Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95130462736411EFA1527DB3762E951A.roa
File: 95130462736411EFA1527DB3762E951A.roa (raw, json)
Hash identifier: 06beDbtoTPm2T04Q/t3hN9FBM4lz98nORTVhVRVj/gY=
Subject key identifier: 06:AB:65:73:14:71:41:8D:1B:25:EB:FC:78:43:83:9B:36:EB:8E:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EEF8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95130462736411EFA1527DB3762E951A.roa
Signing time: Sun 15 Sep 2024 13:15:31 +0000
ROA not before: Sun 15 Sep 2024 13:15:27 +0000
ROA not after: Sat 30 Nov 2024 13:15:27 +0000
asID: 142403
IP address blocks: 154.221.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61176 (0xeef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:15:27 2024 GMT
Not After : Nov 30 13:15:27 2024 GMT
Subject: CN=66e6ddf3-749c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:96:e8:c7:9f:87:58:ad:00:f4:de:90:e6:bd:
81:ed:dc:cd:8a:21:44:fd:a3:c5:5e:b3:ae:ee:50:
58:78:70:5b:72:4e:79:54:ea:04:ba:9b:19:e4:3c:
bc:eb:e5:17:18:40:35:d2:78:b4:8f:c6:e7:87:f9:
19:d5:57:16:c1:c8:5d:32:b5:d1:26:35:fe:b6:1b:
1a:b0:e8:3c:a8:8c:4d:63:49:f5:2b:7e:c7:04:5b:
b6:e2:ff:fc:3a:4f:aa:2b:04:f0:d4:f5:59:e7:26:
fd:aa:e7:a2:af:70:7d:6b:6f:93:ff:15:52:6a:e0:
bd:cc:3f:ec:ea:12:be:ca:a9:b6:bc:9d:47:20:f0:
47:c9:3f:83:51:0b:d8:1e:73:1c:2e:30:04:35:32:
db:f9:f7:1a:ed:a9:13:8e:d6:7b:6d:86:09:5d:1f:
d8:9d:c7:94:09:0d:77:16:01:93:fa:03:58:b1:00:
9e:43:cc:7f:a0:32:c7:87:69:96:98:4a:cb:ad:28:
50:93:4b:d8:95:6d:48:d7:fb:a2:8a:19:14:e2:52:
2d:bc:7e:d9:f9:84:74:63:33:01:c6:3f:b6:0e:68:
77:cf:3d:3b:ea:22:f3:6e:3b:9c:06:92:64:74:3a:
aa:0b:ed:92:21:97:43:2d:2c:d7:77:43:a8:81:ee:
bf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:AB:65:73:14:71:41:8D:1B:25:EB:FC:78:43:83:9B:36:EB:8E:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95130462736411EFA1527DB3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.22.0/24
Signature Algorithm: sha256WithRSAEncryption
17:b0:9d:2c:f7:af:d5:c3:8a:02:65:03:d4:32:fd:8e:6d:72:
20:8d:2f:d0:64:ca:11:65:bf:a7:12:1c:9a:28:9a:d8:89:0b:
b3:54:0a:43:32:1f:a9:24:16:52:b7:0a:9e:9c:8c:24:b4:0e:
70:13:59:ea:89:59:7e:0c:6a:99:20:5e:99:51:36:6b:73:06:
e9:b3:7e:3e:cb:35:37:60:9f:ee:00:03:b5:74:0e:63:70:0a:
07:9b:a4:29:b6:93:15:0e:f8:67:13:f3:47:25:1d:ef:e1:77:
27:05:0e:2e:d3:ef:26:da:8c:fb:bb:f3:ba:63:d9:73:95:5c:
1f:9e:c7:f0:3c:e1:e2:2c:83:9e:00:64:f7:d9:4b:c0:ba:2d:
05:0c:ca:4e:f2:71:03:da:1a:01:b6:95:c7:56:c3:78:5a:ad:
44:f4:2e:bb:18:e9:55:dc:1e:ff:62:0f:11:f3:20:6c:cf:bf:
70:d9:e8:ac:0e:c0:7d:df:f4:58:30:cf:56:62:e9:aa:2c:8d:
55:20:3f:5f:4f:a9:8f:ac:b3:3f:87:09:9f:b2:f1:54:38:70:
87:61:d3:8c:78:7d:21:1e:e2:8e:ba:ca:7b:a2:eb:33:f3:4d:
32:e7:f0:a1:84:26:d8:7d:9d:04:21:91:a9:6b:cf:54:67:60:
53:f1:d9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:16 2024 by rpki-client on console-fra.rpki-client.org