Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92E67C4411B411EF92BBD436017001B1.roa
File: 92E67C4411B411EF92BBD436017001B1.roa (raw, json)
Hash identifier: BHhonG2aA7WKYzh6nD66WcY2tO9pDYfLzJZQ/CprKeM=
Subject key identifier: 86:FE:9A:1A:0C:EC:CB:2B:42:25:A7:FB:AB:58:C0:53:F4:D5:66:92
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B74C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92E67C4411B411EF92BBD436017001B1.roa
Signing time: Tue 14 May 2024 05:41:13 +0000
ROA not before: Tue 14 May 2024 05:41:10 +0000
ROA not after: Mon 19 Aug 2024 05:41:10 +0000
asID: 132825
IP address blocks: 154.93.24.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46924 (0xb74c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 14 05:41:10 2024 GMT
Not After : Aug 19 05:41:10 2024 GMT
Subject: CN=6642f979-8e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:bd:e5:25:6d:6a:ee:37:eb:5f:a8:76:ce:
47:2e:e4:12:2f:c6:81:03:ef:15:ce:84:c2:01:5e:
8b:56:db:de:35:a3:29:19:90:a4:e2:97:d5:85:c1:
3f:a5:53:2f:d3:61:d9:9c:3f:63:e4:f9:ff:c7:4a:
5b:87:f0:60:ee:72:ae:df:0c:0f:18:9b:49:4d:f0:
7a:71:f0:97:a2:d6:26:a7:4a:67:d2:84:40:11:e1:
b8:3e:42:78:ac:99:0d:74:9b:82:9b:57:13:b1:84:
eb:96:1c:a0:9d:19:70:9e:c2:65:ec:fc:f4:47:28:
dd:3c:40:e4:e1:42:35:d5:77:e1:5d:69:3b:05:f9:
78:3a:18:0f:a2:d0:2f:14:cb:ce:fd:97:c2:08:b7:
e9:28:84:2c:2c:63:db:bb:2b:6d:26:e0:25:9e:eb:
f0:b7:4c:80:b1:25:3c:9a:b4:a5:72:e0:57:a5:63:
d1:16:90:6e:fa:d7:4e:d6:ab:df:8b:54:28:2e:be:
2b:0e:35:56:73:06:ae:3a:cb:68:1d:04:e9:fb:ad:
83:80:f2:67:fd:b7:7b:0d:64:62:1d:66:b7:3f:49:
34:4a:40:60:20:1e:8b:65:a5:6d:fd:07:65:ef:b1:
f2:b6:8e:15:df:5e:6d:55:a5:4c:5e:46:38:00:7b:
bd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FE:9A:1A:0C:EC:CB:2B:42:25:A7:FB:AB:58:C0:53:F4:D5:66:92
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92E67C4411B411EF92BBD436017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.24.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:f0:45:f3:fc:e2:46:da:b2:f1:57:e3:b4:8d:a6:1c:4d:78:
ce:d9:47:7b:9e:35:3f:a3:b1:ab:85:c5:e3:71:fb:3b:28:80:
3e:05:8a:31:27:04:8e:f7:20:34:a5:66:2f:d4:2b:eb:53:e4:
c3:e0:57:f3:c5:fc:9f:bc:c5:30:ad:ce:1f:f5:fb:4d:ef:03:
09:97:1d:06:d3:19:fb:73:94:f2:42:94:08:6e:1b:8a:7a:4f:
33:56:b1:4c:fd:7c:d8:e3:29:e3:50:23:7a:bc:ab:52:c9:42:
7b:2d:0f:90:e8:d2:83:e3:36:6b:49:3e:ee:7d:ff:b0:3e:74:
df:89:e2:cd:a3:b7:02:a9:2c:41:6a:78:b3:c1:96:dd:1d:e7:
34:f1:e5:ba:b6:7b:b1:7b:28:0a:d2:25:0c:b8:ba:80:48:8b:
c4:38:c2:d2:cb:b2:c6:dd:39:ea:d3:dd:5a:90:51:bf:6f:81:
4a:60:1a:26:a4:6e:db:9e:1f:fe:00:41:f6:d4:5d:90:3b:d9:
ea:60:f8:41:bb:87:4a:00:af:07:43:19:61:34:ed:e9:37:64:
9b:4d:36:dc:12:33:e4:b2:b2:63:9e:2c:3a:44:4b:06:59:68:
70:8f:f0:23:bd:1d:71:55:c7:f4:e3:a8:c3:03:32:90:c9:ea:
0b:34:d0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 09:10:08 2024 by rpki-client on console-fra.rpki-client.org