Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0F6C218911D11EFBE16A1AA762E951A.roa
File: C0F6C218911D11EFBE16A1AA762E951A.roa (raw, json)
Hash identifier: NMBxbiTkmSm6C5BBgzgNY/BI4LkZiLOi9FaC4gMXE5M=
Subject key identifier: C6:61:F6:E0:46:29:88:D0:9C:3A:07:FD:EB:D1:CD:94:5A:13:69:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0F6C218911D11EFBE16A1AA762E951A.roa
Signing time: Wed 23 Oct 2024 09:04:05 +0000
ROA not before: Wed 23 Oct 2024 09:04:01 +0000
ROA not after: Tue 26 Nov 2024 09:04:01 +0000
asID: 395886
IP address blocks: 154.201.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65760 (0x100e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:04:01 2024 GMT
Not After : Nov 26 09:04:01 2024 GMT
Subject: CN=6718bc05-fd43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:84:fa:65:b9:69:92:f3:2b:46:ba:cd:70:46:
43:3c:84:aa:6c:fb:c6:62:de:63:0c:09:48:6d:37:
27:f4:05:fc:5d:84:06:92:11:6e:db:45:84:d5:05:
1a:fd:6b:f2:5d:b2:5c:b3:e0:10:36:ad:59:3e:a8:
69:7c:ec:47:0f:b3:40:43:c7:d8:f1:e1:95:94:f9:
11:dc:d0:a3:95:1f:b1:db:5d:21:12:74:ad:47:18:
aa:0a:7e:b7:bb:93:0f:c0:67:4c:cd:56:dc:18:0f:
d1:be:76:dc:3d:ab:b3:ce:98:f5:5a:d0:01:62:35:
77:72:2d:5d:cb:b3:67:b5:b8:98:93:be:51:ef:13:
e6:15:37:76:eb:f3:86:d6:f2:0e:dc:1f:cb:96:cc:
67:6a:73:9c:a3:ca:48:60:de:88:6c:f9:53:de:7a:
59:60:e8:8c:73:26:c8:40:02:6f:08:59:15:3e:44:
2b:d4:17:2f:b7:aa:63:bd:98:6b:7b:ec:ba:59:c6:
03:e3:51:87:dd:7a:50:41:74:8f:81:87:1a:c0:52:
36:4f:32:86:da:58:e2:91:b8:8e:59:c0:3c:4c:4d:
d5:68:9b:1e:33:b6:ef:00:9a:83:27:2b:9e:67:fc:
68:87:7e:12:7f:f4:43:92:ec:da:5b:0b:1a:51:46:
f0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:61:F6:E0:46:29:88:D0:9C:3A:07:FD:EB:D1:CD:94:5A:13:69:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0F6C218911D11EFBE16A1AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.92.0/23
Signature Algorithm: sha256WithRSAEncryption
55:91:ee:6a:45:b2:73:34:09:ca:26:25:f2:ad:a3:2a:c4:06:
dd:da:d5:64:78:7b:5c:80:fe:85:7d:7b:5e:e8:9e:48:b1:56:
bd:28:0a:44:8c:6a:02:a5:3a:22:ca:58:45:d4:01:16:40:12:
5c:26:4c:20:f2:4a:e4:9c:bb:8d:64:26:73:fe:54:a0:a4:28:
65:b3:18:ea:5e:f1:49:60:33:ab:cd:a7:41:23:8b:8f:6b:48:
c8:01:c5:62:da:fb:04:31:78:e7:d7:4f:0f:54:da:2c:55:04:
0b:02:0a:33:fd:1a:5d:f5:a5:65:10:23:f3:60:1d:24:bc:36:
4e:d2:29:e9:19:3d:5f:fc:9b:11:88:e5:09:a2:4d:f0:d7:2f:
34:f7:41:ce:2f:70:7b:91:be:83:a2:48:b1:e3:1a:ce:ba:f3:
da:7f:f6:70:11:13:91:b9:20:22:52:77:74:e0:bb:14:58:01:
63:7e:64:5f:b0:e7:ee:f9:52:4e:02:09:7e:36:16:a2:a6:b8:
c4:f7:ee:0c:c0:05:14:88:e6:cb:c3:67:fa:29:8a:c6:9c:89:
69:c3:8e:f8:e4:71:e5:5d:5f:85:fd:49:ab:d1:c4:b3:05:32:
1e:16:ed:4f:16:f8:27:7b:d6:65:1a:57:be:ce:20:49:8b:db:
46:c5:07:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:45 2024 by rpki-client on console-fra.rpki-client.org