Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6662402A4D111EFB8FA977C762E951A.roa
File: B6662402A4D111EFB8FA977C762E951A.roa (raw, json)
Hash identifier: JKYbgmSp/O++8HwsEti9ISvWJZmKnKa87oX+Y1Iq4OI=
Subject key identifier: 7E:22:DA:61:4C:9E:CF:34:6C:5B:A5:BC:03:9E:DE:05:8A:64:D5:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EC0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6662402A4D111EFB8FA977C762E951A.roa
Signing time: Sun 17 Nov 2024 10:50:09 +0000
ROA not before: Sun 17 Nov 2024 10:50:05 +0000
ROA not after: Mon 25 Nov 2024 10:50:05 +0000
asID: 9009
IP address blocks: 154.92.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69312 (0x10ec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:50:05 2024 GMT
Not After : Nov 25 10:50:05 2024 GMT
Subject: CN=6739ca61-6af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:6c:f7:23:30:c8:56:4d:55:b9:14:75:69:2e:
19:93:b9:54:82:4d:eb:11:5e:a6:e7:d9:01:70:88:
99:3a:93:5d:30:0a:5b:cf:05:5b:c8:e1:b9:0d:6c:
c0:65:98:0c:d5:03:90:17:e6:8a:83:9e:7a:ef:41:
a1:31:9f:fb:fd:2b:07:be:39:6d:33:95:16:59:66:
0b:aa:17:bd:ba:f1:e7:a0:8a:85:21:fd:f5:fb:46:
6a:e1:59:ba:34:6b:89:2e:7a:2c:64:d6:fc:70:85:
f7:17:e7:19:45:0b:56:af:3f:fd:74:93:e4:eb:e2:
24:89:1a:3a:e9:cc:9e:a1:ab:ba:2f:2c:da:ad:f3:
de:77:34:7c:a1:50:47:b1:a7:66:59:cb:69:d7:16:
d7:52:29:4e:9c:91:36:05:4d:43:d0:f0:18:87:34:
2f:fe:24:87:33:93:31:91:c0:df:fa:3a:37:61:1a:
3d:23:30:9b:77:7c:99:5b:89:9f:ae:3d:75:7d:13:
ad:77:6f:b3:2f:95:ce:fc:43:40:67:7e:cd:d6:d2:
13:72:ae:23:51:71:48:45:0a:86:7e:8d:87:83:cd:
b4:11:44:f1:1f:94:d5:55:41:55:0e:98:24:8b:03:
83:a9:c1:ec:79:3f:17:0e:ec:1e:5e:9b:77:60:be:
cc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:22:DA:61:4C:9E:CF:34:6C:5B:A5:BC:03:9E:DE:05:8A:64:D5:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6662402A4D111EFB8FA977C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.120.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6f:98:85:15:a1:67:61:21:07:40:ba:67:98:c5:39:c4:85:
4d:9d:3c:65:45:6f:c4:44:67:60:8d:c9:03:28:dd:cb:a6:e2:
52:05:3c:19:d3:f3:bc:a5:dc:ea:e9:2b:76:31:11:39:83:d6:
a6:7a:63:66:2b:33:05:f1:86:cd:3f:25:22:55:8a:bc:36:21:
9f:7f:e6:13:a6:98:26:7a:61:8a:6b:dd:4c:d4:90:b0:48:1d:
f6:6e:75:4a:4b:76:51:22:01:96:10:0b:b5:45:74:cf:35:65:
81:10:fa:12:0c:0f:64:03:cb:d8:b7:f4:e8:a6:ae:14:00:37:
c1:79:6d:4b:6d:b1:c8:c3:4e:e4:75:4d:fb:e5:20:6c:14:ce:
6f:8a:7d:a5:78:80:73:be:47:7a:d7:33:3f:c9:98:48:ca:16:
6b:92:25:47:16:a1:76:1c:c9:1a:16:78:e3:5d:dd:15:2d:2c:
11:b3:3a:a9:35:54:ae:2d:ae:8c:b7:0c:62:25:b0:64:3c:3f:
d3:1d:1d:c4:64:29:62:d6:03:da:1e:4d:cf:cf:35:90:de:8a:
a2:12:88:16:19:a6:fc:c5:68:aa:30:d7:2c:ee:83:6e:12:f8:
2e:50:89:b6:b0:34:70:bd:66:ab:7d:9b:ae:6e:3b:f7:95:65:
5d:20:90:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:03 2024 by rpki-client on console-fra.rpki-client.org