Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92F732229C1B11EFBAA09A7A762E951A.roa
File: 92F732229C1B11EFBAA09A7A762E951A.roa (raw, json)
Hash identifier: 95RLYTCon96EDD8Vi1TyhC1VLlyNVQeGO6qYOt7oU9U=
Subject key identifier: 0A:5B:49:51:67:69:DC:54:03:D6:A7:80:EC:27:ED:A5:DF:03:21:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010864
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92F732229C1B11EFBAA09A7A762E951A.roa
Signing time: Wed 06 Nov 2024 08:46:11 +0000
ROA not before: Wed 06 Nov 2024 08:46:08 +0000
ROA not after: Mon 30 Dec 2024 08:46:08 +0000
asID: 138915
IP address blocks: 154.94.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67684 (0x10864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 6 08:46:08 2024 GMT
Not After : Dec 30 08:46:08 2024 GMT
Subject: CN=672b2cd3-b609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:32:9a:e7:57:ec:90:31:85:bf:93:07:d5:ec:
a6:9d:43:ea:62:b1:d0:02:6e:da:8b:65:c3:52:4c:
b5:13:50:76:2c:53:a0:3d:09:a8:a8:ad:f2:21:16:
20:a1:ca:09:bd:0a:2f:d8:56:de:46:c8:bd:b0:89:
21:c4:46:1d:9c:d0:54:1d:bf:9a:51:61:6b:03:86:
18:c2:fa:48:ed:b0:a6:ce:fe:56:4a:40:5b:8e:f0:
6e:a8:7c:fe:55:29:2a:67:11:6c:4e:2f:f5:6f:92:
81:2a:b1:d4:a1:8e:9c:ea:a4:e7:64:84:c6:0e:7e:
40:2d:f4:03:75:7e:b9:66:89:b4:46:52:28:e5:71:
e1:e7:e5:7c:11:14:02:38:8d:63:c1:eb:9f:7b:e4:
58:b3:ce:a1:4e:f6:2b:63:30:07:0b:2e:3c:09:9d:
bb:49:08:8d:c0:ca:34:3a:6f:da:ec:8d:a6:8e:62:
4a:98:52:44:64:ee:ab:d6:f1:92:5d:5c:39:bb:be:
00:d7:8a:8e:8f:4d:fa:46:d4:c1:87:d9:5a:85:04:
f5:75:01:af:8c:57:99:e0:8a:17:6b:cb:76:35:0c:
be:ab:46:a2:fa:59:73:e5:a8:83:8e:01:1c:e8:f4:
6c:b5:11:8b:4b:79:54:74:a2:1c:a3:e8:35:84:bf:
91:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5B:49:51:67:69:DC:54:03:D6:A7:80:EC:27:ED:A5:DF:03:21:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92F732229C1B11EFBAA09A7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.66.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:45:64:ed:89:31:5c:cd:77:fa:f4:e9:68:42:2b:40:26:55:
fa:0b:9e:91:87:94:86:e8:ea:37:0e:72:e4:3a:43:e2:c2:77:
d9:23:1f:5f:37:7b:af:74:1b:4f:5b:b1:0d:78:84:30:08:f9:
32:f4:23:f4:88:e6:71:c9:73:a6:28:9e:00:f9:e5:b8:49:b9:
f3:82:a3:5f:af:19:95:b5:13:60:60:89:b8:8e:5b:47:f5:87:
d5:2c:ce:93:7d:eb:b7:51:54:aa:cf:cd:b5:ad:21:f0:13:e8:
a6:8d:e7:f8:14:8b:a8:94:ab:7d:d4:79:bb:2a:2d:50:82:42:
83:d4:33:c8:57:81:a0:c0:76:14:89:09:e1:47:de:74:35:1d:
65:3a:0f:a3:b5:db:3e:57:9b:79:d8:be:39:ec:5a:72:57:3d:
f2:0b:7d:ef:83:ff:a5:ac:6d:bf:a2:da:43:1c:56:c7:84:dd:
42:9f:9e:ab:72:9f:c1:3f:aa:6f:c5:a7:60:1e:b8:3e:67:2e:
d3:24:ed:d6:f1:14:8c:61:42:cf:af:87:a2:5a:8b:89:49:66:
9f:b8:ff:60:d1:42:fd:0c:3c:10:fc:90:4e:66:97:87:6c:e0:
01:8b:9e:fd:fc:74:22:70:fb:75:74:3c:81:b1:f5:a7:f7:12:
ee:03:25:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:24 2024 by rpki-client on console-ams.rpki-client.org