Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/162B0F8EA9BD11EFBD27F863762E951A.roa
File: 162B0F8EA9BD11EFBD27F863762E951A.roa (raw, json)
Hash identifier: zCA9r3GzhlnvDbmEcxeg/AIGsXPtLuXh1005pDVQDMs=
Subject key identifier: EC:8A:DC:66:6D:FD:1D:1E:7F:F4:8A:4F:5B:21:D8:60:0C:14:18:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/162B0F8EA9BD11EFBD27F863762E951A.roa
Signing time: Sat 23 Nov 2024 17:05:06 +0000
ROA not before: Sat 23 Nov 2024 17:05:02 +0000
ROA not after: Mon 02 Dec 2024 17:05:02 +0000
asID: 44559
IP address blocks: 154.211.48.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70060 (0x111ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:05:02 2024 GMT
Not After : Dec 2 17:05:02 2024 GMT
Subject: CN=67420b42-8352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:14:e6:55:a3:17:8c:66:22:aa:7a:ee:d7:c2:
1e:fd:59:6d:ad:c7:c8:30:5c:78:11:1a:b9:3f:f6:
b5:d5:59:6a:83:8a:56:08:d8:fa:c1:cb:78:f5:4a:
d0:95:82:3a:00:3a:46:2b:c7:56:8c:6e:fa:51:88:
9a:03:50:d1:3f:c0:8f:69:93:f3:7f:34:68:0d:17:
cc:97:0c:95:6e:e4:e4:d2:2a:34:ab:8c:cc:f3:1e:
e6:56:bb:f1:29:ae:28:39:b1:43:a7:bd:f8:99:f5:
c5:3a:47:f1:fe:51:b3:29:96:54:c3:09:a7:08:9b:
c9:4a:60:cd:51:3a:28:63:c5:26:94:83:0c:71:85:
2c:8d:99:0b:7d:54:31:d4:83:b6:f1:0f:8d:22:aa:
31:18:b0:80:89:b9:0b:0d:5b:cd:64:1d:14:9b:2a:
b5:f0:80:00:61:d0:21:47:7a:55:35:54:b6:f6:1a:
0c:f9:85:46:54:23:99:aa:ba:0c:cc:b6:e6:10:fa:
e6:5e:e7:b6:54:b2:fe:e2:c8:fe:77:46:9b:66:f4:
2f:f3:ea:ea:52:ac:10:72:99:a7:a2:83:a6:0a:26:
fb:ad:de:8b:dd:ef:29:5d:74:fc:15:f2:7c:db:4f:
08:e4:44:1d:30:22:4b:3a:ea:d7:15:3c:75:85:b3:
ef:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8A:DC:66:6D:FD:1D:1E:7F:F4:8A:4F:5B:21:D8:60:0C:14:18:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/162B0F8EA9BD11EFBD27F863762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.48.0/23
Signature Algorithm: sha256WithRSAEncryption
40:9d:1b:d8:60:0c:67:eb:76:42:09:11:4a:68:65:5f:d6:ac:
12:22:a5:be:b3:c5:85:fa:5e:6f:9b:8c:07:c0:7d:24:e0:70:
4c:11:a0:8c:ee:9f:11:14:70:e9:22:e2:a1:e1:a0:cf:af:27:
6a:90:b9:4c:a6:7d:61:e0:95:b3:4f:2e:7c:4d:6e:50:25:59:
99:39:77:9c:10:07:0c:77:a2:af:65:ff:6c:14:c0:ee:ac:cd:
7f:44:5f:78:37:cb:96:a8:3f:01:c7:39:f1:fc:80:62:83:b5:
16:13:07:6a:8f:11:04:0e:e0:20:44:50:54:9e:c4:c0:37:22:
ee:c4:fa:3e:ef:61:df:e1:34:f5:80:21:71:2f:7f:4d:3d:2c:
e0:aa:50:c6:44:1f:d2:7c:c4:60:73:2a:3c:22:60:e7:d5:9e:
0c:b4:07:e1:b9:ba:c6:6e:ef:bc:a3:61:36:28:25:0a:45:bf:
89:7a:56:00:cd:2b:1b:94:f0:ca:9b:f3:45:45:dc:c6:69:4a:
5d:0e:61:4b:b8:23:ba:f0:5f:1e:0c:c2:5e:4f:0e:d4:a1:e1:
02:88:cc:7d:55:3e:81:ca:00:0e:46:05:5a:91:86:d6:b9:f9:
4c:29:73:d6:0f:b3:40:42:4e:98:af:0c:f2:40:03:67:27:c6:
9b:4a:07:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:22 2024 by rpki-client on console-fra.rpki-client.org