Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2977EDF8A8ED11EF9B3BAD49762E951A.roa
File: 2977EDF8A8ED11EF9B3BAD49762E951A.roa (raw, json)
Hash identifier: CKv2d1MohNhRQHO1SarqG8AJVQlZvCP8IitPVCOE8XA=
Subject key identifier: 20:36:DB:C2:A9:05:7E:1E:8D:43:AB:1A:B2:EF:CE:49:C3:87:53:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011125
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2977EDF8A8ED11EF9B3BAD49762E951A.roa
Signing time: Fri 22 Nov 2024 16:16:43 +0000
ROA not before: Fri 22 Nov 2024 16:16:39 +0000
ROA not after: Tue 03 Dec 2024 16:16:39 +0000
asID: 62240
IP address blocks: 154.195.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69925 (0x11125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:16:39 2024 GMT
Not After : Dec 3 16:16:39 2024 GMT
Subject: CN=6740ae6b-c34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8b:70:e0:f1:51:91:cf:a0:ec:26:38:91:d2:
9c:8e:ff:36:8d:63:ff:e9:d1:26:2c:85:a2:69:0b:
e6:bb:dc:d6:ee:28:2f:97:28:4f:d4:98:c4:1c:f3:
98:92:c6:74:be:11:21:76:56:15:7c:8f:9d:60:94:
e7:56:f8:58:24:48:2b:72:2e:6f:4d:28:87:e7:25:
48:0a:af:d4:cf:a2:66:20:79:97:25:9c:ac:fc:ca:
b6:56:c3:a7:81:93:95:a2:c7:0e:e5:8b:b8:0b:d7:
00:f1:9c:1a:0a:6e:59:b0:dc:31:91:5d:89:00:a6:
f0:8f:a6:c8:c8:b7:ff:c8:a2:81:ee:e6:1a:cc:28:
8a:ad:12:1d:18:4f:50:0b:c4:f5:44:7c:61:16:c1:
c6:93:77:7c:d4:be:9d:33:20:07:d7:df:77:dd:10:
fc:e8:c6:0d:e7:5e:52:05:30:20:b2:51:5a:b8:26:
01:e0:08:15:dc:43:d1:1a:51:7d:f8:af:cd:31:7a:
0f:7c:c6:84:4b:6c:fb:24:b1:01:bc:57:0d:95:95:
a6:c5:43:a4:be:7a:14:1f:cd:80:08:98:b1:aa:4b:
ef:f8:61:bb:34:12:fd:09:9c:ac:33:de:c3:84:1b:
fb:fd:50:c8:db:e9:7d:0e:78:ce:0f:8f:04:ca:f9:
c0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:36:DB:C2:A9:05:7E:1E:8D:43:AB:1A:B2:EF:CE:49:C3:87:53:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2977EDF8A8ED11EF9B3BAD49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.142.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:79:24:36:05:ee:91:88:38:88:3b:d1:08:11:2f:31:65:8f:
ee:38:c0:21:39:e7:b1:6c:41:db:44:38:fb:b6:13:c3:3d:d5:
a0:05:50:34:31:dc:56:21:55:7c:3e:18:e6:75:01:5a:2b:98:
ed:41:55:c2:1c:7d:8a:d3:2d:4d:c2:07:8f:27:93:24:43:7b:
36:70:95:75:bc:34:f0:7c:f5:4c:93:37:e5:12:4b:79:48:23:
4a:ff:9f:9f:72:7c:46:81:15:6b:b9:1a:d7:6c:98:95:22:19:
96:9b:f6:b4:9a:f0:1e:a5:63:92:47:98:62:f8:7e:68:3f:a2:
80:d3:ee:87:e9:da:55:78:14:a6:2b:1f:44:2c:bb:2a:18:e4:
0f:4a:f6:25:37:26:39:88:c3:61:65:54:ee:94:33:51:a3:a4:
c4:50:1e:aa:23:01:a9:b6:e2:a3:99:46:8d:59:60:7c:8c:6e:
30:ed:28:af:e7:e9:3f:b6:f2:25:08:a3:a2:f7:28:f2:e4:3c:
62:ce:00:27:97:6d:da:5e:fe:cd:12:72:47:35:37:7c:81:c4:
63:20:be:83:2f:32:11:22:40:71:af:61:bf:c3:c6:34:76:e6:
6d:2b:de:4a:24:27:91:70:a4:bb:19:32:2b:43:88:42:b1:be:
de:f2:b2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:25 2024 by rpki-client on console-fra.rpki-client.org