Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01F72122A75311EF919954B2762E951A.roa
File: 01F72122A75311EF919954B2762E951A.roa (raw, json)
Hash identifier: Np6hIWM1qk/k/cQxp4al77EC8jpP/oka6QcqXIAHOOs=
Subject key identifier: CB:8E:E9:68:10:0C:27:36:A9:86:FA:62:78:33:52:87:ED:D7:83:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FC3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01F72122A75311EF919954B2762E951A.roa
Signing time: Wed 20 Nov 2024 15:20:43 +0000
ROA not before: Wed 20 Nov 2024 15:20:39 +0000
ROA not after: Sun 01 Dec 2024 15:20:39 +0000
asID: 151800
IP address blocks: 154.197.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69571 (0x10fc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:20:39 2024 GMT
Not After : Dec 1 15:20:39 2024 GMT
Subject: CN=673dfe4b-7800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:61:3c:0c:cd:95:e2:20:13:76:fe:fe:f5:f8:
d5:06:7f:fd:c2:11:86:fa:9b:fa:80:39:b4:62:d7:
4e:ad:d3:a0:59:d1:7f:eb:51:c6:33:11:98:7a:f5:
bd:bf:69:6e:08:23:fd:b0:a2:e4:59:b7:e0:e2:c2:
43:94:5e:8e:26:7a:80:23:4b:bc:68:93:e5:11:10:
db:61:ca:c0:bc:20:8d:ea:f7:7c:a4:76:d3:b5:ab:
d6:ba:bb:ca:98:1e:c1:86:ec:8d:22:d1:06:e8:d3:
a5:9a:f0:e1:72:ef:65:ae:02:83:4b:36:72:6c:cd:
86:3d:e2:0a:c1:96:be:b7:b2:bf:4a:0d:d8:3f:3f:
dd:cc:17:16:a7:c7:a4:d8:1a:9a:2c:48:00:2f:71:
6f:5b:93:21:06:b0:ab:a9:64:4e:80:d0:f2:78:4f:
4e:17:d2:21:f5:cc:01:c1:5a:88:70:b1:23:62:a5:
1a:5e:f5:37:1e:6d:8e:f3:08:9f:f1:62:f7:8c:ec:
ad:f6:38:c5:39:4c:cd:99:4d:26:8b:93:4d:a1:6d:
a0:49:61:73:8e:eb:b5:69:ac:5e:1e:b4:c2:9d:ab:
7d:9e:fc:4b:b1:c4:e2:ec:df:8b:5e:7b:72:38:c0:
74:98:fe:42:c5:14:2d:ad:9d:fb:54:2d:ea:a6:34:
2d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8E:E9:68:10:0C:27:36:A9:86:FA:62:78:33:52:87:ED:D7:83:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01F72122A75311EF919954B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.87.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:bf:0f:62:07:6f:69:f9:df:59:6b:39:64:d1:89:ba:d2:d1:
16:6e:8a:70:b5:bc:27:97:ab:41:39:6d:6f:50:a9:e4:5e:d3:
38:68:0d:f4:f2:33:92:86:7d:60:ce:d8:8c:dd:45:9f:ed:a6:
36:c2:66:5e:1e:54:20:9d:00:8d:7c:ca:38:c7:53:90:33:f4:
f0:08:f9:f0:9f:89:f4:7e:d2:e4:46:4c:ac:80:bb:25:38:ef:
41:1b:6d:61:d1:f3:e6:70:d8:50:44:80:62:52:3f:65:71:d5:
3f:ab:26:aa:61:0e:83:eb:a9:6a:37:3e:24:c4:54:22:14:48:
d4:9b:76:f3:cd:4f:d9:4d:b6:d6:80:f3:e2:ea:ae:31:eb:41:
1d:c5:43:f1:dc:b7:5c:73:d1:06:95:fe:78:54:65:0a:8b:c7:
c4:b2:d9:12:85:d6:e7:4a:e1:99:30:99:18:40:22:51:d5:67:
90:3b:4c:36:b2:12:0a:7d:31:b2:1d:fa:d3:a1:9e:95:30:41:
9b:eb:71:ba:54:44:9b:29:a0:ae:fe:cd:df:b5:e2:43:25:3a:
66:c9:ea:8b:a9:a4:13:59:5b:f8:91:ed:9e:d3:c3:fa:b4:54:
84:f5:78:0a:75:70:54:ef:fd:21:30:45:90:b5:84:f0:28:7c:
0a:f2:d6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org