Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CA940EAA4D111EFBBBA577A762E951A.roa
File: 8CA940EAA4D111EFBBBA577A762E951A.roa (raw, json)
Hash identifier: 38qpsXh750QAQfV6TDmZeBfh8ITvntgO/AvLwkMwIBg=
Subject key identifier: 26:8B:68:F4:E1:88:3E:93:1D:5A:76:8C:2D:73:77:E8:19:53:AB:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EBE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CA940EAA4D111EFBBBA577A762E951A.roa
Signing time: Sun 17 Nov 2024 10:48:59 +0000
ROA not before: Sun 17 Nov 2024 10:48:55 +0000
ROA not after: Mon 25 Nov 2024 10:48:55 +0000
asID: 9009
IP address blocks: 154.92.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69310 (0x10ebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:48:55 2024 GMT
Not After : Nov 25 10:48:55 2024 GMT
Subject: CN=6739ca1b-8745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:32:16:41:a8:06:3b:6f:c6:2c:66:be:de:b0:
97:63:4f:be:f3:ef:13:0e:52:62:82:3e:e6:64:4a:
73:47:cc:66:84:b0:86:f6:fd:e7:af:2a:31:85:8e:
7d:ba:8b:5c:5b:9a:ca:d4:98:b9:e9:ca:82:94:66:
9f:22:ff:0f:86:79:ef:da:d2:ef:e6:4c:76:5e:f4:
31:de:cd:38:ea:d7:5e:85:ba:ec:85:7f:33:64:1e:
66:02:76:bf:3b:5a:dd:87:30:f3:fe:43:11:0a:38:
a9:31:ec:f2:5d:97:74:1f:31:5e:98:1e:9a:e9:7d:
80:d5:df:62:c9:4a:a9:93:f9:72:48:0a:39:7b:1c:
de:35:b4:50:25:08:a6:2b:84:ad:c4:8b:2a:ea:d8:
36:89:4b:4c:45:3d:ad:8a:34:9e:3b:13:e8:03:85:
b7:c0:b8:4a:ac:5b:da:d2:2a:13:88:24:02:34:3c:
e2:6e:70:4e:10:0c:9f:c4:cb:1a:07:29:92:ba:4b:
0c:a4:09:0f:91:c9:4b:67:51:d0:77:89:39:37:ec:
aa:a3:6f:01:20:e2:d8:2f:0d:86:cc:d3:f7:4a:d5:
b2:16:32:75:ee:68:5c:9b:2f:54:d6:73:28:94:3b:
c3:f4:37:44:12:e8:ae:2b:bb:68:af:c2:bc:6b:92:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8B:68:F4:E1:88:3E:93:1D:5A:76:8C:2D:73:77:E8:19:53:AB:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CA940EAA4D111EFBBBA577A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.121.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:54:0c:2c:b6:b6:2f:ec:ba:72:ae:6f:50:db:fe:f1:ff:5e:
85:f3:0c:6a:eb:1a:1f:94:83:cb:7f:0c:95:72:b6:45:a4:72:
48:99:ba:e8:8c:b6:22:b4:bc:dc:fa:12:89:9d:65:0f:f1:94:
4c:40:87:49:fe:93:4d:5b:7f:a7:b9:3f:c6:16:0f:e6:61:70:
b6:84:c7:05:59:bd:86:34:2c:2e:74:9e:16:64:4a:5c:03:67:
7f:c2:db:9b:ba:bf:bb:08:ab:83:05:7f:66:d1:03:c7:26:ea:
b9:ef:e6:25:82:a5:ef:90:6f:34:ca:d5:a4:54:aa:3b:67:8a:
f8:d9:15:52:44:13:d6:ec:c8:72:f9:51:c8:a3:28:4c:42:ca:
1a:da:c6:2e:5c:6d:5b:51:82:4b:70:29:9f:bd:cf:68:c1:33:
f7:37:42:59:42:f0:c7:13:dd:24:93:b6:7d:a8:68:b9:29:d1:
b3:04:87:d2:85:36:7d:78:06:2f:e5:66:6c:4b:26:49:99:17:
10:b2:a8:3d:83:f5:34:d6:ff:de:d4:15:12:31:3c:90:9e:ef:
27:af:0e:6a:ed:43:81:be:72:c6:c4:11:fd:0a:fc:79:33:3f:
54:ae:60:23:54:b8:75:0c:ef:78:df:cd:ab:13:3a:ae:08:82:
a5:b4:8e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:56 2024 by rpki-client on console-fra.rpki-client.org