Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B9F021A9B8311EFADC55AB2762E951A.roa
File: 1B9F021A9B8311EFADC55AB2762E951A.roa (raw, json)
Hash identifier: /EkTr3NEEeGyugZyrpTUoUYVgoCf9yPhnTfMqFmDp5g=
Subject key identifier: 65:39:4E:00:3E:54:04:6F:F0:31:01:A5:45:96:58:11:E0:F1:CE:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B9F021A9B8311EFADC55AB2762E951A.roa
Signing time: Tue 05 Nov 2024 14:34:48 +0000
ROA not before: Tue 05 Nov 2024 14:34:44 +0000
ROA not after: Mon 20 Jan 2025 14:34:44 +0000
asID: 135097
IP address blocks: 154.91.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67581 (0x107fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 14:34:44 2024 GMT
Not After : Jan 20 14:34:44 2025 GMT
Subject: CN=672a2d08-9aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0e:03:e9:d3:23:12:21:cb:db:97:58:f7:20:
02:45:e5:23:cb:79:9c:09:3e:b0:0a:23:94:56:a6:
3b:71:70:0c:22:00:ef:fc:a8:2b:5f:4f:11:d7:2a:
95:52:ad:b7:1d:f2:20:da:31:25:ef:93:a1:8e:4b:
db:a3:3c:1a:52:e5:30:5f:a7:96:15:58:74:3d:a6:
b5:ea:a5:6b:89:69:e5:92:b2:ba:75:21:83:72:f9:
7c:ed:5b:88:58:13:78:dd:b1:80:2b:db:d6:09:f9:
00:94:eb:77:64:f5:cd:31:f4:81:21:1f:34:5d:b4:
1d:5a:4c:e8:cd:fe:b6:15:c5:9b:cd:cb:9d:50:7f:
db:85:b5:b2:91:63:c3:79:d2:78:54:c4:aa:07:c1:
f2:ba:f9:aa:bf:d6:4f:0b:0a:08:77:a4:b5:43:6b:
66:eb:b6:92:02:6d:97:1d:d0:8d:e7:7f:95:31:4e:
34:44:4c:c9:e6:eb:73:00:c7:87:a4:51:a1:5d:9e:
a3:c5:e7:ad:e6:8f:20:09:08:b2:77:29:37:ed:10:
0d:71:08:c6:a7:db:96:85:34:7d:7b:a1:f3:2d:02:
8d:10:d1:ab:32:64:39:20:1c:5a:68:67:7e:05:9a:
77:d6:59:7e:ec:0c:74:3d:2e:8a:ba:68:5d:d0:34:
96:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:39:4E:00:3E:54:04:6F:F0:31:01:A5:45:96:58:11:E0:F1:CE:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B9F021A9B8311EFADC55AB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.8.0/21
Signature Algorithm: sha256WithRSAEncryption
27:b1:1d:b8:81:26:c0:8d:9d:1d:40:89:bb:03:fb:bd:8b:91:
e2:6b:2e:8e:4a:34:2f:95:67:e8:f5:63:4b:64:5a:ea:d8:f6:
bd:61:5e:29:11:3c:10:7f:ad:69:28:fe:b1:a1:14:da:55:b1:
40:41:cf:bb:2b:f5:07:55:18:51:da:8b:03:5b:71:17:09:60:
ca:c8:ce:20:f8:1c:a6:26:e9:9c:da:16:c5:33:e4:81:4f:54:
01:35:30:de:d7:c4:d2:a1:c4:36:4d:56:09:96:97:8a:82:26:
84:c4:dc:fc:fa:71:df:20:ee:23:a9:76:a4:1b:46:4b:cb:00:
ee:b0:60:68:83:7a:92:7b:e7:70:36:36:4d:2a:c3:8b:bf:cf:
11:6e:ea:be:8a:db:72:2d:0d:2e:9e:cf:b6:d9:9a:ca:a0:10:
a1:77:58:fb:8f:f5:ff:ce:52:e3:51:08:37:0a:da:32:92:11:
f7:93:77:c7:1f:0e:a7:c9:39:d2:11:e7:26:3f:bb:78:2e:f6:
b6:90:55:38:cf:c0:90:40:dd:e4:7b:5d:51:bd:b9:59:6d:c7:
71:f6:31:3a:80:ea:6c:50:37:b1:05:bc:38:48:de:02:7e:15:
4f:05:be:e7:77:5d:72:3d:18:a9:51:24:74:7d:fd:ea:0f:6c:
54:c9:34:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:00 2024 by rpki-client on console-fra.rpki-client.org