Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A55EE2CA8BF11EF9FA3C2A8762E951A.roa
File: 4A55EE2CA8BF11EF9FA3C2A8762E951A.roa (raw, json)
Hash identifier: /YLFbxzvdpEleXqZnrIFAIhfJ/jQgO0nTawp7iKxHwk=
Subject key identifier: AA:4D:33:94:1A:7D:4D:25:73:06:27:E9:5D:91:E6:84:88:AA:C4:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A55EE2CA8BF11EF9FA3C2A8762E951A.roa
Signing time: Fri 22 Nov 2024 10:48:21 +0000
ROA not before: Fri 22 Nov 2024 10:48:17 +0000
ROA not after: Sat 30 Nov 2024 10:48:17 +0000
asID: 149014
IP address blocks: 154.223.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69631 (0x10fff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 10:48:17 2024 GMT
Not After : Nov 30 10:48:17 2024 GMT
Subject: CN=67406175-a373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:fc:4c:48:62:91:f6:a9:11:ec:d6:e6:7b:
ca:69:aa:1d:dd:00:ab:9b:14:52:c5:d9:59:2d:c8:
27:4e:d1:cf:82:e6:c8:ca:4c:b3:73:44:93:31:04:
49:f9:ec:7a:46:e5:28:72:64:ac:6f:63:81:b8:c4:
08:d5:0d:44:ba:a1:fb:83:4c:06:9d:ad:28:be:e7:
86:29:3f:58:cc:1c:8e:bc:cd:f7:56:75:a5:7a:d7:
de:7c:f9:f2:fc:84:6f:23:3d:6d:7e:fb:20:35:00:
3d:16:d9:39:93:f4:6e:f5:c9:d0:5d:63:70:d3:a8:
d1:cb:6c:25:c9:f4:1e:68:aa:62:e1:f1:d5:ef:b2:
1d:d6:59:8e:03:d7:a0:e4:b1:ba:4a:18:58:ca:be:
6a:2b:72:f6:bf:81:cd:59:f8:7f:fc:4c:20:f3:9b:
b0:2c:2f:9e:b8:3f:ce:66:c9:2f:b7:ae:42:99:63:
87:38:31:01:27:44:ef:70:39:0e:62:98:21:d6:f2:
ed:cd:cb:24:35:76:cc:bb:9d:d0:f1:f6:ab:01:24:
ef:1d:6f:b8:cf:0c:16:77:4b:ca:f9:32:75:10:23:
47:a2:3f:5b:16:f8:01:f4:36:6c:a6:2f:cf:92:13:
c7:63:2a:20:f6:aa:a7:5f:bb:99:46:fd:0a:51:f0:
c0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4D:33:94:1A:7D:4D:25:73:06:27:E9:5D:91:E6:84:88:AA:C4:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A55EE2CA8BF11EF9FA3C2A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:28:71:f1:31:69:c2:e5:1e:4d:29:a8:23:7b:50:66:b4:17:
75:59:8a:f8:cf:3c:55:dd:b3:3a:eb:5f:8e:fc:e8:65:2b:a3:
43:00:73:f6:9f:51:d3:5b:d8:63:31:5d:70:18:a8:7c:8b:26:
08:5b:88:09:80:41:85:b3:29:72:99:3e:a0:b5:56:ed:7e:4f:
15:a0:26:44:0d:84:6d:a7:07:ac:be:93:0e:58:0c:50:72:28:
14:a0:74:a2:80:a3:02:d3:de:bb:e6:ca:18:7e:7e:cd:2b:f9:
91:40:bd:7f:5c:90:35:5f:19:bd:da:73:36:d2:96:93:c2:54:
96:b1:fa:3e:4b:d1:d1:6f:be:52:92:69:f3:10:40:c4:fc:78:
82:07:08:28:15:27:cd:fa:51:05:29:5e:2c:7f:8b:c5:b0:b1:
ad:88:cd:00:15:db:d5:29:d4:29:dd:97:80:f3:e2:96:87:d0:
33:a7:14:e7:64:cb:ee:9d:e4:4b:bc:39:ef:c5:17:4a:37:10:
5b:58:08:73:15:77:92:81:b5:79:73:08:55:64:19:01:fd:ec:
61:5c:28:95:73:0b:c2:19:4f:af:b3:10:89:ba:38:72:22:2b:
f3:96:ed:97:2e:7a:81:dd:e9:3f:62:f5:24:b6:7a:d1:8c:e9:
89:b9:0d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:21 2024 by rpki-client on console-fra.rpki-client.org