Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/090F56307B2211EF807FC5A4762E951A.roa
File: 090F56307B2211EF807FC5A4762E951A.roa (raw, json)
Hash identifier: QHpY31fpHDWImc0prvgbHaiyi96oiZhz+Inwda9OM1Y=
Subject key identifier: C1:03:9D:F6:BB:BE:3D:BB:11:09:94:0F:1E:3D:43:C2:E2:90:27:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F35C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/090F56307B2211EF807FC5A4762E951A.roa
Signing time: Wed 25 Sep 2024 09:39:18 +0000
ROA not before: Wed 25 Sep 2024 09:39:15 +0000
ROA not after: Tue 30 Sep 2025 09:39:15 +0000
asID: 211392
IP address blocks: 154.84.26.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62300 (0xf35c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:39:15 2024 GMT
Not After : Sep 30 09:39:15 2025 GMT
Subject: CN=66f3da46-fd6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ad:19:21:de:02:b0:1e:ed:fd:82:f0:a2:c7:
96:d5:8a:a1:0b:fa:68:fa:c6:5f:f4:c9:89:9f:0d:
88:88:ac:4b:73:19:97:70:49:6a:68:47:51:77:6a:
da:f9:9b:16:82:4e:a0:06:df:ed:16:01:da:d6:ed:
7d:56:14:8b:03:f0:bf:96:27:4e:03:51:a7:52:61:
2e:af:42:02:01:7b:c3:b5:64:83:14:82:2b:d3:40:
9f:5b:ac:0e:01:f7:d5:fd:64:36:a3:9a:cc:a1:ae:
5b:a4:c2:9f:17:4f:3b:b7:cf:d2:7c:d9:86:f5:47:
6a:02:f0:81:39:26:9e:c2:45:39:62:6a:27:48:36:
30:9c:71:cc:cf:cf:3f:82:55:24:2c:d1:34:90:fc:
05:0f:da:fd:c8:40:93:c4:91:8b:22:8f:c2:f3:74:
11:50:60:2d:ff:81:35:d2:b1:4e:c3:5b:89:23:19:
b4:1a:44:a1:c1:2e:64:7e:2e:92:3d:70:d8:a8:63:
a4:1a:be:7d:48:0c:ff:9e:81:7e:6c:81:6b:82:84:
e1:ae:30:57:2a:52:71:d5:09:ec:cf:78:0f:61:9b:
8b:7d:f7:94:2f:5e:28:f4:5c:3d:ab:cd:3c:62:5c:
22:86:cd:ca:3b:fe:4f:0d:12:fc:b3:5f:8a:6b:ef:
b5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:03:9D:F6:BB:BE:3D:BB:11:09:94:0F:1E:3D:43:C2:E2:90:27:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/090F56307B2211EF807FC5A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.26.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:ce:20:c7:47:e7:e8:64:ee:60:ba:98:19:cc:38:9a:22:07:
77:8e:04:d1:f2:c8:a6:9b:5a:d0:4f:08:9e:f4:b8:10:dd:67:
47:a9:a0:e3:92:42:b0:a3:fc:87:21:3d:f8:13:7d:05:3a:b9:
82:5a:e7:65:13:f4:2e:95:ef:b9:f5:48:97:25:0a:25:ad:4f:
d5:af:fb:65:1b:00:82:ef:52:45:86:6c:07:1e:34:ec:9e:b0:
f3:97:d3:92:36:ca:81:90:5f:de:d6:ec:31:35:8b:ba:fd:02:
06:46:56:60:04:de:69:06:49:db:62:e3:9e:09:8b:35:11:bf:
54:2d:40:67:9b:36:39:bd:62:ee:06:5d:f8:e8:36:20:96:18:
60:e0:d3:52:5c:d8:c7:2f:61:ef:0b:f7:9a:b0:07:d4:99:1d:
34:db:81:53:7e:a9:fb:9a:a7:39:0b:e8:a6:ea:30:e5:fd:de:
0a:79:25:5a:ba:b4:b4:d6:da:9b:1d:76:60:b4:e6:3c:55:68:
38:4f:4b:31:64:b6:37:c6:f3:3d:aa:33:ea:6c:ad:a3:86:f1:
4b:12:7e:1b:72:fb:86:b9:d5:40:b1:9e:ea:ec:e9:72:ce:48:
4c:5c:e5:05:33:18:b0:91:73:b0:b0:f4:e6:ec:94:db:95:05:
39:41:c1:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:58 2024 by rpki-client on console-fra.rpki-client.org