Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15BBC7C0A9C511EF928E0496762E951A.roa
File: 15BBC7C0A9C511EF928E0496762E951A.roa (raw, json)
Hash identifier: oAdx+VUhziIxdTNYfOkpzfq6BhXAHhjL/aXYwGFIrA0=
Subject key identifier: 40:D5:E3:FE:E4:C9:E9:26:C9:CF:27:C5:8E:66:B0:FA:A3:80:1C:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15BBC7C0A9C511EF928E0496762E951A.roa
Signing time: Sat 23 Nov 2024 18:02:21 +0000
ROA not before: Sat 23 Nov 2024 18:02:17 +0000
ROA not after: Mon 02 Dec 2024 18:02:17 +0000
asID: 9009
IP address blocks: 154.85.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70112 (0x111e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 18:02:17 2024 GMT
Not After : Dec 2 18:02:17 2024 GMT
Subject: CN=674218ad-92a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e2:75:d6:15:84:f6:66:10:17:c7:b7:0c:6f:
0a:76:b3:df:10:23:43:bc:42:0c:0a:18:ff:8e:ba:
33:80:e7:3e:65:1e:a3:fb:ef:24:24:ed:33:a2:04:
e3:94:1e:8e:36:83:a7:af:0e:31:91:32:b9:64:1a:
6b:94:d1:5c:d8:1a:2a:7c:b4:fe:42:1a:0d:ad:27:
37:82:3f:7b:b6:59:34:6c:f7:96:06:35:d9:de:89:
61:4a:7a:d9:1b:04:ca:71:1c:9a:3e:8b:8c:a7:63:
54:a9:cf:ba:45:29:8e:12:9a:d9:a3:36:be:95:20:
5d:54:aa:b1:53:04:22:72:aa:55:e3:40:25:44:fa:
ca:0e:87:b5:3a:15:37:f3:7e:3b:51:32:0c:49:10:
38:5a:5b:60:45:62:2a:f2:ee:0b:8a:a7:29:30:06:
4e:b5:b5:97:77:5c:5b:37:2a:97:0c:1a:ed:71:36:
84:11:cf:4c:ec:43:9a:d6:f1:c6:4d:ae:17:c8:c4:
86:4f:80:60:40:5c:dc:26:a1:47:bf:b9:b2:14:9b:
c6:e6:bd:78:b7:28:ad:40:69:25:f3:9b:e1:8e:c2:
32:50:a0:b3:2b:16:8a:e9:4f:be:f9:ca:e7:43:2b:
3b:b7:1e:b7:d7:d3:12:26:57:7a:65:d7:b8:92:e1:
7b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D5:E3:FE:E4:C9:E9:26:C9:CF:27:C5:8E:66:B0:FA:A3:80:1C:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15BBC7C0A9C511EF928E0496762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.124.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:e8:59:a0:43:b0:d4:ec:ce:64:8b:fb:6c:12:27:c6:db:0c:
4c:d8:37:c6:1b:83:7a:57:39:4e:db:f1:5a:ee:32:c9:42:80:
0a:1e:e3:ca:00:8b:47:38:9b:66:d9:4e:05:36:58:2b:ea:c2:
0f:2a:04:21:d4:d5:7c:1d:48:ad:a2:aa:37:50:f6:a6:52:3b:
3a:68:97:ea:49:35:69:9a:b9:cc:16:00:b5:3c:7a:de:a0:17:
5b:99:57:04:8e:aa:77:70:15:bd:ca:bf:49:0b:40:b6:16:fd:
dd:00:a6:a5:ae:19:03:63:08:ed:e4:7d:b6:1b:4b:9c:26:52:
0b:20:9b:c9:e1:ad:9f:e8:83:cb:76:e8:53:c7:f6:65:f8:16:
f8:8f:ef:b3:f6:9f:40:d5:55:4a:07:e8:03:46:7b:41:ec:e3:
b1:8c:ab:ec:1d:de:37:4a:80:bb:5a:b9:2e:81:ed:55:0c:e1:
86:b5:41:cc:e7:b2:ae:8c:c2:5c:d0:7b:95:88:98:c7:2e:f1:
a9:f7:de:eb:14:cb:ff:2a:6b:96:8b:98:30:d8:b7:c7:58:59:
5f:74:ce:71:14:40:43:a5:82:36:9f:cc:c3:26:49:c9:82:54:
42:4a:72:a9:cc:94:56:9f:17:b9:74:c8:c4:a9:cd:d6:9c:ae:
0d:a2:3b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:22 2024 by rpki-client on console-fra.rpki-client.org