Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D6FD2E4736511EFA0F02DB7762E951A.roa
File: 2D6FD2E4736511EFA0F02DB7762E951A.roa (raw, json)
Hash identifier: FuagzIGyyBMxgkGoKWGk+rsMYTuhtWo3uC1hJuS4H9w=
Subject key identifier: 2E:27:AD:4D:54:35:39:75:02:FD:ED:32:BC:B6:C0:96:36:13:8D:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF00
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D6FD2E4736511EFA0F02DB7762E951A.roa
Signing time: Sun 15 Sep 2024 13:19:46 +0000
ROA not before: Sun 15 Sep 2024 13:19:43 +0000
ROA not after: Sat 30 Nov 2024 13:19:43 +0000
asID: 142403
IP address blocks: 154.221.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61184 (0xef00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:19:43 2024 GMT
Not After : Nov 30 13:19:43 2024 GMT
Subject: CN=66e6def2-6a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fd:41:99:c9:af:a0:2f:f3:f9:c2:d1:a3:99:
3a:ef:52:6a:61:fa:7e:26:da:91:88:1f:74:ce:61:
ae:5a:04:5a:24:2c:42:ff:c4:ce:b7:ef:1c:2b:c2:
93:c7:85:cc:c1:f5:19:04:c6:c6:ac:0f:42:3d:15:
40:9a:65:aa:f0:b8:c9:57:4c:61:1d:68:3e:f9:47:
19:f8:75:6d:d2:c5:26:c0:b8:a1:95:2f:b7:c7:4d:
d6:de:e1:93:f4:73:94:ca:b1:d2:cb:92:50:24:dd:
80:42:1c:66:8d:80:e5:18:1e:1d:f1:34:3a:9f:f3:
cf:4b:8e:f8:c5:db:7f:22:7c:e3:c5:23:2c:e5:de:
9d:ed:72:c8:a7:2c:88:dc:b8:98:c8:64:b6:6f:92:
59:70:c8:20:c0:a1:9a:dc:2e:f0:db:e7:1c:b9:b9:
7c:69:8e:da:23:aa:01:f8:a2:54:86:64:a3:76:eb:
ee:88:55:ee:27:3e:d1:95:05:c8:85:8a:e0:cc:2b:
fe:f7:2d:5c:a1:32:78:49:7e:c2:47:09:c7:23:2c:
c5:d7:a9:07:a9:8f:a6:88:0b:52:0a:04:1a:b5:45:
aa:63:3c:6a:1d:94:cd:e6:d0:0f:25:b6:f6:33:56:
08:3c:e8:9b:fc:38:85:9f:ee:f5:af:85:38:ce:68:
ac:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:27:AD:4D:54:35:39:75:02:FD:ED:32:BC:B6:C0:96:36:13:8D:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D6FD2E4736511EFA0F02DB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.18.0/24
Signature Algorithm: sha256WithRSAEncryption
31:78:59:06:31:24:50:88:bf:0c:2a:fd:6a:cc:47:52:4f:96:
83:24:b0:0c:74:1b:df:fc:b5:84:1c:52:e9:a5:8f:90:ca:43:
b1:74:ed:58:5c:be:2e:ca:b3:da:cc:8e:46:28:9a:b9:1f:a6:
24:fa:2c:2d:a3:d5:09:02:7f:f0:09:8c:6c:33:86:37:0a:3c:
40:d7:a4:49:9d:c7:3e:3a:ec:18:f2:ed:42:42:13:ab:df:31:
5a:bd:29:3e:3c:06:2c:16:0f:a5:1c:12:33:41:23:34:c2:2c:
70:77:6d:92:b7:98:ce:8b:f3:f5:4d:41:25:c5:22:f7:1b:83:
5a:9b:d8:cd:0b:0f:3a:05:cf:91:97:e6:9a:9b:c4:10:77:0e:
e7:8c:89:9f:5e:3b:79:81:9e:1e:c6:f4:5f:e7:79:ef:5a:2e:
fa:16:26:d5:cb:80:f3:1a:87:b0:6f:bd:0e:98:17:d9:cd:84:
51:3a:48:ad:85:4e:24:7e:14:48:50:99:54:9a:ae:e6:38:a6:
ed:5d:92:28:07:a5:82:8c:a9:0e:80:af:20:da:44:f7:70:9d:
4c:f2:32:da:70:aa:db:56:6b:df:5c:a9:91:d6:33:bd:be:66:
a0:f2:7d:f8:22:ac:80:25:e0:06:46:2d:13:96:25:91:f4:45:
a8:ca:02:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:02:32 2024 by rpki-client on console-fra.rpki-client.org