Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/300661F21F0111EFA5C52E3A7DDC24C2.roa
File: 300661F21F0111EFA5C52E3A7DDC24C2.roa (raw, json)
Hash identifier: sDTz3L3hW7aPKFGVzDSW6JvdrdCuP1HnX31rg1OEz6w=
Subject key identifier: 99:05:FB:B5:B5:41:08:DB:69:48:A8:8D:3B:8E:78:4E:DB:83:A2:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC2F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/300661F21F0111EFA5C52E3A7DDC24C2.roa
Signing time: Fri 31 May 2024 03:52:23 +0000
ROA not before: Fri 31 May 2024 03:52:20 +0000
ROA not after: Tue 28 Jan 2025 03:52:20 +0000
asID: 132513
IP address blocks: 154.91.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48175 (0xbc2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 31 03:52:20 2024 GMT
Not After : Jan 28 03:52:20 2025 GMT
Subject: CN=66594977-123c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:00:92:59:78:6d:dc:b1:66:20:20:87:92:c7:
6e:ef:be:02:c5:5f:e0:51:8f:be:8a:38:64:96:b2:
90:3c:32:24:ae:12:b3:3f:5b:f9:d0:55:76:0d:93:
12:14:33:a5:da:1f:7a:c5:74:c5:ba:6b:33:c1:b5:
28:83:23:4f:c1:bc:f0:0d:a1:b0:7a:0a:11:b9:1a:
6c:1b:91:3c:6e:f3:78:64:42:d9:35:34:6e:59:0d:
9a:71:cb:3a:47:63:3a:d3:5e:0f:bc:7a:71:1f:97:
66:fa:e5:e1:b1:d4:9d:2c:38:e8:db:50:98:1c:f1:
2b:cf:73:02:0c:9c:cc:3a:6e:f8:b0:56:5e:bc:75:
d1:d8:e0:97:b0:d5:64:20:bb:0c:7b:43:0c:ff:89:
d8:fe:07:0f:40:ad:1e:47:05:ed:9f:4c:54:22:5c:
4b:b1:26:02:4f:c2:ef:6e:99:5f:9f:2d:5f:86:c4:
74:15:49:12:6f:de:16:33:69:a6:2f:81:90:ab:e8:
f6:5e:74:38:b6:f9:c6:f3:e2:2b:9e:54:9c:c7:b4:
39:83:13:1e:fd:a4:1b:54:0e:11:63:5d:75:d8:7f:
28:90:5d:3f:06:4e:39:6b:35:40:8e:f3:84:77:d3:
38:77:a1:6e:64:a0:6c:ef:08:a6:1e:1f:96:56:50:
9b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:05:FB:B5:B5:41:08:DB:69:48:A8:8D:3B:8E:78:4E:DB:83:A2:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/300661F21F0111EFA5C52E3A7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.199.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:70:6c:21:35:e1:08:90:e5:6f:41:7a:bf:d6:c5:2c:e2:e5:
88:b8:43:85:fc:43:4a:cf:09:e2:a4:f5:cb:32:d5:8b:37:57:
62:31:1b:bd:2a:0c:2b:c3:95:84:01:64:b8:60:62:95:8a:87:
44:58:a5:b7:67:75:6b:34:7c:f2:80:4b:57:9d:6d:b3:3e:c7:
f6:e5:0b:51:a8:15:61:cf:ed:9d:d2:3d:94:45:1d:23:eb:84:
38:2f:3d:8a:0c:1d:d0:ca:07:6a:4a:46:ea:6d:53:f7:a8:35:
ea:0a:47:0b:57:28:8f:bf:0c:65:a8:68:36:16:09:74:49:4c:
02:c0:c7:ac:31:6a:21:c9:e2:3c:76:4a:a9:48:49:1d:09:d6:
f9:aa:74:95:c4:52:18:34:bf:69:0f:de:3e:6c:6f:e7:ad:48:
3a:30:04:18:8c:93:59:a3:19:0d:cc:d6:57:27:a2:6a:f6:be:
81:6c:4c:dd:22:6b:cb:6c:9d:7f:73:33:25:20:e2:1d:b0:f5:
87:88:ce:f9:9d:42:46:43:01:ff:10:ea:dd:e3:e4:55:73:d1:
61:c6:dc:02:a1:c1:02:99:ac:5e:a9:de:f8:e0:7b:69:c8:8a:
6f:fd:aa:75:b0:31:ca:45:df:f3:61:c3:d6:bc:85:a0:c6:a5:
62:69:db:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:02 2024 by rpki-client on console-ams.rpki-client.org