Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C068A4292DD11EF90FE42A7762E951A.roa
File: 1C068A4292DD11EF90FE42A7762E951A.roa (raw, json)
Hash identifier: w4Ezr/+E/Zeu+w5fCDP37+ppbmyNbIKChhd91DV/BQA=
Subject key identifier: 54:69:EE:B0:51:FE:7C:F4:62:72:6E:61:D1:BD:12:78:CB:22:85:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01022A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C068A4292DD11EF90FE42A7762E951A.roa
Signing time: Fri 25 Oct 2024 14:26:23 +0000
ROA not before: Fri 25 Oct 2024 14:26:19 +0000
ROA not after: Sun 01 Dec 2024 14:26:19 +0000
asID: 44559
IP address blocks: 154.209.144.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66090 (0x1022a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 14:26:19 2024 GMT
Not After : Dec 1 14:26:19 2024 GMT
Subject: CN=671baa8f-afcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f1:61:0f:d3:13:87:34:9f:7b:f3:d9:1b:ba:
8f:1e:81:e7:80:6a:1d:43:a1:ab:45:d3:fd:ce:60:
27:fe:63:af:00:47:d2:90:ff:6f:c0:b8:7c:f8:e6:
f0:f4:4b:e4:d0:06:c4:71:24:d8:53:1d:44:cc:37:
6a:66:66:48:c4:24:50:88:66:c5:6d:ab:bc:7f:bd:
c2:e0:51:73:47:4a:80:e3:80:bf:7c:49:05:65:7e:
e1:ef:31:bc:5f:69:a8:17:78:de:86:f2:38:e0:85:
51:66:e7:11:cc:1c:36:c5:f7:86:a2:07:52:c5:cb:
86:c8:f7:35:b6:77:ba:f2:bf:7b:e9:6b:fa:84:a3:
dc:3a:c1:3a:ab:37:db:2b:40:bf:84:bf:9c:8b:d2:
65:6d:cd:d2:2e:61:9e:07:07:dd:6c:61:64:d3:7d:
33:d8:07:bc:24:19:f3:82:41:55:c2:fd:8a:5e:75:
d2:8a:7d:2e:9d:09:aa:86:0a:1b:43:be:73:40:ec:
6e:37:dc:b8:7d:da:a3:3e:2e:2e:59:48:fb:20:c3:
c5:21:04:78:cd:5d:66:8e:f7:99:1a:f5:a3:b9:06:
10:fa:f2:17:c9:eb:9b:98:84:de:e1:b9:eb:e5:e6:
52:74:ac:e9:72:21:02:b4:b2:55:4c:00:01:54:e2:
ed:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:69:EE:B0:51:FE:7C:F4:62:72:6E:61:D1:BD:12:78:CB:22:85:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C068A4292DD11EF90FE42A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.144.0/23
Signature Algorithm: sha256WithRSAEncryption
80:0c:e6:63:a7:fd:eb:0a:75:77:cc:f6:39:ee:41:ef:24:77:
50:cc:4d:87:5a:92:47:55:ee:ae:c3:ca:d5:b2:3f:aa:c5:f3:
78:3a:bd:33:58:56:04:8c:53:2e:40:73:15:db:09:9d:94:14:
4c:37:1e:ca:1f:49:11:ce:0e:59:9b:94:71:c4:a7:28:81:08:
9b:fc:f1:3c:76:fb:f8:9b:7c:f8:57:b4:60:b6:c1:f1:4e:c8:
09:af:98:9a:ee:6e:cf:7e:dd:85:01:22:c6:65:0d:39:f1:b7:
95:70:6a:fe:46:50:00:02:04:77:ad:52:f2:ca:b1:f8:70:bc:
14:2c:37:55:a6:d9:7b:ea:72:62:78:d7:50:0f:b8:cd:55:cd:
cc:a1:18:c0:6c:0c:87:a8:83:14:ad:da:45:4c:50:03:15:d6:
37:e1:39:ff:86:79:64:e0:41:d1:3b:2b:52:f7:13:eb:99:42:
46:20:76:2c:14:8c:ca:26:0d:48:33:12:ab:f9:43:c9:8b:06:
72:67:35:3f:c0:d7:52:2c:0d:13:bd:2f:d9:2a:db:9c:3f:fd:
a0:39:15:49:db:a2:c4:38:83:69:5a:3d:c1:65:be:f1:9e:83:
e8:0c:76:b0:d6:be:a5:bd:3a:3b:89:d6:11:85:f0:58:20:4e:
6f:3f:ca:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:00 2024 by rpki-client on console-fra.rpki-client.org