Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A0678EAA33011EF91FAFC40762E951A.roa
File: 4A0678EAA33011EF91FAFC40762E951A.roa (raw, json)
Hash identifier: upvHuYu2SoLSeMu9FT7h9IfY++tMnYhOuoo8cw8AAGk=
Subject key identifier: B5:39:9D:C8:A1:9E:00:80:F6:97:1B:0F:A2:4E:B4:8C:25:41:95:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D6A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A0678EAA33011EF91FAFC40762E951A.roa
Signing time: Fri 15 Nov 2024 09:02:07 +0000
ROA not before: Fri 15 Nov 2024 09:02:03 +0000
ROA not after: Sun 22 Dec 2024 09:02:03 +0000
asID: 18779
IP address blocks: 154.203.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68970 (0x10d6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 09:02:03 2024 GMT
Not After : Dec 22 09:02:03 2024 GMT
Subject: CN=67370e0f-9297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c8:ac:4a:30:12:78:2c:be:52:98:d7:8c:0b:
3c:6a:40:37:c1:86:f1:16:4c:d4:dd:39:95:66:e9:
e6:8d:f5:96:66:5f:90:a8:23:42:78:a9:fe:2f:a1:
83:fc:3c:64:44:9c:ee:56:b4:2e:49:fe:17:53:96:
c0:cf:66:e4:d5:4b:46:3f:e5:1d:0e:7f:ca:de:82:
33:7b:92:46:56:d4:fd:44:62:c2:d3:90:72:76:43:
91:9a:72:7e:5e:5c:62:88:12:7e:d4:13:91:a9:0d:
39:0b:9d:41:38:56:fd:ca:a3:cc:5a:da:19:98:6b:
8f:e6:2e:9d:5c:c1:f1:56:f7:4d:4a:8f:c1:6e:89:
b6:d8:7f:f8:a0:61:26:27:15:d3:d1:f7:40:c4:b4:
0d:ac:9e:c6:23:10:2c:a1:4e:ab:6b:94:af:76:37:
a4:99:f8:c2:46:c7:f7:12:37:c9:43:be:7b:d7:e2:
dc:eb:4b:c2:e1:25:66:30:2a:94:d7:69:af:d2:0c:
3d:2a:8a:40:88:11:58:00:7c:88:70:7b:53:91:f4:
8d:56:f8:41:5d:6d:88:72:2d:9e:03:82:76:24:42:
fd:0a:07:e6:dd:5d:94:a7:9b:29:66:dc:35:5f:b6:
34:27:5e:d5:7e:7e:d8:8c:24:0a:28:db:56:0b:7b:
40:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:39:9D:C8:A1:9E:00:80:F6:97:1B:0F:A2:4E:B4:8C:25:41:95:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A0678EAA33011EF91FAFC40762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.51.0/24
Signature Algorithm: sha256WithRSAEncryption
90:32:0a:19:41:72:c2:21:8d:6f:7e:3d:b1:3f:62:6f:73:ac:
ad:ab:be:bd:70:92:c7:73:65:d3:80:64:a4:55:56:ce:75:ef:
74:94:cb:f1:74:20:72:37:96:76:38:03:bb:bd:8a:2a:8e:19:
96:9c:42:e2:87:69:9b:88:d6:9c:dd:e5:2f:51:70:ca:74:1f:
8d:d4:67:aa:35:3a:5f:2a:42:75:73:8a:73:3d:3e:15:e8:f5:
a8:c7:a4:68:db:60:36:2d:74:48:0b:6b:b4:32:14:2c:d9:84:
bc:af:02:30:49:4a:6f:2b:83:98:00:cc:1a:d4:28:62:62:fb:
5d:fb:5e:6a:77:ca:d5:5e:05:6d:a2:96:b9:28:22:2c:f5:10:
b3:30:ad:c9:4b:cd:89:5e:8b:53:47:a2:9b:aa:4c:0d:6e:db:
59:3f:2c:27:4e:a4:92:a7:28:3d:dc:df:3f:5b:1f:28:e9:b2:
ce:ee:da:47:f7:4c:ec:66:a8:ec:43:82:8f:9a:87:17:fc:0e:
c6:68:7f:7e:c3:67:eb:df:f8:3e:ed:de:05:10:83:42:b8:0f:
2a:16:de:3c:c3:8d:23:39:bc:1b:78:87:d5:e4:cf:51:18:bb:
92:00:8d:6e:65:7d:80:59:04:4e:4a:46:67:e6:2e:69:a4:95:
ab:61:c1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:45 2024 by rpki-client on console-fra.rpki-client.org