:d8:1d:2c:1c:e9:16:21:25:13:af:29:
7d:8b:5b:60:fc:b4:ea:94:71:9f:7c:b9:e2:e6:fe:98:97:46:
e4:e0:68:b9:32:db:e6:ce:16:11:4f:09:23:94:67:e3:b1:db:
1f:30:d9:b1:3b:83:9a:bc:90:2b:45:e6:f4:64:b3:2b:da:92:
12:aa:0b:40:65:ac:b7:0f:2b:bb:ca:0d:81:99:b4:81:52:d6:
44:45:4c:d6:f4:5f:5a:43:fe:e5:5b:08:33:d4:75:22:05:34:
5d:c2:50:d6:6f:80:8e:ca:e9:a8:09:5f:43:3c:21:ee:e4:71:
d0:03:cb:cb:d8:b7:8b:dd:6f:71:1f:a6:1a:61:e8:3f:a4:83:
0e:eb:fe:96:fd:45:71:d7:f9:bc:9e:00:4b:bc:c3:4b:18:f9:
af:fc:0b:40:fe:fc:26:54:4a:84:d8:d9:f0:d5:47:09:57:3d:
cb:f9:9f:8c:2d:f8:6f:36:28:70:57:7c:c6:5b:86:0e:1f:e5:
44:d1:94:8c:93:03:25:3b:ec:ec:38:47:de:78:b4:5f:63:65:
62:ad:36:3f:43:32:f4:79:b1:7c:11:04:27:88:f1:00:ef:71:
b2:a6:54:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:04:21 2024 by rpki-client on console-ams.rpki-client.org