Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93964F969AAF11EF925D4B7D762E951A.roa
File: 93964F969AAF11EF925D4B7D762E951A.roa (raw, json)
Hash identifier: kaicn71WxJg5xLzEeY7/1mqpTxy+RsTbDyTioo/XPL4=
Subject key identifier: 96:98:62:AE:5C:C6:3C:D4:57:1A:81:9A:EA:04:11:ED:FC:26:58:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0106BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93964F969AAF11EF925D4B7D762E951A.roa
Signing time: Mon 04 Nov 2024 13:20:36 +0000
ROA not before: Mon 04 Nov 2024 13:20:32 +0000
ROA not after: Tue 03 Dec 2024 13:20:32 +0000
asID: 141883
IP address blocks: 154.215.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67260 (0x106bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 13:20:32 2024 GMT
Not After : Dec 3 13:20:32 2024 GMT
Subject: CN=6728ca24-aef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ba:69:3b:10:5b:af:98:0e:5c:2d:99:82:0a:
eb:f8:19:56:14:fe:f8:a3:1b:f2:34:72:47:86:30:
03:8e:64:c1:56:58:82:62:54:f4:3a:74:65:c3:94:
3b:6c:9f:01:e1:a1:62:6c:46:6d:ba:7a:79:cb:aa:
e6:ab:c5:8c:f9:f6:1d:c1:1f:b5:2f:68:9b:35:48:
40:6b:a7:b5:3d:c3:91:71:10:84:25:0d:61:d1:a3:
0d:e0:83:7a:20:28:d7:9f:48:af:ef:e5:14:69:ab:
1b:2f:ec:68:57:27:6a:41:7f:f2:f4:a8:6f:02:09:
97:7d:89:f7:16:92:c7:2f:48:44:e4:2c:ba:28:48:
58:b2:59:f7:1c:9f:5e:f8:ae:44:7c:eb:e0:c1:7e:
e1:2d:c6:b7:9c:21:dc:91:02:95:97:c2:75:44:54:
f7:51:66:b8:e6:c4:c0:2e:69:04:f8:38:e6:4d:cb:
1a:f9:4e:a9:ae:e1:2f:0c:d3:09:c4:bb:6c:ba:ac:
8b:03:56:aa:74:3d:a5:61:ae:4c:8c:5d:c7:fe:62:
9b:7d:ce:f1:6b:a6:47:82:c2:9a:7d:59:0b:24:c0:
2e:12:38:76:17:14:1e:7c:8b:5e:ad:65:c1:83:43:
20:27:5e:ff:4d:94:b6:b4:cf:46:8c:20:6d:37:e1:
86:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:98:62:AE:5C:C6:3C:D4:57:1A:81:9A:EA:04:11:ED:FC:26:58:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/93964F969AAF11EF925D4B7D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.0.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:f1:23:29:35:fd:b9:39:32:d4:76:35:7d:5e:ff:23:37:70:
73:c6:cf:13:ef:e7:aa:9a:c8:65:3a:d4:75:55:7d:cb:b8:50:
b2:ae:f3:98:b2:4a:5d:17:fc:4f:0f:a1:15:17:92:37:77:f8:
f8:26:d0:b6:c1:bc:1f:e7:94:4e:12:fe:48:ea:38:5e:68:de:
8d:66:01:75:0d:35:44:ee:4b:bd:5a:fe:a3:88:39:3f:0d:ee:
4f:5e:9c:61:53:a4:5d:da:1c:ec:8b:c0:11:b8:1a:cb:8f:1b:
cc:7e:fc:3a:8b:77:9c:66:d7:b0:51:1b:52:90:6d:cf:30:00:
75:3f:10:8d:96:8d:df:e3:e0:2b:41:02:ce:cc:a5:63:0d:50:
13:63:55:3e:86:1a:3d:cf:ed:e6:e7:f5:c7:bb:1e:33:7c:d0:
4a:45:f9:d8:28:c6:24:f3:f2:55:19:93:c0:85:99:d0:60:4b:
b1:37:95:7c:cf:2d:bd:e6:23:86:67:6f:4d:30:26:c2:12:21:
79:fd:c0:6c:40:7b:e4:54:77:1b:51:83:a0:c5:2f:44:62:e8:
30:de:24:d6:bc:fb:be:57:cc:99:e5:23:3c:c7:36:16:d7:0a:
19:88:3b:74:63:16:b7:81:7a:46:aa:49:bf:99:21:c2:c3:0b:
dc:22:fa:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:15 2024 by rpki-client on console-ams.rpki-client.org