Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/243A0C585F1511EFBB183986762E951A.roa
File: 243A0C585F1511EFBB183986762E951A.roa (raw, json)
Hash identifier: PEhFge/mQk3o1yILlozPF3Q7pP0X4ei1VzrR3qM2pk0=
Subject key identifier: 76:A1:CE:22:18:59:89:2D:89:54:6F:0B:25:8A:C5:71:8C:C9:5D:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E33A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/243A0C585F1511EFBB183986762E951A.roa
Signing time: Tue 20 Aug 2024 16:56:28 +0000
ROA not before: Tue 20 Aug 2024 16:56:25 +0000
ROA not after: Sun 01 Dec 2024 16:56:25 +0000
asID: 5065
IP address blocks: 154.86.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58170 (0xe33a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 20 16:56:25 2024 GMT
Not After : Dec 1 16:56:25 2024 GMT
Subject: CN=66c4cabc-3bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8f:b1:22:60:35:1e:d2:16:73:81:ec:07:88:
ec:e5:ce:03:98:92:72:d5:ff:19:0c:ef:c9:4b:0f:
28:12:cd:7f:e2:69:ca:c1:7c:b1:6e:51:c2:e5:50:
e7:c7:3e:88:b1:c8:74:76:ba:f0:4d:23:83:29:8f:
62:76:74:18:e6:76:71:20:67:79:03:71:72:6f:46:
87:30:53:92:8c:c0:d4:c4:7a:e1:dc:d4:65:8b:e5:
4c:f8:9f:6a:e4:ca:5c:81:b1:9b:9b:20:49:b7:48:
88:2a:b3:00:01:37:20:9d:b6:24:53:fc:6d:6a:97:
64:43:9c:a3:66:a5:45:af:aa:65:ee:f5:f2:f7:24:
2a:4b:fa:31:70:2e:3e:0b:75:5f:e2:4c:a0:49:11:
01:2e:18:7a:11:45:20:e3:67:b1:0c:be:10:c4:0a:
b6:e3:23:48:5c:2f:c9:1a:cc:d3:e1:bc:44:2f:26:
69:6a:60:70:d8:f6:5e:18:b9:39:bf:14:18:81:c3:
a9:b4:6a:00:c7:0e:d5:55:12:99:3b:ba:62:d3:1d:
a2:8b:8e:83:95:a2:35:7c:02:60:e9:e4:5f:d0:fe:
43:65:bb:55:c5:79:0f:b1:d5:26:ab:e5:9f:e1:50:
2d:ac:13:6a:be:7f:94:df:8a:36:1c:20:06:ea:89:
a4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A1:CE:22:18:59:89:2D:89:54:6F:0B:25:8A:C5:71:8C:C9:5D:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/243A0C585F1511EFBB183986762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.11.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:99:d3:39:1c:8b:81:2a:48:fc:3a:54:4a:a6:be:75:cb:48:
23:9d:5f:2d:23:0f:a9:e7:66:cb:63:c1:f5:5c:56:e2:ca:f1:
e8:ae:2d:03:ba:a2:81:d1:50:b5:83:a8:a1:ea:a4:42:05:d6:
1d:33:2c:c2:6e:80:32:51:34:4a:bb:49:b1:45:68:54:cd:c6:
8e:0e:e6:a5:16:b6:55:77:57:c5:ab:b7:c9:2b:32:c4:72:2d:
e7:35:f8:c7:d1:4e:36:9c:4d:9d:d6:6c:5d:0b:0b:75:1c:e4:
5a:81:b5:f7:c9:96:9f:0f:0d:d4:3b:4a:3b:79:6e:80:0c:9e:
1b:b9:9e:38:08:9d:68:78:85:a0:a5:d7:fc:c5:b0:8a:02:b1:
2e:e7:7d:8e:52:2e:45:b8:39:9f:cc:be:fe:95:bb:a1:31:37:
18:df:93:83:6f:83:b0:ae:9a:b2:86:91:db:61:8e:8f:0e:27:
e1:b4:2a:56:b1:c0:8e:2a:cb:28:bb:66:e9:cc:cb:df:d7:aa:
26:0d:02:3c:99:7d:75:33:26:d7:54:3e:24:ce:8e:7e:b3:99:
0b:2d:0a:2b:c3:9e:c7:c0:b7:f0:fb:d8:a5:31:53:c3:29:db:
23:91:d9:d1:6e:8e:3e:77:e9:ac:08:a0:f3:ff:4a:44:4d:2f:
ac:44:18:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:39 2024 by rpki-client on console-fra.rpki-client.org