Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/024E6CF674D211EFB9209A62762E951A.roa
File: 024E6CF674D211EFB9209A62762E951A.roa (raw, json)
Hash identifier: Lk+jHGRLhUQb5vVf9vLqB6LpP6LvFYvlElQ+Fvm63Cw=
Subject key identifier: 0F:4A:99:F0:B6:05:0B:AA:C3:AE:B5:EC:E2:E9:D2:08:98:50:70:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F030
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/024E6CF674D211EFB9209A62762E951A.roa
Signing time: Tue 17 Sep 2024 08:51:20 +0000
ROA not before: Tue 17 Sep 2024 08:51:17 +0000
ROA not after: Sat 30 Nov 2024 08:51:17 +0000
asID: 142403
IP address blocks: 154.83.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61488 (0xf030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:51:17 2024 GMT
Not After : Nov 30 08:51:17 2024 GMT
Subject: CN=66e94308-2b9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:45:e3:b4:03:e3:67:9d:c6:23:46:c6:89:62:
76:10:7e:08:b8:c6:65:1d:79:24:c1:0e:d8:4c:67:
96:6d:72:e2:a5:d3:45:23:44:3d:14:64:be:1b:b1:
44:64:67:92:ba:21:12:77:7a:c1:47:73:67:3c:e0:
20:41:89:38:18:cc:a8:a4:42:e5:cf:c3:a3:46:4e:
5e:ee:1c:31:c5:e4:98:e8:87:b4:f2:cd:61:1a:83:
f4:8e:1c:c5:42:12:d8:2c:17:2a:9a:35:37:06:8f:
83:72:05:8b:e7:c3:c3:80:8b:73:be:8a:41:aa:a0:
69:46:ad:cb:10:db:bf:c9:ec:61:9c:a4:db:ed:63:
94:d5:90:4b:0f:f4:17:79:f0:49:30:37:bf:1d:55:
a6:fa:9c:13:02:b9:38:62:2e:bf:50:f2:c4:66:52:
7d:16:c2:6e:08:7c:ec:25:de:b4:1b:8e:95:ce:5f:
ff:87:a6:30:85:5f:52:9d:29:00:39:81:6a:8b:f7:
3b:cd:a4:16:3c:76:7f:0d:8e:a5:b0:76:15:7b:96:
ba:55:dc:6e:a5:d4:44:fa:e3:68:c9:7d:ce:cb:25:
98:23:9d:bb:fe:04:b9:55:ef:ad:f6:98:ec:7c:47:
da:95:a1:08:72:6b:e3:ab:56:16:cf:7f:93:3d:e5:
f2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4A:99:F0:B6:05:0B:AA:C3:AE:B5:EC:E2:E9:D2:08:98:50:70:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/024E6CF674D211EFB9209A62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.12.0/24
Signature Algorithm: sha256WithRSAEncryption
89:5f:57:23:6e:e5:19:e5:a1:d6:31:6a:a3:0a:37:44:51:d1:
42:9a:81:61:0f:a3:51:d4:d5:5e:2c:b3:48:73:e6:86:bc:1b:
bb:70:1c:de:b1:3b:fd:e8:17:78:c6:6f:ea:f9:ed:b3:33:7b:
40:0e:e9:9d:ff:32:6a:44:60:75:e1:15:b6:42:a7:c1:4a:a8:
da:60:67:73:6e:48:b0:8b:df:3c:4c:75:51:aa:0d:62:1a:08:
fe:58:92:3d:cf:25:1b:56:53:1b:e1:4e:6b:5c:6f:1e:05:7e:
02:be:43:b9:e1:9d:86:47:70:18:b7:b9:82:52:fe:93:10:e4:
c4:da:c6:9c:21:ee:8e:5d:8a:8b:66:1d:1e:7c:38:1d:00:1f:
95:c1:1d:f8:19:bd:9b:6e:d7:10:20:53:7e:25:36:fc:b9:af:
be:f0:ba:87:f2:33:83:87:9d:0a:47:fc:44:da:fd:9c:5d:34:
5a:7e:aa:be:96:73:b4:77:57:9a:6f:7e:86:de:29:36:b6:87:
c8:32:d9:ff:bb:b1:ba:19:7f:29:f7:a8:5d:9f:dd:1d:31:8a:
7f:f2:8f:be:39:71:29:10:f2:db:72:eb:1f:31:82:bd:bc:e4:
30:f3:0f:bf:2c:94:34:ee:f0:da:27:cf:52:0d:a7:4c:e6:99:
24:6c:5d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org