Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D92110BE7F1111EF93001A64762E951A.roa
File: D92110BE7F1111EF93001A64762E951A.roa (raw, json)
Hash identifier: 6sv2Pd9hg06dP/LM154qiKStqMvulX71EZ0AjMaU4Z0=
Subject key identifier: FD:C4:9B:C1:0F:B2:AE:B7:0F:62:16:BE:31:BC:11:50:E5:B1:E1:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F5D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D92110BE7F1111EF93001A64762E951A.roa
Signing time: Mon 30 Sep 2024 09:53:31 +0000
ROA not before: Mon 30 Sep 2024 09:53:27 +0000
ROA not after: Sat 30 Nov 2024 09:53:27 +0000
asID: 138915
IP address blocks: 154.93.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62928 (0xf5d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 09:53:27 2024 GMT
Not After : Nov 30 09:53:27 2024 GMT
Subject: CN=66fa751a-3a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:d6:60:a9:e9:53:ca:e0:1d:88:db:d7:2b:
28:49:77:97:7c:13:6d:fe:12:5d:30:b9:6b:2e:3e:
aa:5b:1d:99:ac:8f:e2:bd:25:3c:69:23:b7:0c:f0:
9e:4f:b1:e6:8c:5f:16:e3:b8:5a:4e:44:1d:d5:1e:
ca:ba:01:8d:95:24:c7:8d:4d:6a:bd:3c:00:ef:59:
1c:c8:b8:14:19:05:79:c6:f5:66:4c:bf:0a:ed:fd:
08:dc:1b:0f:22:48:3c:eb:d5:f3:bc:de:82:60:09:
2f:2e:1b:33:aa:4f:94:63:eb:e9:37:61:35:85:43:
44:fe:d9:f7:c8:c2:78:6b:96:6e:40:4b:c5:bf:e6:
99:f9:06:83:95:c8:59:24:0b:31:3e:13:bc:1d:ce:
30:cb:33:8b:58:71:f6:b0:ff:59:eb:c3:18:a0:5f:
b7:d0:cf:6f:f3:a5:15:ff:73:f4:0d:9b:bd:df:98:
b2:80:73:7d:bb:20:46:58:ae:be:1d:57:c3:7e:ce:
a2:ae:8b:32:5a:b9:75:89:21:49:45:19:b8:47:28:
4e:c5:e0:71:be:fd:8c:dd:69:9c:f1:58:d4:64:90:
2b:79:37:23:9c:ca:01:01:0d:db:da:e1:e9:8a:8b:
c5:6f:e6:a0:17:c5:2e:09:9d:1c:1b:21:62:8f:91:
2d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C4:9B:C1:0F:B2:AE:B7:0F:62:16:BE:31:BC:11:50:E5:B1:E1:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D92110BE7F1111EF93001A64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.109.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b0:90:a9:07:e4:f3:63:fe:6d:4e:4a:e4:0d:70:5c:b6:d6:
fc:28:c4:31:3f:67:bc:b6:70:6b:18:a7:19:09:fd:52:be:bf:
ef:1c:66:b2:1e:e4:35:3c:a9:07:6a:cc:70:51:49:46:92:17:
8f:fa:1f:a9:af:7f:47:22:8f:5c:ed:e7:c2:9e:c8:03:7a:cd:
c7:61:92:de:c6:fe:7c:49:6d:42:6e:b5:23:95:d7:92:d1:63:
b7:c3:9c:64:a9:50:06:d7:87:32:27:91:58:f5:ac:c9:61:ec:
fd:c6:e2:e0:db:74:af:5a:0e:96:57:d2:cd:ea:b5:23:78:3c:
ca:00:4b:e6:4d:92:4e:21:2e:cf:94:e8:0e:f0:cd:ac:50:e6:
97:a8:27:01:e2:7e:c5:dc:34:2a:1f:2f:5d:b8:0e:25:9d:f6:
f5:40:bd:79:f7:3d:d8:e2:56:b9:2e:02:37:91:96:7b:17:7a:
ae:51:49:bb:44:01:be:d5:23:4e:fb:62:af:1b:5d:cc:84:ee:
85:ee:8b:cd:dc:8b:96:1b:c6:53:8c:58:a1:ae:d0:26:b2:b0:
b1:68:45:50:df:66:d0:43:e0:7e:e2:24:d1:15:0d:cd:6c:0e:
d6:a1:b2:75:6b:e9:dc:8f:6f:cc:f9:e9:d8:cb:32:58:f5:d7:
73:d0:70:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:49 2024 by rpki-client on console-fra.rpki-client.org