Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25F76CA4A27011EFA42BE274762E951A.roa
File: 25F76CA4A27011EFA42BE274762E951A.roa (raw, json)
Hash identifier: dIEJcgGaU04bVyE6Y4kleq42/stSWPU8srbvyJS7dwg=
Subject key identifier: 3B:5E:7A:42:D6:E0:24:29:A6:C2:9F:C1:24:DC:08:C1:1B:E7:3E:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D10
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25F76CA4A27011EFA42BE274762E951A.roa
Signing time: Thu 14 Nov 2024 10:06:43 +0000
ROA not before: Thu 14 Nov 2024 10:06:38 +0000
ROA not after: Sun 24 Nov 2024 10:06:38 +0000
asID: 151800
IP address blocks: 154.197.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68880 (0x10d10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:06:38 2024 GMT
Not After : Nov 24 10:06:38 2024 GMT
Subject: CN=6735cbb3-7e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e2:cc:8c:e5:83:54:d0:a0:7c:ce:6c:42:01:
b3:f5:fd:4d:75:ec:56:8b:50:5e:ba:ef:04:2d:b2:
7c:f8:4e:a2:49:77:87:1c:9c:32:f3:29:a0:9c:f6:
a4:2a:29:c4:d7:f7:3a:6d:d3:f7:f3:42:13:74:70:
f0:d1:69:46:2a:1b:79:ba:b2:e3:a7:e4:9e:4d:25:
f4:e2:73:59:40:51:9d:5e:50:79:f5:ed:85:f1:2c:
a7:ad:6c:bb:6b:0b:75:3d:70:27:86:eb:02:71:71:
f7:b9:bf:57:ee:9a:76:b0:af:6d:3d:88:b0:07:b8:
9d:10:17:fe:1e:48:9c:a3:8f:ac:38:08:8c:7e:bf:
9b:be:7a:ed:f7:fd:2a:48:4c:49:2d:41:65:49:66:
b3:4f:29:a4:54:8e:b6:94:00:fa:d6:a3:9a:d0:ce:
ad:5f:f9:61:e4:05:fd:d7:33:27:66:db:80:9e:bf:
ee:9c:c8:48:b8:69:16:8a:e2:06:54:be:ba:e1:9a:
aa:f6:8b:77:de:08:a6:ed:35:a0:c8:45:25:31:ab:
4a:ab:ff:04:53:37:f6:a5:1f:97:85:23:60:3c:c4:
51:3b:b2:03:e9:ea:53:80:14:dd:38:5a:4b:d7:4c:
f9:64:c0:42:cb:b3:1a:be:e6:41:17:2b:78:b5:e0:
4b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5E:7A:42:D6:E0:24:29:A6:C2:9F:C1:24:DC:08:C1:1B:E7:3E:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25F76CA4A27011EFA42BE274762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.66.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:18:4d:ba:a5:83:33:21:9f:cf:9d:7f:f7:ff:d5:8f:c9:c1:
67:8c:9c:e5:51:2d:0c:af:80:a0:67:13:52:64:ea:82:50:a7:
5f:39:ea:5d:42:e9:8b:db:0a:e0:87:f6:32:c4:7b:41:06:f5:
b3:30:1e:fc:b3:24:93:4c:b8:ca:80:d5:cd:d6:8b:46:85:f6:
68:38:c2:ac:bc:b2:fc:34:f3:de:0c:44:33:02:60:12:5c:8a:
05:55:cf:fd:e7:33:2e:29:ec:32:d3:83:a4:03:c6:79:2d:2f:
35:b6:9b:86:78:5f:e3:e3:b9:0a:2e:0e:3c:19:16:63:7a:67:
09:ac:8c:9f:9f:71:95:00:43:34:14:c9:e4:5e:9d:2a:02:a1:
0c:56:02:48:f0:38:a2:f6:44:61:09:37:05:c6:c3:98:0a:6c:
11:55:1f:14:ef:96:0f:c7:b0:35:73:b2:99:9b:97:51:43:69:
64:3c:70:90:e2:d8:6c:ec:fa:14:62:63:58:18:ec:96:89:ff:
2b:4a:f0:3c:03:b6:57:0f:e0:1d:90:3d:b6:26:c7:b4:cf:0b:
3a:5e:fa:d7:cb:21:a4:63:64:0c:7e:7e:d4:f3:63:16:eb:64:
dc:c0:8a:39:e9:a4:f6:93:eb:ef:37:b8:67:af:b1:9a:5e:23:
40:a8:c8:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org