Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BC11EEA5B9811EF8A47D9B6762E951A.roa
File: 4BC11EEA5B9811EF8A47D9B6762E951A.roa (raw, json)
Hash identifier: tiz63ZoTVZgAyJDpt8RW59OdXccOu4lUwrJ75rqwc3c=
Subject key identifier: 13:4A:3F:F6:CC:B0:89:49:71:0A:1A:17:8B:E4:31:2E:C8:3E:F8:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E096
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BC11EEA5B9811EF8A47D9B6762E951A.roa
Signing time: Fri 16 Aug 2024 06:25:14 +0000
ROA not before: Fri 16 Aug 2024 06:25:10 +0000
ROA not after: Mon 24 Mar 2025 06:25:10 +0000
asID: 132513
IP address blocks: 154.197.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57494 (0xe096)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 16 06:25:10 2024 GMT
Not After : Mar 24 06:25:10 2025 GMT
Subject: CN=66bef0ca-9b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b0:cc:2c:c3:cc:3d:82:b9:12:e1:4f:c1:f0:
7b:40:5b:22:7f:be:41:e9:eb:4e:73:53:05:99:36:
59:54:4b:78:15:c4:17:91:60:47:e6:60:a0:0c:7d:
f5:08:0a:40:9e:87:78:6e:fc:01:9d:01:bc:67:90:
22:9e:c2:e6:6e:42:65:f1:77:bc:63:4e:1f:d0:75:
79:a6:7d:06:48:4a:c7:d7:ae:e0:f0:5c:d7:7f:2b:
ae:94:ef:41:21:35:62:62:c1:7a:ce:80:54:02:f9:
83:4d:53:25:9c:50:5b:7e:7d:e4:85:fa:d9:25:17:
11:7b:fd:8b:4b:ba:06:0c:ff:85:9e:34:b5:fc:9e:
f3:af:a2:61:b2:d5:30:44:c9:7b:08:d8:3e:65:b1:
2c:6a:6a:2a:73:4e:de:3d:6b:85:d9:0b:82:e4:1a:
08:08:49:2a:83:2d:68:30:30:c1:99:9b:a8:33:c5:
8a:0b:79:a6:b3:68:2a:89:19:df:7e:51:f7:aa:0f:
7b:19:09:b9:f9:12:4e:3e:3e:fb:f0:7a:2d:06:39:
7d:46:bc:72:3c:ea:53:67:9c:a6:30:cc:82:5a:ca:
21:d1:60:60:80:07:ca:e2:90:4d:62:3a:af:64:33:
83:21:b6:d5:55:6b:2f:76:ee:c3:a5:e3:b8:85:15:
23:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4A:3F:F6:CC:B0:89:49:71:0A:1A:17:8B:E4:31:2E:C8:3E:F8:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BC11EEA5B9811EF8A47D9B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.44.0/24
Signature Algorithm: sha256WithRSAEncryption
50:8c:95:74:ae:c1:c3:ce:4f:d4:67:b7:3e:c7:a1:cc:3e:35:
48:f2:fa:47:43:09:01:4d:67:d0:8f:2d:a7:07:27:ac:bd:f3:
c4:61:f7:df:47:a3:88:5b:45:fe:f7:c5:f1:57:a4:c8:af:e8:
9d:4b:cf:ac:ee:06:85:dc:60:29:bc:31:66:63:58:3f:21:d6:
10:62:bc:64:ea:b8:61:82:d0:df:ec:e5:f6:21:81:55:70:59:
57:b1:44:c5:d6:38:87:5f:bf:ac:f6:f3:01:81:3a:a2:e6:a6:
d8:c6:9c:8c:ed:73:a0:de:c0:b4:ce:d6:ff:b6:26:ab:92:54:
e3:ca:d7:cb:95:36:c3:fc:65:7e:26:35:b1:92:9c:0c:c3:af:
2c:94:50:8c:34:ac:a1:1d:b7:d5:38:6b:44:f1:c7:13:5a:0e:
d2:57:80:1c:c0:bb:c3:ef:4a:f4:64:3d:b7:b2:6c:cd:f3:df:
47:cd:d5:4a:de:06:12:20:ac:78:a4:f0:02:11:74:80:14:cb:
ae:b2:cd:8e:eb:0e:99:9a:45:70:c5:13:05:26:1e:84:50:26:
34:2e:0b:32:c3:37:fd:c2:b1:c7:77:5e:22:2a:7d:44:ee:b2:
9d:b0:82:ee:f4:22:e8:4e:a7:7b:4b:25:69:3f:7d:d1:fc:02:
36:4b:78:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:29 2024 by rpki-client on console-fra.rpki-client.org