Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/280151C4A45811EF9253E274762E951A.roa
File: 280151C4A45811EF9253E274762E951A.roa (raw, json)
Hash identifier: Q0EcESl9IxbqQ3mMEhLKai3mye9hmEv+VQulHvGl9+o=
Subject key identifier: CD:16:FA:CB:D2:E3:E0:AC:65:CD:C2:A7:90:3C:60:81:C8:22:BB:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E45
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/280151C4A45811EF9253E274762E951A.roa
Signing time: Sat 16 Nov 2024 20:20:01 +0000
ROA not before: Sat 16 Nov 2024 20:19:57 +0000
ROA not after: Wed 27 Nov 2024 20:19:57 +0000
asID: 137951
IP address blocks: 154.215.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69189 (0x10e45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:19:57 2024 GMT
Not After : Nov 27 20:19:57 2024 GMT
Subject: CN=6738fe71-38a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:c5:ad:d6:b8:f7:4b:d6:fc:b8:a1:33:55:
7c:55:7c:1a:9e:7d:15:80:e2:d2:37:f8:78:c6:7c:
8b:80:c5:6d:69:19:e5:73:f2:3c:26:89:40:85:e3:
f0:8a:0c:c0:5a:b7:ee:56:55:33:37:44:ad:81:1e:
bb:39:8c:97:78:0f:49:fd:7e:2f:05:5c:66:86:01:
56:8f:61:65:f2:44:f7:f1:ff:08:cf:20:97:7a:65:
b5:e0:e0:ae:4e:7e:a5:73:7c:46:c3:41:a1:87:05:
e0:ef:3c:c8:0c:29:34:ef:f8:09:0f:37:d5:13:c1:
c3:78:0e:ba:54:a2:e0:5f:b6:67:6b:e9:38:a3:07:
3a:57:0e:84:5d:15:8f:d8:7f:15:73:57:69:86:3e:
90:4d:c2:dc:18:bb:67:68:dd:2a:87:8c:87:a6:9a:
47:a0:25:22:31:74:04:62:be:2b:f3:12:e2:f0:f8:
e0:64:7c:b0:40:ac:39:06:89:26:a7:31:a9:e2:2f:
95:66:5f:aa:bd:15:1d:a1:bf:ae:9d:2c:f4:3f:12:
cd:dd:f6:1a:88:3f:e8:fe:65:42:d5:73:b9:90:ff:
fd:d1:3d:ec:cd:9f:bd:54:8e:30:b5:2d:82:3e:87:
f1:6d:b5:80:ac:97:83:5b:97:4e:9b:67:a1:61:8b:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:16:FA:CB:D2:E3:E0:AC:65:CD:C2:A7:90:3C:60:81:C8:22:BB:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/280151C4A45811EF9253E274762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.8.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:1e:e8:a3:63:c7:5b:47:6c:dc:e2:ab:f6:30:34:01:68:e4:
db:c0:02:84:88:f2:59:7c:b5:66:52:4e:6f:5c:f3:51:0b:b4:
99:28:0c:36:4c:4c:b9:bf:d2:dd:57:b2:ad:bc:3a:33:49:88:
c4:8b:c0:6a:b2:27:95:dd:df:13:6f:09:9a:50:16:9b:dd:e8:
76:77:56:31:09:fe:b2:d8:8f:56:1f:e3:a6:cb:9b:4a:11:77:
f6:4c:6f:5f:60:98:6a:13:22:47:8f:d1:d3:fd:60:52:99:da:
98:8d:43:dc:a2:2c:c1:92:64:63:4e:a6:53:4e:62:0d:8e:32:
40:a1:9d:fa:30:a9:43:01:3f:ec:fe:25:34:78:71:05:32:09:
44:d8:47:a3:a4:22:48:f9:bb:5c:4e:ec:10:d8:39:44:86:1d:
10:4f:22:e1:53:38:ea:d4:9d:ed:48:23:d0:37:e3:e6:95:bb:
55:24:7f:81:3d:5f:1a:e8:70:fc:c1:28:68:7c:b3:b0:b1:51:
5b:85:94:57:ab:04:72:c6:16:bd:c9:78:6d:95:c2:b6:b4:0d:
5b:9a:34:e8:c7:d5:28:fc:2e:48:c1:c3:37:49:e3:99:4f:9e:
c4:70:0f:f2:ac:c4:9b:32:53:70:a4:97:45:80:a8:47:d7:bd:
eb:06:aa:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org