Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2531AD42A74411EF9999F954762E951A.roa
File: 2531AD42A74411EF9999F954762E951A.roa (raw, json)
Hash identifier: nSwnf7h5UcS91X5RVJcyJQoVKvcQIl9Y8wGuiUaZ/+4=
Subject key identifier: B7:CD:D8:7D:25:BC:A5:3E:67:56:CE:5C:98:3A:71:2B:62:CC:4F:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FBB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2531AD42A74411EF9999F954762E951A.roa
Signing time: Wed 20 Nov 2024 13:34:19 +0000
ROA not before: Wed 20 Nov 2024 13:34:16 +0000
ROA not after: Sat 30 Nov 2024 13:34:16 +0000
asID: 48031
IP address blocks: 154.92.12.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69563 (0x10fbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 13:34:16 2024 GMT
Not After : Nov 30 13:34:16 2024 GMT
Subject: CN=673de55b-e5df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:88:c6:b0:ef:12:ef:76:32:57:ba:ae:09:c0:
c6:03:c0:48:61:44:d1:4d:56:81:c8:17:11:68:23:
b9:aa:9b:f6:d3:d9:91:88:cc:33:a4:a0:d5:97:f5:
f1:26:7b:8a:de:f7:07:b9:71:9d:37:6e:96:c6:30:
0b:77:be:f3:3c:f4:64:d0:3d:7c:ae:b5:04:ec:d6:
5c:dd:cd:d4:88:bc:92:23:3b:7f:b0:1c:33:28:10:
a8:dd:08:70:83:3c:c1:38:61:35:08:cb:5d:27:59:
7e:eb:61:83:69:d4:dc:7f:fc:c2:82:43:ea:fd:ac:
dd:19:5c:4a:b8:8e:c2:d4:cd:55:74:90:68:34:37:
17:8b:09:f5:9e:59:bf:fd:f2:14:4f:81:5f:52:02:
62:b7:9c:e4:e8:a7:56:14:38:9f:80:12:e7:d3:4d:
f2:35:92:9c:c8:ce:22:29:ad:e7:fe:ce:dc:c1:8d:
4d:6d:75:35:52:7f:2a:6a:f5:24:93:09:f4:d9:c2:
5f:fe:6a:f8:75:98:ae:dc:0c:ec:70:c9:6c:9c:71:
82:99:3b:2b:be:44:6c:31:9b:88:54:62:50:67:9e:
ae:a3:c7:88:b6:dc:5f:eb:00:20:69:35:20:08:a7:
5f:3b:c7:92:e6:3c:c5:2e:a9:57:9f:24:3b:5d:fd:
0c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CD:D8:7D:25:BC:A5:3E:67:56:CE:5C:98:3A:71:2B:62:CC:4F:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2531AD42A74411EF9999F954762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.12.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:5d:30:da:ce:cf:0a:c5:7f:f8:a7:e0:56:3f:3b:a8:5e:42:
00:a1:aa:a9:41:32:24:52:3a:4a:9f:62:99:db:f5:09:ba:70:
c5:a5:a7:82:8e:e4:49:68:b8:3d:69:b0:9c:2e:23:03:c0:f9:
5c:39:8a:77:87:d5:c2:7f:d3:2c:39:d6:33:d0:9d:31:c6:02:
c4:ed:76:2f:54:3b:62:36:25:51:26:2e:f6:2c:4d:37:9b:d1:
15:f5:00:62:c8:93:21:d8:79:72:4a:34:3c:1f:bb:1d:a2:69:
b6:a0:60:bd:c8:1f:25:01:61:23:de:f8:39:f0:f0:3a:82:3e:
e3:a3:17:40:6f:55:43:3c:eb:2e:a7:39:a8:d1:0e:27:a2:5b:
e5:5a:ff:3d:83:41:59:35:0c:fd:40:d2:f8:de:b5:25:9f:82:
73:af:02:bc:bc:c2:3f:23:7c:47:66:5d:b0:f4:a8:41:4b:a1:
07:a4:15:e7:52:ba:11:ed:57:0b:d5:c6:15:bd:1f:35:a7:af:
b9:2a:13:ca:01:fe:bc:3f:46:f3:d9:a2:7e:b9:50:7a:de:fe:
52:b3:0b:8e:27:10:f0:75:83:9c:ee:c3:13:9f:1e:48:47:eb:
58:12:50:d2:be:77:00:6b:a9:71:a7:7c:bf:3b:bd:9d:42:48:
72:d9:cc:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org