Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B2F27B09DA211EF8FFC8B9A762E951A.roa
File: 3B2F27B09DA211EF8FFC8B9A762E951A.roa (raw, json)
Hash identifier: Vacsd6/4sLXpgGrvymcZcSzKuetm3jFcXZEIUlECFlw=
Subject key identifier: B0:C7:4D:BE:AB:D0:9D:72:72:D3:8D:0E:ED:7F:82:5D:68:A4:68:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B2F27B09DA211EF8FFC8B9A762E951A.roa
Signing time: Fri 08 Nov 2024 07:22:37 +0000
ROA not before: Fri 08 Nov 2024 07:22:34 +0000
ROA not after: Sat 30 Nov 2024 07:22:34 +0000
asID: 150008
IP address blocks: 154.210.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68020 (0x109b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:22:34 2024 GMT
Not After : Nov 30 07:22:34 2024 GMT
Subject: CN=672dbc3d-009e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8f:d7:73:86:65:c6:af:1f:8f:58:53:36:c7:
a3:85:47:6a:5a:a9:15:6b:35:52:af:a8:4b:ed:21:
13:85:61:bc:87:38:9e:89:11:ee:d6:6c:1c:94:a7:
17:cf:aa:c6:0d:bf:b8:f0:ac:a9:fe:8c:40:81:9d:
a4:7e:64:fc:20:c5:3c:3b:0f:87:de:2a:2e:e9:f1:
00:ca:50:39:21:c3:5b:63:3d:ba:19:3b:85:42:e6:
5f:e9:9f:eb:9f:9e:b2:38:a4:03:7e:54:94:ab:4f:
63:79:03:4c:d9:f8:d5:bd:c7:cf:4d:87:01:92:38:
1e:c7:0f:50:20:a3:92:b7:0d:11:ac:f4:d9:f5:8f:
ce:ea:c2:66:c6:4f:be:de:68:37:e9:4e:ff:2e:56:
15:75:f8:ba:56:fb:e9:31:2b:11:2c:33:1c:01:5d:
04:3f:81:19:ef:18:c2:a7:73:78:fa:dc:e9:1d:85:
87:7f:df:31:17:76:d9:fd:3c:6e:a1:2a:c4:e8:cc:
46:c1:8e:4f:a2:7f:68:cd:88:f7:62:07:e3:c8:76:
9c:bb:9e:bd:87:cc:5c:d5:9e:7f:ef:b5:9c:08:27:
e2:41:98:0b:04:3d:a0:83:8c:21:de:b8:98:19:d7:
c2:48:4c:c5:c8:c8:4b:e6:2f:14:34:cb:10:5d:45:
ca:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C7:4D:BE:AB:D0:9D:72:72:D3:8D:0E:ED:7F:82:5D:68:A4:68:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B2F27B09DA211EF8FFC8B9A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.232.0/22
Signature Algorithm: sha256WithRSAEncryption
53:c4:ad:61:45:9f:76:d4:cd:4a:f3:24:09:7d:b1:1f:c8:95:
15:36:86:bd:13:b0:64:36:f4:81:6c:35:90:d3:6b:6e:bf:7c:
44:46:63:8d:c7:21:87:f5:ec:fb:66:ad:37:91:d4:99:f7:cf:
a6:e0:fc:aa:9a:b5:0b:52:d6:46:0e:8a:b8:db:b9:9b:54:13:
af:99:ca:c9:86:1d:04:e9:82:6f:95:66:bc:30:a6:b0:72:d7:
da:e7:5d:cf:30:f1:45:d7:d1:5f:01:96:24:08:dd:1c:c4:d5:
a0:aa:52:30:8d:02:fb:12:fb:0f:68:b3:03:06:08:74:fe:04:
c1:57:a8:61:40:c0:7c:4f:88:80:1a:b5:22:0b:b9:da:44:db:
29:a3:d4:82:e5:50:30:d1:9c:83:e0:c1:37:7d:a8:99:3f:77:
d3:d7:8c:75:37:2b:ab:ee:fc:cb:29:27:7e:f3:10:4c:61:0b:
fd:2b:a3:1f:6c:da:eb:a7:2c:43:58:f5:a5:c3:11:75:4b:21:
c3:9c:db:b5:96:26:32:99:af:08:e4:44:19:0c:08:74:4a:d6:
c1:cf:4c:bc:64:18:5d:0b:2e:c8:17:86:4c:ea:f2:ff:34:20:
1d:7b:8e:2c:03:38:33:44:fb:65:c2:f7:07:77:79:79:c3:65:
bc:66:4a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:19 2024 by rpki-client on console-fra.rpki-client.org