Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DA7AA945DCD11EFB5026F84762E951A.roa
File: 4DA7AA945DCD11EFB5026F84762E951A.roa (raw, json)
Hash identifier: WIWdqws9ARL+K+z0reFDZNqdxVsmBYVc260ej22gpGc=
Subject key identifier: 1B:88:15:A8:F3:85:D0:A0:8E:3D:8F:53:A3:5F:2A:17:D0:65:76:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E125
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DA7AA945DCD11EFB5026F84762E951A.roa
Signing time: Mon 19 Aug 2024 01:49:42 +0000
ROA not before: Mon 19 Aug 2024 01:49:39 +0000
ROA not after: Thu 31 Dec 2026 01:49:39 +0000
asID: 17561
IP address blocks: 154.193.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57637 (0xe125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 19 01:49:39 2024 GMT
Not After : Dec 31 01:49:39 2026 GMT
Subject: CN=66c2a4b6-1929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:94:1a:9a:a9:2c:8c:5e:f5:e7:04:4b:28:fa:
cd:3c:0e:a8:e4:87:7c:bb:a5:37:2e:9a:bc:88:3e:
9c:88:67:8e:77:0c:e7:bc:b5:95:af:66:53:d3:e0:
c6:be:da:45:80:6c:ef:7f:a2:95:f5:10:76:70:a5:
4c:0e:b4:ae:68:8f:46:dc:fd:01:64:ad:56:94:0e:
bf:5f:7d:b3:33:ea:48:9f:83:ea:ca:56:9f:9f:8b:
71:ae:30:7b:b8:e3:5d:66:d7:48:48:f8:89:14:6c:
69:6e:0a:f8:5d:b9:d1:ce:50:c1:f1:91:30:00:9c:
a7:be:66:50:f6:cf:d5:7c:87:2b:65:24:bf:74:64:
51:3c:d5:56:94:40:e7:be:c8:30:14:4f:14:1b:ad:
d5:ae:3c:9b:72:ca:6f:5c:5f:98:18:79:00:94:cd:
25:49:3a:b7:4f:bd:6b:ba:88:1e:7d:ad:05:56:42:
a9:b1:9f:0e:10:8b:23:f4:ff:26:1c:e8:44:08:50:
8e:a3:9c:81:5d:45:31:0c:d9:bd:3e:39:77:69:66:
64:04:36:12:c8:50:d6:04:8e:00:ed:5a:65:b4:b3:
d7:60:fb:54:7d:85:23:5d:2e:74:27:9d:14:e2:73:
2b:40:53:41:dc:c7:62:2d:bc:e1:5b:03:f4:59:5b:
61:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:88:15:A8:F3:85:D0:A0:8E:3D:8F:53:A3:5F:2A:17:D0:65:76:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DA7AA945DCD11EFB5026F84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.5.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:aa:11:f1:3c:e9:55:f9:1d:c2:2a:c3:f4:84:ed:db:a6:b2:
b9:9b:f2:4c:a8:23:93:ca:fb:d8:5f:8e:ac:ab:3b:02:0b:ad:
bb:91:3b:c9:00:27:96:1b:3d:18:43:e7:0d:63:84:a9:d0:fb:
c8:32:ce:d3:46:ae:dd:aa:a9:11:d8:ff:80:65:93:36:42:c5:
d2:95:42:91:77:8d:25:8c:bf:51:16:45:cc:b9:18:12:68:0a:
d3:08:17:56:f8:3b:4d:a2:4a:e6:8b:de:4c:ca:1f:b9:bf:0e:
56:4c:bf:c8:36:aa:df:b4:1b:f6:4e:d7:74:cb:68:61:99:34:
49:21:1f:b4:34:2b:8c:e9:76:39:6b:87:af:2f:49:b6:4a:a3:
79:84:a8:35:9d:2c:7e:f9:95:62:6b:dd:32:7c:ce:37:b3:6f:
00:e6:55:6b:4a:d5:90:03:f3:3d:f9:7d:bd:dc:d4:df:c9:5a:
33:65:5c:86:b1:7d:11:9e:22:32:86:92:47:4c:a2:b0:c7:a0:
d7:c4:b2:2b:a3:19:3b:d0:16:da:16:2b:24:2d:07:5d:bc:0b:
2d:cf:6c:f2:39:c2:8d:10:88:e7:57:f9:96:25:24:02:fd:67:
19:94:bc:09:4c:7d:36:91:5d:d2:29:2f:01:cd:02:11:4d:74:
28:e1:80:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org