Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AE37A5CA8D911EFBFFB7A4E762E951A.roa
File: 9AE37A5CA8D911EFBFFB7A4E762E951A.roa (raw, json)
Hash identifier: 6UD7MWzXulW7ftxRsfeFcyjC/8xvhShXJBERSuXR4t8=
Subject key identifier: 73:4C:31:E9:D8:79:40:28:82:0C:3A:AD:00:36:AF:34:A6:FF:59:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011045
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AE37A5CA8D911EFBFFB7A4E762E951A.roa
Signing time: Fri 22 Nov 2024 13:56:43 +0000
ROA not before: Fri 22 Nov 2024 13:56:39 +0000
ROA not after: Mon 02 Dec 2024 13:56:39 +0000
asID: 44559
IP address blocks: 154.94.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69701 (0x11045)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 13:56:39 2024 GMT
Not After : Dec 2 13:56:39 2024 GMT
Subject: CN=67408d9b-7fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:16:9c:c1:e6:ce:1d:95:19:74:40:e6:d5:13:
df:90:71:4f:f9:3e:32:c9:c0:e6:6b:7f:0b:a1:d0:
7a:15:06:20:7e:9d:01:71:67:fc:fc:85:ed:a1:d4:
15:37:af:1c:55:40:d1:c7:cd:d7:6f:70:c6:5a:bb:
28:c9:8d:75:f3:1f:36:2c:7a:22:90:73:ac:08:3f:
8f:84:c0:70:86:7e:b7:84:7a:71:8c:92:34:a8:d4:
73:31:d6:d2:d7:96:46:7a:ce:ed:ed:34:1d:47:8b:
80:bf:4c:88:14:55:f8:7e:39:67:a8:4b:47:c5:6d:
1d:7c:e0:f9:98:7f:e3:75:91:fd:4c:64:d1:c1:0f:
20:10:07:66:4e:e3:db:0a:5a:62:b7:25:26:30:de:
27:70:50:5e:9f:a8:e1:26:5c:6c:87:07:46:29:01:
b4:67:01:7c:e2:66:ad:1e:af:38:b1:6f:44:e8:53:
54:f8:fc:f2:f3:46:63:47:60:94:3f:34:7b:3f:76:
c8:9f:d5:a2:13:3f:30:53:29:ad:ed:5b:fb:d7:b0:
fe:9c:5e:0c:06:9b:c5:06:4e:c1:04:88:c0:5c:bc:
ae:7c:bc:4a:52:af:61:1c:ac:1c:c8:05:54:d5:b2:
5b:54:03:54:36:5a:54:22:8b:79:df:6d:3b:eb:3f:
c9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4C:31:E9:D8:79:40:28:82:0C:3A:AD:00:36:AF:34:A6:FF:59:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AE37A5CA8D911EFBFFB7A4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.240.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:5b:a6:1f:a7:03:4c:4e:23:ba:4f:95:78:44:c3:5c:c3:bd:
e7:70:3c:a9:66:71:76:07:71:0a:7f:e5:27:ef:15:b2:2a:8e:
f9:36:ce:8e:09:e6:f2:ad:7c:90:23:e7:e6:56:1a:ff:4b:2e:
86:54:9b:b8:09:2b:be:97:55:72:5e:c4:bd:5d:d2:7e:31:1a:
70:f0:ff:4f:a9:62:f0:ee:39:f0:4c:43:0a:69:c3:20:bc:71:
e9:c4:3b:b9:a1:53:63:43:c5:fb:10:de:85:da:c8:4b:02:88:
6d:57:e9:c4:5c:84:3b:b2:18:10:61:89:28:66:5a:b1:e8:bf:
21:6b:e3:13:74:b8:45:b0:16:94:88:50:48:7d:d2:22:a7:5c:
8c:63:1f:f7:ea:e6:d5:a5:9e:2c:ec:a4:7a:07:52:9e:20:87:
85:46:c2:eb:17:a0:d9:fc:de:5b:c4:1e:83:b4:76:8e:ad:79:
e7:ba:3f:6c:2a:c5:0a:15:f3:81:8b:c0:8e:78:2f:b1:c2:69:
d1:2a:f2:61:4e:c7:14:fa:b9:64:90:86:7a:dc:cd:1a:2c:44:
da:ae:a5:5d:56:82:09:ff:b8:f6:a9:b1:8d:7d:69:e5:3e:d2:
0c:b6:86:dd:ff:3c:4f:61:2d:43:8b:80:2f:93:e8:51:09:ba:
35:a1:91:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:25 2024 by rpki-client on console-ams.rpki-client.org