Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A63B71E2A9CF11EF828D075A762E951A.roa
File: A63B71E2A9CF11EF828D075A762E951A.roa (raw, json)
Hash identifier: +KYI/LkZpwNPucgysxrY8LMa8X0frJvNkIqvzuOwIS8=
Subject key identifier: 1B:15:F0:49:83:E9:0C:96:BC:90:3A:EA:EB:CB:C8:EC:6C:BD:00:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01120C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A63B71E2A9CF11EF828D075A762E951A.roa
Signing time: Sat 23 Nov 2024 19:17:58 +0000
ROA not before: Sat 23 Nov 2024 19:17:55 +0000
ROA not after: Mon 02 Dec 2024 19:17:55 +0000
asID: 9009
IP address blocks: 154.92.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70156 (0x1120c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:17:55 2024 GMT
Not After : Dec 2 19:17:55 2024 GMT
Subject: CN=67422a66-9765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a7:04:29:ff:b8:c8:ac:ec:f0:fd:54:c6:5e:
00:f6:c7:58:60:be:c2:cd:eb:0c:5a:98:a1:4c:c8:
ed:97:7c:1f:29:ff:b9:30:fc:26:4e:cf:0c:ac:01:
e8:86:8b:74:0b:3b:29:8b:c5:18:82:7f:9c:b3:cf:
99:3c:30:bf:54:32:75:7d:b4:89:23:9d:76:4a:57:
b1:f0:76:d6:fe:fe:67:1b:cd:e3:4a:ab:62:2b:0e:
45:77:30:8e:7a:31:23:15:4c:57:a9:e3:ff:b9:fa:
c6:27:b4:f6:a9:ad:d1:d8:35:af:9a:0f:d2:b6:e8:
aa:62:0e:ab:2d:3c:fd:f1:1f:0c:24:e9:08:88:d3:
a8:e7:5e:4a:a0:8f:14:5c:ce:66:e8:16:05:9a:2b:
7a:d1:08:72:74:f6:66:97:c0:68:1d:f6:50:2c:4b:
e7:18:56:4d:dc:39:3d:b5:c9:39:5d:86:e2:e5:f5:
e7:eb:da:39:43:4a:33:ad:ec:12:46:00:4b:4a:c5:
77:6f:84:24:e1:e8:a6:f7:bc:af:d6:a6:a0:ff:31:
78:0c:4c:0a:a3:9c:40:a2:70:35:29:c2:fc:13:49:
3b:f7:25:4b:84:40:9e:4e:5b:3e:b2:6a:19:b4:08:
7a:7a:0b:b4:7c:61:8b:7b:c1:19:a3:95:4b:85:88:
bd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:15:F0:49:83:E9:0C:96:BC:90:3A:EA:EB:CB:C8:EC:6C:BD:00:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A63B71E2A9CF11EF828D075A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.120.0/21
Signature Algorithm: sha256WithRSAEncryption
20:86:32:57:9d:41:40:43:54:5b:a6:98:bd:f4:df:df:24:c3:
83:73:56:40:3a:b9:86:53:7f:a9:66:b2:11:c1:f8:74:69:22:
5a:aa:d1:80:50:af:70:c6:38:43:5d:c1:ae:6e:e5:c4:8d:93:
2d:28:96:e8:b3:3f:65:f5:8f:9e:9e:a2:fc:75:d4:7a:22:41:
66:34:6b:a1:62:a5:8e:8f:fa:5f:af:f7:82:8b:33:32:62:57:
fc:db:d0:21:56:a3:31:b7:f5:90:46:37:63:14:4b:c8:f1:04:
fe:f4:ae:32:a3:0f:d6:7f:64:67:f2:bc:7c:5d:1c:09:ba:6b:
2f:82:42:42:75:58:55:68:a8:a2:5a:b8:fa:bd:d1:29:9a:aa:
b0:e9:94:a6:6d:9f:b4:7a:60:6b:a1:ef:7d:05:c1:82:3f:a2:
1c:a6:7f:50:c1:e3:b2:34:fc:10:b0:06:9b:a0:aa:f2:a8:c2:
db:73:5e:3d:e0:cf:3a:1b:fe:ac:e3:59:cd:ab:e1:ac:0a:a2:
45:52:17:db:dc:67:5c:6b:96:37:c1:ec:08:c5:cb:5b:3c:ce:
81:37:e9:26:a1:27:61:ea:50:6c:f7:14:51:8b:91:65:df:4d:
d0:7a:6a:26:bc:35:c4:02:73:72:a7:5e:f0:ce:6e:14:3b:00:
09:98:1d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:27 2024 by rpki-client on console-ams.rpki-client.org