Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CEA71B273FE11EFBBFAEAAF762E951A.roa
File: 4CEA71B273FE11EFBBFAEAAF762E951A.roa (raw, json)
Hash identifier: Z5B41GmjNd1/meZwzd1wg08oqggHhqYj6EeHstqH+X4=
Subject key identifier: 00:B0:36:27:16:31:9C:8C:56:27:94:01:42:7E:CB:0C:7D:65:08:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF8D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CEA71B273FE11EFBBFAEAAF762E951A.roa
Signing time: Mon 16 Sep 2024 07:35:52 +0000
ROA not before: Mon 16 Sep 2024 07:35:49 +0000
ROA not after: Sat 30 Nov 2024 07:35:49 +0000
asID: 142403
IP address blocks: 154.92.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61325 (0xef8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:35:49 2024 GMT
Not After : Nov 30 07:35:49 2024 GMT
Subject: CN=66e7dfd8-593e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b0:12:29:80:b8:c9:45:51:7b:59:be:69:a4:
4e:06:d6:bc:53:da:7f:28:02:8a:bf:fd:19:4e:77:
22:a1:bd:23:89:9f:4d:dd:8e:b5:9c:08:79:64:70:
71:37:4f:01:56:5e:17:4f:0b:1b:c7:69:c0:f3:14:
fa:4b:a5:77:3b:af:3d:03:03:56:60:9a:3b:a3:43:
8c:5c:f6:82:cb:f5:0f:49:73:93:50:e0:ef:28:aa:
d7:46:2d:9b:63:6f:b7:d8:3c:fc:23:91:35:8c:5c:
31:c5:90:9f:44:10:2c:58:b5:9c:7d:6f:a6:41:fd:
2a:f4:cb:6d:8f:25:37:e3:3d:c0:89:a4:a7:69:5a:
56:90:99:f3:8a:5d:04:a6:03:d1:b1:89:6b:7c:dd:
3c:05:1f:d0:44:ec:7d:ee:25:38:6f:ea:0e:7e:0a:
f9:a5:45:8d:94:30:68:ae:f0:5c:c1:4b:6c:be:fc:
90:62:95:9c:61:b1:c7:12:d4:63:d5:9b:40:19:30:
44:b3:cb:6e:22:a4:9d:7e:47:29:72:01:c9:7e:eb:
61:3b:32:91:29:f7:8c:dd:51:5f:7a:28:05:dc:de:
b1:27:c1:6f:91:fe:b1:e6:68:1e:97:43:10:e8:af:
69:4e:0e:36:5d:1f:12:a2:4d:dd:c1:43:6c:a1:f7:
da:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B0:36:27:16:31:9C:8C:56:27:94:01:42:7E:CB:0C:7D:65:08:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CEA71B273FE11EFBBFAEAAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.16.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:15:9f:e6:42:f5:f0:12:1d:02:fb:61:33:2b:26:c5:d9:ba:
2f:2b:6e:c5:01:23:a4:41:93:b8:37:b9:f4:39:6a:43:ce:fc:
49:70:15:ac:5f:6a:6a:5f:d5:98:7d:36:5b:f2:d1:b2:05:e6:
db:10:92:be:44:39:85:d1:d5:cf:c6:9d:25:95:16:5a:15:95:
fb:80:58:8b:d3:b8:7e:00:a9:93:db:56:e3:38:63:7e:54:f9:
ca:f1:00:c7:76:8c:75:18:f5:b6:a6:e3:d9:79:0c:7a:68:04:
9d:91:fe:a0:e6:38:60:bf:9a:b5:d0:70:f6:86:fa:ca:95:a6:
af:d6:b0:7d:b1:5e:46:ed:52:73:2b:6f:86:b6:9c:58:ce:26:
bc:29:0c:ad:e2:7c:b4:2e:f8:9c:fe:21:15:c9:fa:b3:02:e5:
59:5c:8d:ab:77:7d:9e:0b:4d:7f:26:bb:f6:cb:a7:47:96:e3:
cc:62:aa:b1:a5:94:49:af:ed:e1:d3:ea:53:89:49:83:36:9a:
b0:c0:aa:ea:76:b2:09:84:bd:d4:97:2d:2f:b0:bd:b9:5a:d7:
0e:13:c3:77:1c:53:09:e5:8a:41:d7:d8:e2:b0:15:ce:09:28:
8d:b5:12:02:92:76:a2:89:7a:48:11:b0:ac:9d:41:1a:91:3f:
f1:e9:67:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org