Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49CDD8848B9111EF856065B2762E951A.roa
File: 49CDD8848B9111EF856065B2762E951A.roa (raw, json)
Hash identifier: ce0/kAHl69P2P07LWSJ3QV5MrpvKrqfE3skSKgZpP6M=
Subject key identifier: D4:76:1F:C3:20:D1:BF:35:82:C2:EE:77:8B:B4:29:58:F5:25:A1:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE81
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49CDD8848B9111EF856065B2762E951A.roa
Signing time: Wed 16 Oct 2024 07:36:00 +0000
ROA not before: Wed 16 Oct 2024 07:35:56 +0000
ROA not after: Thu 18 Sep 2025 07:35:56 +0000
asID: 132513
IP address blocks: 154.222.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65153 (0xfe81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 07:35:56 2024 GMT
Not After : Sep 18 07:35:56 2025 GMT
Subject: CN=670f6ce0-d559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:30:96:2a:29:94:71:16:f2:e9:18:cb:c1:9e:
f8:86:aa:00:66:eb:f7:21:54:08:72:85:67:3a:b0:
3c:44:16:31:20:0f:c1:ca:04:83:dd:ed:e6:aa:1a:
cd:99:6f:29:91:a3:3a:5b:36:ab:e0:97:ec:80:9e:
7b:24:3b:d0:e5:f4:2f:05:6e:af:15:43:ac:7d:ec:
8c:35:74:a6:bc:0c:a6:de:a0:ae:f6:b2:7d:dc:c8:
6a:ee:61:34:35:24:78:f5:22:77:95:45:c3:0c:97:
03:68:66:48:f3:0a:f4:18:cb:78:cf:f2:bc:c6:3e:
04:08:94:52:94:69:34:5b:78:f1:e3:e3:5f:e9:0d:
9f:db:f3:dc:b0:74:8e:54:fc:0f:0a:c0:f9:83:cd:
88:1f:81:db:24:d7:1f:04:67:99:11:50:f1:10:a1:
15:dc:9e:bd:a5:c5:56:00:d5:13:8d:50:7f:8e:15:
40:24:1b:05:04:00:ff:13:fc:f6:88:ae:c6:07:b0:
90:54:91:38:ed:d7:c9:25:b7:9e:0b:af:57:b4:ee:
8b:cd:45:58:bb:73:af:16:61:ec:ef:00:89:6a:b5:
3a:a7:f2:60:d8:fa:65:aa:dd:2f:c0:4c:95:34:f4:
e5:57:3b:01:d4:a4:7f:e3:ff:54:05:94:ab:ba:7d:
ec:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:76:1F:C3:20:D1:BF:35:82:C2:EE:77:8B:B4:29:58:F5:25:A1:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49CDD8848B9111EF856065B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.37.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:72:6d:e6:55:81:2c:6a:c5:3f:65:72:e8:5d:a4:a7:45:14:
e2:1a:aa:c5:3f:0c:a5:3a:41:28:a6:4c:d6:12:83:01:d8:ed:
be:c2:9c:f8:de:62:5b:cb:78:46:06:40:4e:5e:e4:20:b6:74:
75:19:ac:9b:ba:7f:a4:27:58:b8:51:c9:95:25:cf:e7:45:9b:
3f:47:e7:68:d9:59:ba:41:d5:d9:90:76:09:97:d5:54:e8:06:
4b:4b:aa:3f:1e:b8:69:b5:0d:32:47:51:85:3a:fd:de:b3:ae:
df:f6:1f:65:a0:f2:6a:2f:37:7e:38:10:c2:5c:1b:c3:e4:d9:
f2:1b:b7:db:e2:49:b2:39:6d:c2:64:84:8d:ef:09:e8:71:00:
f0:4d:b7:43:a5:c6:ad:61:c3:7d:a0:78:fa:95:48:b2:d9:a1:
d9:0d:5e:07:74:48:76:c1:a1:47:7a:0e:27:2b:77:a9:78:a7:
de:13:48:f0:f7:74:59:62:f5:30:f2:89:e6:9f:ad:92:65:a4:
d6:dc:c6:dd:b5:1e:be:f8:b5:8f:34:38:66:7a:24:e5:23:6e:
79:f3:6b:fa:30:e4:c2:df:51:19:dd:a4:55:fa:6d:0f:ab:3b:
9b:4b:22:42:3f:a7:f3:38:fe:6d:fc:c2:fc:d2:13:33:f6:94:
98:c0:b1:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:29 2024 by rpki-client on console-fra.rpki-client.org