Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6792464AD5C11EF9D7D8343762E951A.roa
File: C6792464AD5C11EF9D7D8343762E951A.roa (raw, json)
Hash identifier: ZLTTkpbaZML/jCQM78HvxmD8UXcF0Rq2lPcxnpH3ap4=
Subject key identifier: 24:5F:DD:BB:F9:A9:69:4A:CC:B6:25:96:58:3F:36:10:6B:51:2C:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0114ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6792464AD5C11EF9D7D8343762E951A.roa
Signing time: Thu 28 Nov 2024 07:45:45 +0000
ROA not before: Thu 28 Nov 2024 07:45:41 +0000
ROA not after: Tue 11 Feb 2025 07:45:41 +0000
asID: 9009
IP address blocks: 154.95.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Dec 2024 00:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70893 (0x114ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 07:45:41 2024 GMT
Not After : Feb 11 07:45:41 2025 GMT
Subject: CN=67481fa9-e179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:7e:73:6b:f0:57:ab:6b:fb:f5:aa:e0:bc:b5:
36:f4:98:28:fa:b8:1a:3b:c5:92:00:c6:f5:48:d7:
13:88:e6:5a:31:98:dd:0a:d9:6e:30:24:6b:75:8d:
23:94:ab:c8:88:5e:5a:49:0a:a4:03:ae:93:5a:1b:
e9:6b:a4:a9:a0:40:e8:66:de:c5:8a:dd:63:b5:b7:
75:09:b5:34:38:e7:bf:ba:ba:f2:92:e5:e6:3c:1e:
46:b6:ce:d9:0d:20:e0:ae:27:b1:7e:f0:8d:43:0b:
9e:4a:1f:d8:b4:05:f2:05:41:fd:16:ce:69:94:a3:
17:1d:35:53:e5:4d:b9:94:a8:b1:2d:62:ba:fc:4c:
bb:1d:53:df:ac:80:03:4b:3e:b2:27:76:e1:8a:7e:
06:78:d5:ca:a3:6a:1d:d7:f5:81:92:78:86:13:a2:
89:eb:48:62:29:a4:2d:20:d5:13:a9:71:2d:82:ea:
a4:14:4b:7d:b2:99:f3:1d:18:ee:59:8b:d0:6c:ac:
af:cb:1b:59:12:fc:af:9c:bd:d1:76:ca:a6:28:8f:
3a:71:ab:ef:49:03:1e:89:9e:6b:79:05:14:de:4b:
20:b6:af:16:04:53:2a:0f:d9:6b:87:ac:e1:70:ec:
d0:70:01:68:46:72:57:78:49:7d:3e:4a:de:10:b8:
b5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:5F:DD:BB:F9:A9:69:4A:CC:B6:25:96:58:3F:36:10:6B:51:2C:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6792464AD5C11EF9D7D8343762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.0.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:37:f5:47:a9:3d:3a:73:63:4c:03:61:c5:c3:71:97:3c:35:
c3:17:fe:e7:71:e8:29:ae:a9:ae:91:ce:ad:61:40:c1:83:38:
b3:68:bb:ad:a8:ce:1d:57:71:f3:f9:ba:fd:a7:e5:6c:dc:9f:
5a:37:48:b7:fd:9e:db:b4:32:7e:0e:dc:13:5a:c7:cc:ad:7e:
d2:51:5c:1a:9a:4b:d6:39:11:63:33:0e:0d:02:9e:00:67:38:
02:89:59:06:f0:3f:ca:14:b0:f8:b9:47:94:d9:ae:70:34:c7:
fb:ee:21:e6:55:52:67:e9:47:29:91:6f:a9:3c:21:5d:ca:ce:
33:8d:fe:09:c5:07:f8:19:ad:c9:37:81:cb:07:88:8d:ac:68:
64:ef:2d:a5:43:f2:1f:b8:b7:e2:1d:67:86:65:4b:c1:d2:24:
b4:a5:3a:5d:4c:de:bc:2f:0b:05:29:84:f8:00:81:77:d9:3d:
30:b3:db:2c:52:33:7b:84:46:cc:17:f3:18:e5:9f:d2:40:ff:
b3:fe:9b:89:8c:92:c9:3f:2a:87:d2:03:b9:5f:b0:3e:ca:d7:
14:a5:4f:10:ee:19:44:00:d8:e9:98:88:fd:70:6c:39:bc:83:
36:f3:c7:f9:4f:e8:2f:50:98:17:d7:0c:08:81:bf:5f:f9:f2:
ed:e3:2e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 15:15:28 2024 by rpki-client on console-ams.rpki-client.org