Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2DE977AB0FA11EE9E4E7153775412E6.roa
File: D2DE977AB0FA11EE9E4E7153775412E6.roa (raw, json)
Hash identifier: yaKwBopJoBSt4ySLKIizSkCgwgiRFn+7FerUXNrpGnE=
Subject key identifier: 39:73:B2:B1:FD:74:75:75:96:95:41:41:E4:90:22:77:3B:55:CF:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 745D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2DE977AB0FA11EE9E4E7153775412E6.roa
Signing time: Fri 12 Jan 2024 03:29:42 +0000
ROA not before: Fri 12 Jan 2024 03:29:39 +0000
ROA not after: Tue 07 Jan 2025 03:29:39 +0000
asID: 139057
IP address blocks: 154.85.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29789 (0x745d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 03:29:39 2024 GMT
Not After : Jan 7 03:29:39 2025 GMT
Subject: CN=65a0b226-6da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9a:d9:66:f8:8b:ed:0c:7e:ba:54:b3:f5:5d:
32:6c:be:4a:50:a5:ba:7c:51:93:9a:7b:79:5e:12:
e2:05:6f:9b:d8:fa:a0:61:9a:59:61:45:8a:52:2d:
78:92:7e:ff:b8:74:05:a8:09:c7:80:25:d5:e4:a6:
0e:90:69:67:6a:24:bd:89:73:7f:56:71:d3:c0:3f:
dc:39:f8:ef:aa:ff:ab:3c:92:c8:14:28:75:d7:f7:
7f:aa:6c:c1:08:d9:95:46:18:bf:cf:c8:ce:fd:dd:
c3:e8:de:fb:3e:eb:50:89:ad:6f:01:91:c9:d4:88:
86:ec:55:b9:d0:17:f8:a5:f5:f4:0e:16:82:76:21:
c4:21:d7:a8:f2:67:8e:82:8c:14:46:3a:fe:61:a8:
6f:e4:e9:d2:4c:eb:8b:b4:c4:b4:b8:1b:2e:e2:f0:
86:28:35:29:60:da:b5:95:c2:22:12:c0:36:de:5b:
58:2f:07:9a:6c:83:45:b5:41:d5:ff:15:3f:05:52:
62:5a:a4:52:24:24:df:be:c0:1a:a1:25:94:99:26:
86:d0:80:0c:f9:98:42:8e:61:85:e9:8e:52:06:98:
4b:9f:fb:2e:3e:19:de:ba:c9:e0:dc:fa:7c:31:1e:
0c:35:85:58:7d:12:ec:98:c7:f4:6b:31:c7:7e:90:
9d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:73:B2:B1:FD:74:75:75:96:95:41:41:E4:90:22:77:3B:55:CF:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2DE977AB0FA11EE9E4E7153775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.92.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f1:3e:06:99:a3:75:74:ea:10:96:e9:7d:5f:c7:73:66:ad:
ea:56:c1:8a:34:d3:73:c8:b6:82:34:b5:d8:e1:fb:6f:7e:f4:
d0:ca:ed:5c:c3:d0:9a:d7:b7:90:b8:a7:c1:19:e7:1d:7a:0f:
6a:fc:56:77:ca:56:e8:0a:f9:bf:4f:02:eb:44:67:47:09:67:
54:f6:f7:63:c5:52:ff:80:c3:d2:7b:ce:3b:4e:b8:c1:11:7d:
08:46:1c:f6:1c:5b:d1:ee:b9:ad:94:11:05:9b:25:13:d2:e7:
35:ef:3c:e7:24:78:e4:80:3b:a5:32:49:9f:44:86:55:18:39:
33:fb:e9:34:a3:47:a5:b9:f9:c1:8c:6d:3e:29:b4:d3:10:f6:
5f:68:81:22:db:39:de:28:92:b3:9d:e6:ab:78:81:3d:b4:ea:
7d:d7:86:9d:5d:86:bd:97:f6:75:55:36:fe:d0:cc:c6:bd:ac:
fb:3b:c6:7a:d6:b4:55:89:11:f9:ae:9a:14:93:b8:61:3d:be:
80:3e:09:d9:f5:20:4e:9c:e8:ac:7e:1f:52:16:5d:9b:da:60:
a1:f8:ea:fa:3b:ea:16:73:34:f3:a2:8e:a7:2f:d2:c7:1d:4a:
fd:62:12:a5:8a:89:2f:a3:13:48:59:b8:9c:e0:5a:e4:f8:fe:
a5:62:1d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:28 2024 by rpki-client on console-ams.rpki-client.org