Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EFB8F70A91111EE8A69BD6B775412E6.roa
File: 0EFB8F70A91111EE8A69BD6B775412E6.roa (raw, json)
Hash identifier: 9lctpg/AKtof944oXb4N/7ScucGIV8L46Z8tgL+y9ew=
Subject key identifier: B2:DB:ED:21:50:CD:98:45:79:F8:9E:82:36:FC:02:C7:DA:CF:09:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 6CD6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EFB8F70A91111EE8A69BD6B775412E6.roa
Signing time: Tue 02 Jan 2024 01:48:43 +0000
ROA not before: Tue 02 Jan 2024 01:48:39 +0000
ROA not after: Mon 30 Dec 2024 01:48:39 +0000
asID: 328608
IP address blocks: 154.195.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27862 (0x6cd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 2 01:48:39 2024 GMT
Not After : Dec 30 01:48:39 2024 GMT
Subject: CN=65936b7a-de16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7e:22:6e:de:b5:ef:8d:fa:1c:57:02:59:a2:
91:78:22:f7:2d:19:b9:f2:78:c8:41:c4:19:e3:40:
7e:02:cd:ba:68:47:aa:5b:a5:bc:fc:c3:4f:f1:04:
19:48:4e:af:48:df:7a:35:79:25:a8:2a:6f:aa:c4:
d0:2a:4e:41:4d:37:0f:b2:59:9e:a5:57:4a:22:01:
bd:d6:34:3b:8a:54:1a:4b:24:ef:e8:d0:67:94:9c:
1f:70:7f:73:17:03:ea:52:57:83:48:01:80:da:65:
83:0a:9d:c3:77:ac:6c:24:06:73:b2:4e:54:40:4e:
a2:3f:6d:55:d2:c1:1e:dc:66:37:8b:92:cf:71:b2:
ee:d8:9b:50:5a:dd:a8:3b:63:8d:d6:40:29:e8:06:
29:69:7f:bf:51:2d:63:57:7c:82:36:cf:6d:01:1c:
23:d1:c7:cd:93:2b:51:c5:22:25:fb:b0:5d:35:2a:
37:0d:59:c0:18:33:c1:d0:68:26:ef:c8:a2:15:0e:
e0:5f:85:11:6e:2e:05:c2:87:6f:28:e7:9c:27:d3:
71:a9:ad:c8:c2:73:0f:42:f8:64:3f:d4:63:7d:67:
3d:5e:8c:0e:98:73:7b:40:d9:15:05:ef:b5:dd:38:
58:6e:fe:20:66:ed:63:68:4c:7b:b8:5f:65:4a:94:
92:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DB:ED:21:50:CD:98:45:79:F8:9E:82:36:FC:02:C7:DA:CF:09:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EFB8F70A91111EE8A69BD6B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.4.0/24
Signature Algorithm: sha256WithRSAEncryption
56:8a:45:a4:1b:2e:08:4c:f2:c6:64:a9:e8:95:89:12:5f:e9:
dd:2c:52:1b:9c:1c:12:97:70:22:7d:ec:37:0f:99:95:5d:14:
61:78:06:70:0f:44:f4:a2:26:78:06:d4:d0:bf:4c:a5:29:65:
78:02:fb:6c:50:41:1f:4c:fe:02:d3:c1:bc:4a:0e:66:7e:fc:
d7:89:40:68:1e:d5:d2:ca:f4:bf:8e:68:17:bc:8f:a3:c1:23:
48:b6:65:63:09:bf:2f:58:3f:e6:56:9b:63:37:ee:23:a0:99:
b4:e1:8d:f4:8f:8b:96:b6:ed:25:17:95:55:50:1b:9f:b9:40:
88:17:4c:bf:65:cc:df:0a:a4:8b:7c:e4:c9:b1:12:c8:30:3f:
88:86:55:c3:47:3e:fd:9f:f7:2e:f6:c5:32:8e:1c:5a:76:51:
58:7e:56:dc:50:48:1e:c6:58:b8:20:48:54:a0:63:46:26:25:
40:8c:91:59:65:0b:75:11:d9:97:56:5d:63:d8:92:dd:54:fe:
21:93:4b:dc:9a:c0:f2:02:fd:55:8e:b1:4a:f5:23:45:f2:27:
09:36:09:fb:32:e3:48:1b:4e:50:e6:ee:7e:e8:0c:ee:ae:10:
d8:95:b8:05:64:f0:ae:34:70:cc:8b:ef:d1:9a:cb:26:42:0e:
40:f9:8f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:59 2024 by rpki-client on console-fra.rpki-client.org