Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6969A1CA8E111EF9600F682762E951A.roa
File: E6969A1CA8E111EF9600F682762E951A.roa (raw, json)
Hash identifier: 4NeB+Ig00oiJIIv/jBs84q1s2hGqTFQDWGx63BSaaWs=
Subject key identifier: 37:09:3A:4D:EC:01:92:FC:6A:97:34:47:4A:E7:61:59:3B:08:48:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01109D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6969A1CA8E111EF9600F682762E951A.roa
Signing time: Fri 22 Nov 2024 14:56:06 +0000
ROA not before: Fri 22 Nov 2024 14:56:03 +0000
ROA not after: Tue 03 Dec 2024 14:56:03 +0000
asID: 62240
IP address blocks: 154.194.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69789 (0x1109d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:56:03 2024 GMT
Not After : Dec 3 14:56:03 2024 GMT
Subject: CN=67409b86-96f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9c:21:af:58:c6:a6:62:f4:10:e9:65:4b:68:
46:df:be:ef:af:fa:78:30:22:ca:0a:fc:f1:bf:b2:
67:7b:b5:8b:5d:5b:49:06:36:96:68:1c:eb:4a:02:
ed:6d:ec:b2:72:4b:82:d1:32:ee:c1:ea:37:20:08:
c1:37:74:5b:78:52:ef:8b:d8:6c:57:6c:6f:ca:ec:
43:9e:62:ee:48:c6:68:a8:dd:ca:82:2f:1f:db:74:
87:a3:3f:55:31:5b:6f:72:99:c3:49:0f:0b:2b:2f:
7a:6e:5f:86:b1:ec:3c:03:2e:59:d9:2c:d3:c0:e8:
7b:cd:a1:99:ac:e7:2e:27:bc:68:b2:57:2a:92:3a:
34:11:bd:34:1d:3c:cb:c7:84:9b:01:74:44:f4:a9:
3f:d4:fe:49:d1:e0:d9:11:ae:17:c4:4a:33:c8:dd:
69:2d:29:9d:8f:7d:35:a7:48:91:42:32:13:fc:05:
4a:1d:d8:9e:68:1a:7d:c3:8f:1b:b9:4a:85:2c:06:
a0:fc:f3:f4:55:91:0d:34:98:34:17:68:09:fe:8b:
08:9d:31:da:a2:ff:9f:a8:4d:6e:07:a4:b0:f0:2a:
7f:27:e2:8a:f1:3e:a6:6c:65:76:a6:c1:f7:b6:bb:
e6:cc:06:65:af:f6:44:76:f2:23:5b:7e:1d:17:14:
cb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:09:3A:4D:EC:01:92:FC:6A:97:34:47:4A:E7:61:59:3B:08:48:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6969A1CA8E111EF9600F682762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.80.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b4:e5:35:4c:9a:2a:f2:cf:0a:ce:71:da:a6:a1:52:21:9b:
14:00:68:a5:71:aa:4b:2a:4d:61:a0:2f:64:e3:07:46:2b:4c:
2a:d5:0e:c7:6a:1e:c3:0a:76:b3:8f:02:f5:8f:a3:e2:b4:af:
24:01:03:3a:a4:b3:45:b4:61:07:15:35:50:d0:fb:aa:2b:45:
a8:1d:9e:6b:ac:1a:3d:84:bb:b0:35:0a:a2:98:49:e8:1c:1f:
8e:e8:26:52:94:45:af:cc:17:7f:24:aa:0d:a0:d9:7d:1c:f4:
de:dd:fc:cf:f3:e2:81:fe:18:ca:a2:3b:12:9c:20:3c:e6:7c:
8e:8d:d9:db:34:f9:77:23:8e:a7:ba:c2:fa:41:df:9c:d2:46:
2a:f1:22:f8:3d:fd:6e:d8:ac:2b:cf:c5:c5:3a:ed:55:2c:e8:
d8:d9:33:b9:3e:66:d2:1c:a5:c1:0e:e2:f6:e8:1c:e6:a9:3d:
26:06:51:5f:0e:4a:8d:73:f5:bf:bd:ed:62:b0:7f:de:bd:ad:
f9:56:4d:d4:7c:d3:03:62:62:12:77:46:98:d9:25:2f:6c:ed:
bd:68:1e:db:61:36:dd:3d:c0:0c:93:ef:ca:ae:fc:95:b2:86:
36:70:dc:26:6d:57:b3:9d:72:ce:10:79:c7:e5:2f:d0:c4:a8:
0b:fa:18:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:44 2024 by rpki-client on console-ams.rpki-client.org