Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02776C2EA9D311EF9258A16D762E951A.roa
File: 02776C2EA9D311EF9258A16D762E951A.roa (raw, json)
Hash identifier: KiWlicl0/ChFCRCXdy1nXv9TGHhmz6hkStkolJvWkHE=
Subject key identifier: B4:24:FB:B8:B3:A6:03:5D:7D:AD:11:C3:8E:12:CF:6B:27:E6:28:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01122C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02776C2EA9D311EF9258A16D762E951A.roa
Signing time: Sat 23 Nov 2024 19:42:02 +0000
ROA not before: Sat 23 Nov 2024 19:41:58 +0000
ROA not after: Tue 03 Dec 2024 19:41:58 +0000
asID: 141167
IP address blocks: 154.212.140.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70188 (0x1122c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:41:58 2024 GMT
Not After : Dec 3 19:41:58 2024 GMT
Subject: CN=6742300a-057f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3a:52:13:de:0e:3c:60:4f:68:38:f2:fd:e3:
15:2b:f6:12:b2:1f:a6:3d:35:55:a6:b8:05:42:9c:
b5:f4:31:e3:d0:57:54:38:21:65:fd:01:70:f4:09:
2f:f3:17:e7:85:63:ea:9b:38:86:4e:a9:e1:88:4b:
f9:f2:be:4c:84:c0:a4:c1:6a:0e:29:94:02:bd:59:
2b:7f:2f:b4:b8:69:2b:17:cc:ca:9e:cd:fd:89:47:
ce:61:e0:07:9c:50:fb:b8:b7:75:64:b9:65:80:3a:
b5:6e:af:6e:bc:0c:22:29:ac:fa:26:44:d6:ad:87:
20:40:08:b6:5f:f4:69:83:3d:86:61:88:96:7d:84:
a6:e7:00:8c:85:ee:31:16:e1:c2:cb:4a:1d:1a:c9:
f2:20:d2:e6:ee:91:b5:57:1a:81:89:b7:56:29:e1:
1e:57:ed:08:55:ec:fb:a2:48:f6:3b:a4:5d:5a:b8:
1d:c7:72:74:85:d2:20:66:bd:f2:1f:63:5f:72:c6:
9c:0f:22:7f:be:80:af:ac:5f:b0:13:f9:f1:86:ce:
ff:99:8d:e4:87:32:5a:db:da:2f:f2:6f:88:17:63:
98:50:b9:89:9e:26:19:6a:52:19:ec:cd:11:77:e6:
6a:da:a6:aa:1d:90:d2:35:33:3e:ed:17:6f:ad:eb:
d0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:24:FB:B8:B3:A6:03:5D:7D:AD:11:C3:8E:12:CF:6B:27:E6:28:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02776C2EA9D311EF9258A16D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.140.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:04:1f:68:30:18:79:8c:18:77:0c:65:b3:ac:62:12:72:26:
18:9f:df:71:d5:36:7d:08:13:29:ac:54:78:c8:27:ab:a4:1f:
26:76:9b:df:75:83:90:5f:55:2a:40:9a:d9:87:02:95:82:28:
43:2f:e7:18:19:b4:9f:4e:19:b5:a5:d6:64:e2:7a:54:b4:01:
d0:f6:51:00:c9:88:00:1c:4c:55:7c:12:0e:28:88:3e:c1:5f:
2f:79:10:da:96:3e:03:59:a3:88:21:16:86:9d:70:12:6c:2d:
d6:53:a5:67:ee:7f:bc:82:88:a3:0d:4e:44:82:bf:9e:b6:83:
9a:15:98:03:45:3c:98:75:65:29:51:ca:2e:7c:52:e3:16:04:
4e:b5:c5:77:7d:d4:61:3e:b0:f6:af:48:8b:ee:66:2e:6c:53:
51:20:41:45:2c:93:2b:f4:8e:81:76:0a:57:5a:ad:63:ca:00:
01:a7:05:5f:29:f6:ab:2b:c5:5e:4d:b7:fa:b0:b1:06:9c:d0:
0e:bb:e9:8b:53:9b:72:84:a6:27:de:26:ec:83:96:69:5e:fc:
4d:c1:02:2e:3f:8a:3b:e4:62:1a:8e:36:41:38:90:f4:2a:23:
b9:c1:36:f6:ec:bc:dc:06:e2:41:dc:b5:61:f1:af:5d:bb:17:
44:41:aa:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:10 2024 by rpki-client on console-fra.rpki-client.org