Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/308B8194A8E911EF982CD9AF762E951A.roa
File: 308B8194A8E911EF982CD9AF762E951A.roa (raw, json)
Hash identifier: Jw4hT8DML7a45SeF1QXSmz6CDxXeqmEfZRo7EYgpVQ4=
Subject key identifier: E8:24:37:13:07:1E:F4:99:18:1F:59:41:DA:0B:42:7D:76:19:5D:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110F5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/308B8194A8E911EF982CD9AF762E951A.roa
Signing time: Fri 22 Nov 2024 15:48:17 +0000
ROA not before: Fri 22 Nov 2024 15:48:13 +0000
ROA not after: Tue 03 Dec 2024 15:48:13 +0000
asID: 62240
IP address blocks: 154.194.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69877 (0x110f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:48:13 2024 GMT
Not After : Dec 3 15:48:13 2024 GMT
Subject: CN=6740a7c1-bfa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:09:b3:97:cd:a7:37:20:a5:b7:9f:91:04:ff:
37:3c:66:a1:d7:9f:0a:45:ce:90:2c:94:95:ca:0b:
73:5b:7f:c6:68:4e:e1:1e:05:dd:3b:3b:c0:73:9d:
b4:4a:73:fa:e1:b9:14:1a:a1:39:11:7c:61:a6:33:
92:cd:12:0e:10:27:a0:cb:4b:10:de:34:d5:08:23:
a8:5e:7c:e0:4b:90:48:61:03:8b:b1:a3:17:ea:37:
05:52:55:78:6c:9f:22:85:5d:c1:f7:75:ba:78:e1:
e7:44:2c:ae:1b:71:72:2a:b2:04:d4:9a:07:e9:39:
1e:42:96:e6:0c:80:de:60:e9:da:f0:5d:2e:a3:15:
0d:42:ca:e1:0c:64:6a:e1:05:18:29:f9:62:8b:9d:
f2:3f:38:b9:6d:ec:7c:81:89:18:68:00:70:1a:03:
28:c4:c9:2c:42:29:84:30:2d:e2:97:d6:19:b0:d6:
21:27:65:f6:39:d5:6b:a3:ff:6c:82:b7:92:5d:be:
39:f1:eb:95:c4:d7:bb:d1:88:8e:7c:74:52:22:3f:
29:30:82:0b:f9:1d:df:36:38:08:6b:47:71:af:bc:
75:59:79:13:72:c0:1c:5d:3e:c7:c2:43:32:e8:0d:
dd:6a:27:12:c2:e0:02:74:73:bb:7d:09:3b:09:59:
e7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:24:37:13:07:1E:F4:99:18:1F:59:41:DA:0B:42:7D:76:19:5D:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/308B8194A8E911EF982CD9AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.123.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:e8:91:6c:bc:86:f0:3c:87:42:48:b9:c0:05:34:ed:04:d8:
dc:b4:2e:f2:57:66:b7:2a:81:fd:7f:22:32:ad:8f:79:f0:df:
5b:82:dc:74:42:2d:8f:c0:c9:02:37:01:30:af:a3:60:be:a6:
9a:4f:d7:ff:db:67:e8:b2:47:8b:22:fc:c4:52:7e:2b:a4:60:
f2:09:8f:6e:c4:7c:98:11:73:da:57:48:a9:8f:a1:92:9d:75:
31:f2:d5:aa:19:8d:4e:a2:61:6a:c8:28:d4:81:09:98:7f:30:
02:12:44:09:52:13:d9:73:d7:02:bd:fa:ab:88:ac:f5:51:3a:
e5:54:11:a4:e1:82:95:be:85:da:4a:2e:6c:4c:83:ed:f7:1e:
4a:6f:55:f6:78:4d:2f:44:6b:84:c7:de:4f:5c:20:bb:fd:7a:
f7:41:ea:2e:4c:f0:7a:70:3b:21:f9:13:3c:77:f8:6e:99:e3:
50:b9:62:85:4f:c5:f9:bf:b8:d7:8c:be:53:fc:8f:7a:51:53:
a1:c7:62:19:8f:7d:11:14:e1:e0:ce:f5:1d:d3:23:d6:9f:78:
80:3e:dd:a1:87:d8:41:66:14:2e:6a:38:f1:86:e3:f0:fa:64:
97:1a:0d:7d:96:39:80:5d:e5:7a:1b:96:f5:25:e6:c0:9a:7b:
0e:bb:3d:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:26 2024 by rpki-client on console-fra.rpki-client.org