Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C84FE84A0DC11EFAB85D55F762E951A.roa
File: 0C84FE84A0DC11EFAB85D55F762E951A.roa (raw, json)
Hash identifier: u5u1UNMvi8JORqj3D99qH9UGI1bwaoQqOwYn7ho0peU=
Subject key identifier: F4:9E:BC:C9:14:D3:0B:D1:0F:19:FD:09:4C:30:C5:1A:2D:BB:C6:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C3A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C84FE84A0DC11EFAB85D55F762E951A.roa
Signing time: Tue 12 Nov 2024 09:54:04 +0000
ROA not before: Tue 12 Nov 2024 09:54:00 +0000
ROA not after: Sat 07 Dec 2024 09:54:00 +0000
asID: 138915
IP address blocks: 154.223.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68666 (0x10c3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:54:00 2024 GMT
Not After : Dec 7 09:54:00 2024 GMT
Subject: CN=673325bb-0816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:84:5a:5a:90:ac:07:fd:a3:9a:21:a6:3b:2c:
66:fd:bf:27:6b:22:61:06:0e:bb:f1:6a:54:12:89:
03:f9:ef:43:bf:fb:86:83:70:c8:05:b4:63:7b:5d:
f7:dd:c6:fe:cd:c1:98:14:40:8f:8a:11:7e:e6:23:
c9:69:88:06:6c:84:a4:be:b8:7b:ca:a2:5c:a1:51:
37:15:5f:46:6d:ac:03:77:0b:4b:06:d8:03:42:2d:
c4:e1:48:ad:d9:c0:3c:db:24:fa:d4:64:66:7d:e6:
14:47:98:9d:b9:bc:bb:77:d5:bc:ce:8d:53:f2:4d:
1e:05:74:0b:22:0a:fc:c2:f9:10:f2:cb:4e:63:c4:
61:65:01:90:8d:2f:b2:cc:de:53:bd:9b:a5:58:8b:
ed:21:2b:f2:e7:0e:10:2c:4f:ef:bd:69:33:dd:d0:
17:46:95:1a:1c:f3:d8:d1:4f:db:9c:23:04:66:f6:
a2:14:e3:3e:59:ec:dc:5c:0f:81:2f:3e:6f:e8:73:
63:a4:08:c6:62:41:35:14:05:c2:1b:3b:cd:e4:f8:
22:67:a2:5e:0a:8f:89:5e:93:05:96:df:65:88:a9:
89:93:06:5d:ea:aa:65:82:f7:0e:ce:61:9e:4b:a0:
f2:7d:76:12:09:b7:37:ca:a0:34:89:e0:85:02:77:
af:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9E:BC:C9:14:D3:0B:D1:0F:19:FD:09:4C:30:C5:1A:2D:BB:C6:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C84FE84A0DC11EFAB85D55F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.30.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5c:8c:22:ef:9a:44:93:45:ba:5f:ca:06:39:56:8c:3d:8f:
66:f4:cd:3d:0e:e7:79:e7:60:81:e4:ff:bb:4f:31:18:4f:65:
7f:70:0a:2d:93:31:9d:e7:c7:4f:86:25:be:e6:a9:c6:a5:8a:
30:ab:02:0b:c6:5d:58:c7:ab:8b:c2:c1:fc:b6:b5:bf:78:bc:
74:cd:8f:ad:82:d5:d3:3c:72:7b:d6:27:9f:e0:9d:dd:68:b9:
1a:36:e8:5a:44:c7:8f:94:79:04:b2:bb:2d:21:81:72:37:de:
49:46:b3:83:07:52:9b:7d:ea:2a:a1:2a:aa:30:c2:58:b6:c9:
40:1e:f7:79:28:65:fe:fb:52:2c:2c:b0:2d:44:af:1b:3f:13:
a7:e7:12:ee:7c:7d:83:d9:1f:de:d0:b7:56:cf:9b:8e:67:f4:
9e:2f:c8:7d:4c:94:e8:0a:5d:d6:c1:62:00:75:ef:32:0d:1d:
d3:ce:f3:7f:29:f9:2a:bb:4c:d9:58:ea:75:d1:cf:0f:3b:34:
57:66:09:4c:9f:16:25:a5:b5:07:f8:ce:7a:d1:9f:c4:4f:47:
79:a8:0b:d0:5e:72:6d:29:08:83:e2:23:29:07:de:56:87:be:
68:30:32:01:c4:83:84:24:9b:ea:f4:ec:6d:51:99:a7:f7:d5:
95:e5:47:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:21 2024 by rpki-client on console-fra.rpki-client.org