Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94A20320A00A11EFA59E95BC762E951A.roa
File: 94A20320A00A11EFA59E95BC762E951A.roa (raw, json)
Hash identifier: 8mAyO10FvIBnbH3CD/a9BatAjpJbPayPojbdzg4PiSo=
Subject key identifier: C9:B8:A3:9C:2B:37:2C:09:0A:26:B7:F8:03:22:07:FE:12:BC:A0:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010BDD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94A20320A00A11EFA59E95BC762E951A.roa
Signing time: Mon 11 Nov 2024 08:54:38 +0000
ROA not before: Mon 11 Nov 2024 08:54:34 +0000
ROA not after: Sat 11 Jan 2025 08:54:34 +0000
asID: 397423
IP address blocks: 154.202.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68573 (0x10bdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 11 08:54:34 2024 GMT
Not After : Jan 11 08:54:34 2025 GMT
Subject: CN=6731c64d-6588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8f:86:02:1d:8e:8f:45:0d:d8:57:3d:ef:db:
a6:1a:63:bb:5f:be:f6:7e:85:9e:ab:b8:89:3c:cc:
4f:cd:5b:4f:c3:7a:69:bf:7f:08:f0:fd:fb:f2:ee:
0a:59:73:4f:1f:74:ba:7a:6b:7a:db:de:db:c6:1d:
70:bf:18:59:b0:09:67:f2:93:a5:d4:84:2a:16:a1:
ff:56:91:37:17:39:e9:c4:d0:19:d4:12:74:54:4f:
13:da:89:72:c9:dc:82:88:60:64:97:cc:dd:23:cd:
50:57:55:e2:bd:90:d8:b4:f9:21:ae:a8:1f:73:c5:
77:08:02:75:4b:cb:be:3b:bc:dd:fe:02:25:50:18:
db:88:ce:8e:57:25:a4:ca:4b:7e:26:88:e4:f6:2f:
d9:58:c7:2b:43:d8:ec:67:45:6f:4c:13:5f:03:47:
3f:ab:06:33:28:fa:15:a5:a5:f7:48:57:32:a5:8a:
e9:74:a4:95:b8:99:fc:81:4a:07:58:8d:10:b6:e5:
da:c5:29:17:5c:f3:01:71:1f:65:c8:37:ee:e4:b6:
55:60:7b:5b:89:9e:fb:ac:cf:e9:86:59:2b:14:69:
65:78:4e:0a:ae:c0:72:fc:17:43:80:80:fa:7d:23:
0b:5b:59:cd:f5:96:db:58:6d:94:ca:3c:50:a8:d5:
60:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B8:A3:9C:2B:37:2C:09:0A:26:B7:F8:03:22:07:FE:12:BC:A0:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94A20320A00A11EFA59E95BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:f1:1f:32:7f:9f:db:dd:1a:19:e4:08:71:12:9b:bc:0b:a3:
e4:78:cd:4f:0d:68:73:6d:b6:6d:af:ee:6d:f2:72:a1:e2:4f:
0f:07:88:b2:9d:21:bf:51:ba:29:e1:73:29:8f:d8:55:08:d0:
7e:32:71:49:c4:2e:78:3d:8e:4d:ec:03:72:02:c5:7f:9f:b3:
1d:d6:77:a5:4c:ec:db:49:4a:40:50:22:6a:32:c6:d6:45:63:
22:fa:56:67:e2:93:b9:db:fa:9f:37:71:58:ad:65:9b:20:58:
36:d5:af:25:b3:4c:99:bb:da:ef:af:e3:9e:62:71:52:f8:3a:
23:46:69:d4:2b:50:0b:57:4e:66:ae:e7:65:02:b9:4f:4d:71:
df:2f:f6:42:6c:06:8a:4b:61:b5:26:49:dd:73:14:c4:b2:5c:
a4:93:f2:b9:13:30:a1:cd:0a:46:b1:96:71:4c:11:88:f2:57:
5a:b8:01:1f:a4:04:6e:36:07:66:e5:b4:83:d7:5a:b7:d0:06:
4c:af:4b:f3:32:9f:da:a4:57:ef:c6:ad:15:1f:ed:71:28:6a:
76:6f:86:8b:a2:46:bf:70:77:9c:4f:a3:4f:e0:d7:b4:b5:46:
bb:5e:38:f0:b0:23:53:ae:e8:85:15:64:90:49:6e:5d:65:f8:
25:ca:39:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:16 2024 by rpki-client on console-fra.rpki-client.org