Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91355C5A3F5C11EF9162A77E762E951A.roa
File: 91355C5A3F5C11EF9162A77E762E951A.roa (raw, json)
Hash identifier: kSz2F5tiZIHALjivN7mfg94OV8dsKYMptPNlj0pRUSw=
Subject key identifier: BC:2B:B8:91:02:69:FE:C9:1B:A6:B5:9B:29:2D:DA:78:E3:13:82:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D0A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91355C5A3F5C11EF9162A77E762E951A.roa
Signing time: Thu 11 Jul 2024 08:07:08 +0000
ROA not before: Thu 11 Jul 2024 08:07:04 +0000
ROA not after: Thu 24 Jul 2025 08:07:04 +0000
asID: 151196
IP address blocks: 154.204.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53412 (0xd0a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 08:07:04 2024 GMT
Not After : Jul 24 08:07:04 2025 GMT
Subject: CN=668f92ac-d5ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e4:fd:c5:f6:2a:46:71:f7:b4:c3:e3:cf:6e:
51:4f:8a:62:90:d8:f8:61:45:99:89:ee:3a:3a:34:
f6:d2:78:69:db:e2:5c:82:4e:2d:cf:a6:ce:d4:4e:
63:d7:1a:ac:73:28:aa:27:e1:78:f4:ca:b0:c5:c5:
3d:a3:9d:6c:dd:7e:f1:ca:01:a5:90:9f:97:d3:20:
ba:bc:b5:8e:05:84:79:6e:fd:4c:4e:a8:c1:59:75:
26:c2:65:a1:39:6f:26:24:d2:15:e4:be:73:79:10:
7f:8e:e0:65:c6:6b:a0:20:87:45:95:f2:e5:a4:7e:
30:de:ed:d7:7a:ed:2e:e4:62:bf:16:ab:6b:20:68:
31:ac:11:34:03:d4:e7:61:1d:02:2e:a7:cc:8c:3c:
29:6d:f7:83:84:dc:9b:64:4a:fd:a9:bc:3b:27:32:
45:5b:ec:eb:29:fd:22:9a:56:a2:1d:b1:0d:ee:97:
53:f9:3c:26:47:dd:c4:8a:24:19:06:0b:45:86:d9:
95:75:0e:ac:1d:a1:dd:d7:c5:98:fa:24:27:f5:a9:
e3:e3:82:52:84:6e:73:42:9d:5b:0c:c5:25:2a:97:
1b:0e:63:d3:a7:24:bf:fe:81:82:22:5e:1b:e7:c6:
c4:a1:04:79:85:74:57:4f:01:a5:3d:b2:0f:78:a2:
09:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:2B:B8:91:02:69:FE:C9:1B:A6:B5:9B:29:2D:DA:78:E3:13:82:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91355C5A3F5C11EF9162A77E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:00:4d:70:b5:ab:b7:04:61:67:52:6e:56:d4:22:99:82:fc:
a5:39:15:45:92:83:3e:02:a8:35:aa:26:3f:f6:1a:b5:4e:0a:
43:19:49:bb:90:31:de:50:75:f9:be:6d:c4:8f:64:58:4e:86:
53:10:ae:9e:8b:58:e6:72:32:73:b7:ed:ed:ab:3b:a0:8f:9b:
0a:6b:84:f3:b5:94:38:cc:0b:b2:d5:ff:f6:c5:f8:54:d0:b8:
32:87:22:0f:9c:50:b5:2f:34:6d:16:d2:9d:6a:c2:cd:bf:f4:
b7:ad:d8:3c:5c:a1:fe:a9:d4:97:d3:5f:3b:ed:e2:95:45:4f:
42:b0:31:41:3e:4d:8e:a2:16:52:d7:97:23:03:62:e2:7c:12:
fb:7a:fc:79:f9:41:9c:9a:54:e5:36:5b:8c:a3:ae:fb:43:1c:
67:18:fe:c3:86:2f:c8:9d:f9:32:85:05:12:1e:75:8e:33:ba:
6f:2f:3a:28:9d:c4:b9:46:14:72:4b:0c:78:f1:39:22:c9:8c:
fc:1f:e1:ea:b1:56:75:69:ad:f8:a8:8d:e9:2e:70:73:e8:4a:
93:b2:0c:9c:bc:b0:66:00:6b:a3:fc:88:1c:02:f8:a8:72:ba:
a5:74:11:ba:29:98:85:99:4d:0a:e9:36:08:a4:33:a6:46:5a:
0b:01:57:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:23 2024 by rpki-client on console-ams.rpki-client.org