Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91F872BE73FD11EFBA79A1AB762E951A.roa
File: 91F872BE73FD11EFBA79A1AB762E951A.roa (raw, json)
Hash identifier: wuNersl0wUMdoR3H2gLgPjTc2R6pYCK8ZuPOtH05PVw=
Subject key identifier: 7D:39:28:FB:EC:71:9C:60:5A:AE:27:9F:B6:3A:74:E8:86:FC:42:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91F872BE73FD11EFBA79A1AB762E951A.roa
Signing time: Mon 16 Sep 2024 07:30:38 +0000
ROA not before: Mon 16 Sep 2024 07:30:35 +0000
ROA not after: Sat 30 Nov 2024 07:30:35 +0000
asID: 138152
IP address blocks: 154.94.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61315 (0xef83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:30:35 2024 GMT
Not After : Nov 30 07:30:35 2024 GMT
Subject: CN=66e7de9e-2ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e8:af:f4:f4:f7:9a:e5:cd:08:ff:be:7f:1b:
a7:78:f8:26:88:bd:f4:86:f7:9e:45:4b:02:42:46:
07:1e:d7:a4:ee:33:50:b3:11:5b:c4:d8:fc:be:55:
55:7d:14:87:bd:4f:13:62:c0:da:9a:5a:ef:d8:cb:
19:54:d1:1d:c2:30:dd:97:31:d0:69:14:45:99:6e:
aa:2d:46:13:a0:e5:47:bc:eb:e8:d9:3a:d3:23:62:
7d:19:35:66:4d:21:37:c6:c4:4c:7c:71:50:58:f5:
f0:60:67:28:53:18:1a:73:8f:6c:72:64:16:e6:30:
11:0d:d4:79:9b:db:03:44:42:e2:2d:04:a3:30:ac:
a9:9a:9d:df:1c:d1:43:e0:18:b3:21:9a:45:1b:39:
b4:ba:d2:24:22:03:87:eb:d5:95:82:5e:2b:a0:92:
2f:33:bc:53:de:fa:c6:05:8f:ec:60:23:d7:c7:99:
13:7d:23:f7:16:d4:f0:20:ee:36:dc:21:bd:04:47:
13:b2:5c:ef:ea:b5:93:a0:64:17:6a:02:4b:b1:0b:
86:fe:d7:40:21:d5:d8:b2:aa:6c:90:34:4d:8c:39:
e5:fa:a3:35:3e:fa:98:68:40:38:be:5f:12:75:19:
a1:c8:1d:88:a1:eb:2d:1b:f9:aa:1d:03:9f:bd:d3:
da:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:39:28:FB:EC:71:9C:60:5A:AE:27:9F:B6:3A:74:E8:86:FC:42:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91F872BE73FD11EFBA79A1AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.6.0/24
Signature Algorithm: sha256WithRSAEncryption
66:0e:2e:eb:bc:6d:98:5b:9d:25:d7:6f:e0:4f:58:1a:47:03:
7a:77:17:e9:e1:7b:4e:6c:d7:ab:29:72:cd:72:b3:a3:0d:b1:
6e:54:6b:8a:11:7e:07:e9:f4:07:e5:eb:11:ee:f9:df:08:5e:
d3:4b:e2:2a:ba:c0:b1:cb:a5:d8:5a:e3:96:fb:bc:60:c4:df:
eb:3a:f0:ae:c4:44:c3:e8:9f:31:0b:f5:e0:0e:b0:e0:23:11:
92:03:eb:81:a1:e4:ba:b0:cd:e1:01:4b:af:07:6e:1c:c0:13:
b8:17:e9:66:fc:a9:26:94:54:2d:af:6d:1b:ca:c1:66:bd:64:
18:ce:c4:c8:d1:bb:e8:6a:c5:8d:25:74:f1:70:2b:a0:a1:4c:
4a:66:08:46:1a:0d:e7:d8:5a:48:d8:53:ef:e8:4e:ea:98:40:
87:26:89:76:08:64:bc:d6:ed:b8:94:a1:e0:73:09:3b:47:62:
96:6f:42:ce:38:c5:2f:c5:71:28:4b:9d:8d:a1:78:4e:01:31:
99:cc:d9:e5:4c:70:50:93:90:63:44:f1:e2:e0:6a:02:f5:f7:
f7:5a:87:b0:fb:df:15:2b:8c:19:4b:2d:bd:09:5c:bc:ed:c2:
b6:fe:c8:84:bc:4f:75:b9:9b:a7:cd:55:37:79:84:d2:fb:61:
f1:0e:1d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:14 2024 by rpki-client on console-ams.rpki-client.org