Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D3E833EA8EB11EFAAABCDBC762E951A.roa
File: 4D3E833EA8EB11EFAAABCDBC762E951A.roa (raw, json)
Hash identifier: JZI+4CSMfsdD9DwTJa77CTLj3pfdN2LJxhsgDuHMZv8=
Subject key identifier: 7F:36:1E:E7:AE:32:43:B1:3B:E5:DA:9A:C7:37:86:1C:9A:16:C1:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01110F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D3E833EA8EB11EFAAABCDBC762E951A.roa
Signing time: Fri 22 Nov 2024 16:03:24 +0000
ROA not before: Fri 22 Nov 2024 16:03:20 +0000
ROA not after: Tue 03 Dec 2024 16:03:20 +0000
asID: 62240
IP address blocks: 154.195.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69903 (0x1110f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:03:20 2024 GMT
Not After : Dec 3 16:03:20 2024 GMT
Subject: CN=6740ab4c-2388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ca:de:32:a7:35:b7:15:a4:83:fe:ea:6b:13:
f2:6e:bf:35:3c:3d:78:04:af:76:f9:2b:fe:3f:8d:
16:48:bb:e0:6c:d3:b5:ee:70:7a:6c:ac:c4:4b:f7:
a8:a4:3b:a4:c3:4f:c2:68:ef:86:78:b0:11:b2:64:
3a:41:47:cb:42:31:1a:1d:15:66:41:33:52:1c:09:
ed:7f:e1:5f:28:bf:c9:4e:e9:27:3a:02:09:5a:f4:
fc:17:ed:56:97:97:b4:67:ba:e9:36:4f:88:7e:fe:
3c:32:2b:c1:6b:16:fd:5f:60:e7:aa:13:78:88:62:
ff:36:91:5f:96:03:00:aa:ac:a5:15:58:92:9d:48:
a2:a6:a1:94:d0:35:9b:8f:0c:a4:d6:77:bd:b3:d5:
d4:61:49:46:14:15:94:7a:57:88:18:10:a9:52:01:
f5:12:f0:0b:27:a0:45:4b:08:00:4c:b0:7a:a4:84:
4a:a3:12:9e:f6:57:e1:13:ef:29:4c:2e:5e:d6:48:
d8:c5:6b:61:ca:12:ff:5f:fb:22:78:a3:76:e5:f8:
fc:23:90:eb:7f:4a:8b:83:25:62:b0:e5:89:5d:05:
df:82:41:0d:73:4b:1a:2e:c5:f4:a9:50:41:d8:2a:
2a:31:fa:68:f5:f3:01:8f:2c:4f:ec:fd:59:a5:1c:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:36:1E:E7:AE:32:43:B1:3B:E5:DA:9A:C7:37:86:1C:9A:16:C1:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D3E833EA8EB11EFAAABCDBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.130.0/24
Signature Algorithm: sha256WithRSAEncryption
96:3f:b6:18:d7:74:22:f9:e7:88:f7:23:1e:be:e8:63:cd:28:
f6:e6:1f:84:6c:40:8d:3a:75:66:fd:8d:67:1e:15:8f:25:86:
d7:53:6b:95:84:ed:8f:a9:30:8c:3b:6f:1c:30:5c:70:44:af:
8d:15:49:bc:38:56:3e:d6:c0:06:16:6a:79:ae:ad:e7:ea:01:
34:18:2d:be:22:11:1f:64:44:40:19:54:59:2e:61:e3:48:1a:
43:f3:24:4b:10:ec:08:20:41:d2:1a:b2:da:17:97:b3:36:83:
a8:5d:b0:92:9c:25:20:92:e7:03:51:10:a8:2b:e5:40:c2:8a:
e3:3f:31:b1:73:50:8d:78:b8:30:4a:17:bf:3c:c8:66:b7:82:
c7:80:19:45:48:77:e5:e4:e1:d3:17:b5:33:07:27:63:6d:d1:
35:2e:f7:93:ea:eb:fe:d0:0e:35:24:b0:c3:b7:a7:fa:74:57:
8b:4f:3a:d0:e3:58:f5:b6:a3:8c:d5:5f:e0:c8:38:a3:e7:10:
2e:df:93:17:c2:c1:d7:20:81:41:3b:c9:2f:d1:39:00:23:e0:
87:f3:ea:84:e8:d8:bb:a7:a2:b3:a0:18:df:73:28:34:4f:53:
9d:84:61:7b:bb:e6:ec:eb:6b:b8:b5:bf:64:40:46:f5:75:a8:
ad:c3:d9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:29 2024 by rpki-client on console-fra.rpki-client.org