Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D608B6E74CB11EFB113F4B7762E951A.roa
File: 3D608B6E74CB11EFB113F4B7762E951A.roa (raw, json)
Hash identifier: /DU6aWUcIL90LbMR9yNNeGtcK5k81eJNn88YmQwEU3g=
Subject key identifier: A7:0D:84:EA:AB:5A:D2:5C:44:2E:93:72:3C:C7:CC:FE:3F:14:66:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EFDC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D608B6E74CB11EFB113F4B7762E951A.roa
Signing time: Tue 17 Sep 2024 08:02:53 +0000
ROA not before: Tue 17 Sep 2024 08:02:50 +0000
ROA not after: Sat 30 Nov 2024 08:02:50 +0000
asID: 142403
IP address blocks: 154.221.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61404 (0xefdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:02:50 2024 GMT
Not After : Nov 30 08:02:50 2024 GMT
Subject: CN=66e937ad-bd8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:5a:8c:eb:eb:c0:6f:08:99:55:c4:5a:16:
3d:f3:6a:b8:75:fb:7a:e5:0c:9a:87:49:1d:f6:e0:
4a:99:0e:1b:b4:44:74:be:06:85:02:44:a7:82:a6:
f6:cc:1e:7f:41:d5:3b:8b:c4:e3:fd:1d:ef:f3:e2:
b9:e1:9e:45:46:e9:ca:b4:8f:f6:96:1e:61:1c:c8:
c4:84:3d:c5:31:e2:87:b9:40:87:23:79:ad:db:b5:
da:92:ca:04:db:5c:06:cd:57:26:ad:46:28:fd:49:
97:e4:19:5d:25:02:c1:15:eb:c7:3f:98:32:7c:5e:
4f:d3:fb:41:c7:3e:ea:3f:4b:b2:9c:be:cf:de:9d:
25:2b:3b:d3:65:c5:65:c6:3b:08:36:e4:1f:c9:bf:
9c:56:49:2f:87:fd:27:24:cd:af:bc:61:ec:f3:e9:
26:6e:43:4b:23:f8:21:3b:42:6c:be:30:ad:91:db:
74:af:c9:56:be:77:42:a0:eb:54:14:4f:6a:cb:87:
28:20:c6:b6:64:09:df:b6:ea:bd:8f:76:5a:71:76:
d1:93:db:f7:1f:ad:03:d1:08:62:0a:4f:82:e0:0c:
b6:23:de:6f:28:27:d6:4e:6b:9e:32:7b:23:e4:1e:
20:b4:3f:04:fb:31:86:25:5b:93:26:9e:9b:72:69:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0D:84:EA:AB:5A:D2:5C:44:2E:93:72:3C:C7:CC:FE:3F:14:66:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D608B6E74CB11EFB113F4B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.27.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:85:b0:48:56:f4:51:fe:74:59:e7:14:38:d3:cf:fd:a5:f2:
19:4d:8f:c5:f2:2a:fa:c8:be:0c:3e:1d:b6:bb:cf:90:d5:af:
0e:41:32:b2:e0:c9:cd:95:c5:54:42:f7:17:5e:46:62:f1:94:
bd:c4:c7:ca:07:dd:79:68:e8:05:75:d4:52:35:b9:d8:4d:6d:
d2:d3:d2:56:7f:fc:91:01:e4:48:3f:48:a0:98:f1:8a:cd:d4:
73:87:49:2b:1c:94:15:a3:e0:80:d7:0e:08:1e:ad:c3:38:5a:
d3:bb:f0:99:87:e9:79:8a:03:32:02:87:d8:29:97:59:a4:e9:
83:e2:fd:2e:fc:3f:65:8d:5d:43:4d:dd:26:4f:5e:84:86:44:
55:d3:38:82:27:84:f4:20:de:91:6c:fa:58:9b:4b:a8:84:ac:
29:0b:e5:c4:ad:ed:ad:16:f8:37:89:9c:3a:8b:5c:d6:d8:fc:
0f:98:e7:22:79:3d:46:3e:20:9b:44:69:6a:58:5c:30:1a:e1:
cb:ca:49:b2:b7:53:aa:71:62:6f:9e:fb:11:08:26:7e:12:65:
40:7a:14:7e:2e:55:5c:2c:78:ee:72:98:98:71:b0:84:65:aa:
71:1c:2c:a3:2b:32:d7:14:48:f4:54:d0:19:4b:27:23:c0:9d:
19:14:4a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:04 2024 by rpki-client on console-fra.rpki-client.org