Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08F3E832B10611EEAE1D5669775412E6.roa
File: 08F3E832B10611EEAE1D5669775412E6.roa (raw, json)
Hash identifier: N01+3wDS2sekqCEBFbhAsznN2dd5YBPzDWKGBZSF94o=
Subject key identifier: B2:AE:42:54:6C:0A:81:7B:D9:69:0E:54:AA:AC:9C:5C:15:23:C1:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 74BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08F3E832B10611EEAE1D5669775412E6.roa
Signing time: Fri 12 Jan 2024 04:49:57 +0000
ROA not before: Fri 12 Jan 2024 04:49:54 +0000
ROA not after: Fri 13 Dec 2024 04:49:54 +0000
asID: 140227
IP address blocks: 154.205.195.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29885 (0x74bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 04:49:54 2024 GMT
Not After : Dec 13 04:49:54 2024 GMT
Subject: CN=65a0c4f5-07c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b3:87:68:46:d7:e1:3e:76:a7:af:d1:47:3c:
7c:b9:28:b6:f8:61:cd:35:02:6b:03:1e:4c:e6:53:
5d:78:95:33:7d:37:e1:e0:ac:d0:b7:1f:b6:3c:52:
0b:af:d2:56:d4:e0:34:bc:82:16:78:5c:18:55:d6:
f0:87:4d:00:75:a1:2a:84:43:90:b4:da:d2:21:d7:
34:f4:e4:4d:95:91:23:a3:d0:d5:3a:41:f7:cd:15:
99:f1:35:8a:6a:26:86:98:55:6a:ed:3f:63:0e:48:
cd:37:60:a6:ae:23:f1:47:61:19:e1:1a:04:1a:52:
82:44:13:6f:61:16:88:38:2a:9a:a0:aa:ad:c9:f1:
43:bf:5d:4f:d2:03:74:b5:0a:fe:8e:59:91:50:e0:
a2:9a:65:7e:af:60:bd:1f:f1:8d:66:7c:5f:b9:6c:
7b:95:ad:c4:47:71:79:4d:cf:bd:27:cf:c7:8a:61:
99:e7:3c:f6:6d:47:3d:e1:2d:18:7c:bd:8e:8d:f0:
84:5b:cb:ff:f9:a1:99:a8:4f:03:3d:08:9b:3c:74:
9e:b5:b1:a1:22:8e:27:fb:bb:d2:7a:24:5b:79:2c:
4c:29:e8:4b:cd:0d:f4:b0:ef:ab:cd:f3:c0:8c:93:
4e:4f:42:a3:a7:9f:9f:54:5e:b2:d5:58:d6:3e:3d:
a8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AE:42:54:6C:0A:81:7B:D9:69:0E:54:AA:AC:9C:5C:15:23:C1:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08F3E832B10611EEAE1D5669775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.195.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:ee:d7:5d:f6:8f:2c:f3:9b:cc:f1:e7:08:cd:f9:79:37:12:
f9:c4:63:3d:48:c6:57:7d:3d:bd:20:65:d8:af:92:85:db:d8:
38:a7:24:20:0e:5e:26:2c:d7:94:78:21:6b:e3:c6:63:9e:4d:
af:67:85:02:0b:ac:1f:ea:67:31:55:09:c0:11:fd:82:7b:ff:
57:52:9c:0e:94:f2:2c:20:d0:51:09:e8:f9:a3:0d:f1:fa:20:
92:c3:d5:69:44:5c:87:6f:2e:1d:e5:1f:a1:2c:53:8b:5d:47:
99:50:33:25:cb:a9:73:01:cf:41:a4:e6:ae:da:4d:9f:3f:f5:
0a:8b:f5:76:94:c0:c7:ac:ae:99:e9:81:38:e8:ce:79:c7:b8:
1f:42:75:f7:65:8e:e2:cd:03:16:05:2c:7b:fe:5b:db:b8:85:
e0:f3:13:07:b4:2f:d6:b3:03:14:83:48:c0:e9:1f:6e:aa:dc:
3b:96:75:56:39:9f:21:04:34:0c:e8:4c:5e:fc:d5:dc:18:53:
66:3c:68:dd:3b:6b:99:55:80:5e:c4:c7:68:55:fc:00:c1:eb:
a9:7f:d0:c5:be:a2:ef:a0:ec:50:5a:fc:f9:0c:10:30:1d:9d:
1a:61:b5:fe:3b:68:77:43:1f:19:10:38:ec:5c:f9:a9:54:f2:
69:90:10:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:58 2024 by rpki-client on console-fra.rpki-client.org