Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0939E65674D411EF8091A770762E951A.roa
File: 0939E65674D411EF8091A770762E951A.roa (raw, json)
Hash identifier: 4J7xhkEF4VprRh5Fqw0pqnpl4KU/vFjSfYeXL0j+XEI=
Subject key identifier: B4:EA:64:09:0C:A5:77:DC:69:03:AF:26:2C:11:6D:83:4C:A1:51:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F040
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0939E65674D411EF8091A770762E951A.roa
Signing time: Tue 17 Sep 2024 09:05:51 +0000
ROA not before: Tue 17 Sep 2024 09:05:48 +0000
ROA not after: Thu 21 Aug 2025 09:05:48 +0000
asID: 209242
IP address blocks: 154.219.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61504 (0xf040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 09:05:48 2024 GMT
Not After : Aug 21 09:05:48 2025 GMT
Subject: CN=66e9466f-54a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a9:c6:b3:9d:94:35:ec:c5:47:23:5d:75:ae:
31:16:36:28:3e:b6:6d:c4:06:34:ca:d3:1a:bc:4d:
c3:79:03:fd:b5:a2:32:61:69:8b:1c:a1:e3:89:81:
b3:58:e4:50:cb:f8:ec:7b:bc:b2:b1:62:02:28:57:
18:09:a2:0e:8b:59:1a:1d:86:98:46:db:8c:44:1c:
d1:1d:7f:cd:10:18:a1:7c:a0:8d:03:6f:3f:b5:99:
f4:73:d7:ca:4c:be:34:1c:36:4e:c7:74:2c:99:6a:
be:05:88:9a:82:1f:44:8c:04:a2:0e:2e:6f:96:e2:
14:d4:8a:6e:c8:a0:70:f3:96:73:e1:2a:7c:74:75:
02:a5:4e:50:74:8f:b6:9d:08:70:d0:a1:57:6f:b4:
39:4a:33:05:b1:2b:84:12:d3:22:d2:f8:ce:3c:fd:
64:4b:11:10:84:46:53:e1:ec:f6:c1:eb:af:04:e8:
d4:26:11:b6:14:ef:a0:1a:2c:b5:6d:43:4b:3b:d1:
34:cd:38:64:ed:75:92:08:0e:b0:98:72:d1:6a:5a:
bf:d8:62:cc:d4:ee:5a:68:44:45:96:2f:a3:a3:16:
95:40:5b:bf:9a:8a:6e:50:03:0a:10:b9:9e:f0:c8:
24:56:13:89:6d:85:b8:3e:73:59:b1:a6:87:ae:ad:
68:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EA:64:09:0C:A5:77:DC:69:03:AF:26:2C:11:6D:83:4C:A1:51:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0939E65674D411EF8091A770762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.2.0/23
Signature Algorithm: sha256WithRSAEncryption
98:84:9e:fa:76:d4:3d:fb:5e:40:dd:0c:56:d4:b5:29:63:e0:
ce:16:0e:e7:87:e7:51:de:34:e0:e4:d7:e6:a3:60:34:7e:67:
8b:07:71:a0:e5:7c:d7:d7:de:09:dd:b7:f8:84:c8:7c:38:1c:
5e:46:29:63:9b:40:f9:ec:e7:6e:2c:d5:69:fe:fd:20:6d:d2:
d8:b1:d8:1f:49:1b:ea:db:d6:05:27:ad:0f:56:3c:d6:13:85:
46:9a:8c:69:a8:a7:45:75:7a:d9:f9:d8:f0:cd:bd:f6:68:dc:
27:fc:a0:4b:a9:ea:da:e0:e9:00:76:b1:51:ad:5a:fe:fd:e2:
36:0e:51:d1:c9:01:d6:8c:3e:f9:a0:e2:bd:5b:6b:03:0b:a2:
ad:32:9b:fb:3f:80:4d:9a:20:62:bd:f5:7d:4a:0c:a1:5a:75:
70:bc:d9:79:25:a2:a0:07:18:01:d5:a3:1b:89:f7:16:f6:91:
52:03:ec:2f:56:6e:90:99:2d:d5:91:ab:33:90:cd:90:fe:98:
2b:dc:17:02:87:7f:2d:ef:03:1a:11:d2:5d:ca:71:76:72:eb:
a5:c8:de:bf:f2:76:27:a7:fd:59:2d:8f:54:07:25:e3:6f:bf:
1c:24:7e:c0:58:a9:56:0c:d6:0a:30:fd:67:52:e2:a7:2d:d3:
4a:b1:15:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:58 2024 by rpki-client on console-fra.rpki-client.org