Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24C64E8A718011EEB59110264AD9E6FC.roa
File: 24C64E8A718011EEB59110264AD9E6FC.roa (raw, json)
Hash identifier: byF6ZiBawAJJisSA/OmfwxVk4hlboO0GwpwmQBFtJFQ=
Subject key identifier: 9D:6C:EC:2D:55:51:CB:5E:D5:99:9E:1D:B2:4C:3D:44:38:7F:84:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 46A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24C64E8A718011EEB59110264AD9E6FC.roa
Signing time: Mon 23 Oct 2023 08:42:48 +0000
ROA not before: Mon 23 Oct 2023 08:42:45 +0000
ROA not after: Thu 17 Oct 2024 08:42:45 +0000
asID: 58879
IP address blocks: 154.91.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18089 (0x46a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 08:42:45 2023 GMT
Not After : Oct 17 08:42:45 2024 GMT
Subject: CN=65363208-2d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ae:50:47:16:5b:de:77:c7:2f:7d:40:32:06:
e5:e2:a4:ba:c9:d2:fe:68:30:b3:96:57:1e:32:c1:
f0:33:ed:ff:e6:62:5a:47:99:be:e0:b5:51:fa:24:
2e:ec:99:12:65:14:b7:db:76:73:5f:0d:d8:99:73:
ef:12:04:77:e6:f4:4d:56:76:37:db:d4:6c:82:34:
2a:6f:ac:32:89:11:6e:cc:65:5b:8e:97:b5:55:ec:
80:2a:f2:71:f5:97:87:04:66:d6:1d:65:f0:e2:24:
80:08:b6:bb:ed:17:70:68:99:b0:f1:42:67:ab:8d:
e6:96:39:4c:8f:19:3f:5f:99:cb:b5:5c:68:ea:7f:
1f:1f:8a:47:24:ba:e9:8a:6f:64:45:80:49:18:a7:
99:8e:ab:9b:42:22:bc:06:78:98:18:b5:80:99:49:
16:bf:1a:1c:0f:fe:fc:15:dd:89:f1:53:eb:c9:b0:
f9:c1:e9:15:93:88:37:46:45:3e:da:a8:93:75:30:
bc:a6:3c:39:8e:a6:52:6d:17:71:f7:7e:33:d9:7e:
9d:67:96:71:a9:22:e7:01:3b:34:53:5b:34:15:a7:
b4:5f:dc:a9:5b:4e:14:d0:a0:5e:41:a2:6b:88:8f:
01:8a:52:70:5e:3c:6a:94:fd:dd:c7:be:74:41:a5:
e2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6C:EC:2D:55:51:CB:5E:D5:99:9E:1D:B2:4C:3D:44:38:7F:84:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24C64E8A718011EEB59110264AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.32.0/24
Signature Algorithm: sha256WithRSAEncryption
45:da:ff:69:cc:c9:b8:01:98:c2:83:bf:3f:c3:9d:13:98:c2:
46:6f:a3:c6:30:f4:0d:4d:5e:31:de:73:06:08:94:6b:c5:3c:
30:b7:2e:2e:ca:29:02:bc:fe:85:2b:9a:8a:4a:27:f9:71:3c:
dd:81:88:8a:c8:6b:15:24:80:21:75:a2:97:63:80:90:5f:76:
1f:55:ed:1d:41:a4:64:94:85:57:81:7b:45:a8:17:b7:a7:16:
4f:15:c6:af:4d:de:79:ef:82:bc:56:5a:e1:59:92:82:d2:d1:
ac:c9:c2:e2:87:7a:19:4f:96:61:a7:5b:24:c4:e2:f3:0c:da:
83:ec:2e:8b:a8:01:28:bd:2b:a5:67:c0:62:a6:06:98:46:5a:
33:a7:e5:d2:3e:7e:3c:d9:aa:62:75:8d:4c:03:b7:57:d6:02:
41:e7:e0:9a:62:3e:83:5a:e5:0e:9e:57:8a:88:03:91:4d:82:
f7:a7:eb:ab:a2:37:1f:1e:1b:af:d6:80:eb:a4:fe:83:ef:35:
7e:80:d3:12:f8:40:cd:16:a8:1f:d1:f5:80:eb:5f:fd:cf:26:
33:f9:9b:53:23:89:9e:37:51:e6:a3:45:ed:6a:8c:c3:78:5a:
68:80:6a:90:32:c7:e2:3b:53:c1:2c:fd:b4:74:7d:eb:1d:76:
dd:a4:5f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:18 2024 by rpki-client on console-fra.rpki-client.org