Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4ED245169AA711EF82CEAA49762E951A.roa
File: 4ED245169AA711EF82CEAA49762E951A.roa (raw, json)
Hash identifier: tnDCCX2m+THJNmTp59FwBZFEcvmrQkw9s58yhHwbiFo=
Subject key identifier: F3:24:5C:F2:B3:C9:5A:FA:9D:79:AC:1A:B3:25:AD:66:A3:B7:AD:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01069A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4ED245169AA711EF82CEAA49762E951A.roa
Signing time: Mon 04 Nov 2024 12:21:24 +0000
ROA not before: Mon 04 Nov 2024 12:21:21 +0000
ROA not after: Mon 09 Dec 2024 12:21:21 +0000
asID: 54801
IP address blocks: 154.91.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67226 (0x1069a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 12:21:21 2024 GMT
Not After : Dec 9 12:21:21 2024 GMT
Subject: CN=6728bc44-2e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:26:cf:d7:00:a3:64:23:b0:ce:3a:14:1d:d8:
65:aa:2f:97:9e:b5:8b:a5:72:d1:c9:71:cf:fc:81:
c3:ac:b6:75:8b:6f:8a:f1:06:98:99:77:c5:54:9f:
63:40:c1:b3:c7:02:e7:58:09:02:c2:4a:f0:9d:48:
aa:ac:63:2f:93:56:7d:c8:86:62:5d:51:59:91:e1:
87:52:49:56:76:e6:1b:59:80:5f:5d:1e:11:ae:6b:
79:33:e4:81:90:c9:a2:b2:0d:e3:ef:7e:2a:78:6a:
ea:82:6c:fc:cc:c3:23:dd:13:26:f0:43:b4:ac:50:
8f:cd:fc:c1:3e:2e:75:03:97:f0:11:04:64:11:6a:
69:2c:f8:82:31:f4:7e:df:d3:ca:28:e4:2d:06:f0:
62:7d:99:b4:55:ea:fc:f9:59:6d:88:3b:c0:b6:f0:
0e:8a:76:97:8d:e7:72:6f:25:3c:34:be:95:c9:67:
32:d4:f2:73:88:e3:a9:5e:89:ee:2e:eb:1e:ec:21:
30:7b:c9:a7:65:e4:31:4e:5a:a4:37:13:12:68:5a:
2c:4e:d5:5e:ee:51:b0:60:f1:bc:79:17:c7:04:18:
16:68:e9:7b:19:1d:77:2f:e7:dc:e6:8c:b7:ec:cf:
5a:5d:fb:a4:85:fb:61:ee:7a:5d:d1:f6:66:4b:fd:
ae:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:24:5C:F2:B3:C9:5A:FA:9D:79:AC:1A:B3:25:AD:66:A3:B7:AD:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4ED245169AA711EF82CEAA49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.254.0/24
Signature Algorithm: sha256WithRSAEncryption
69:5b:e4:b6:1b:0d:4e:ca:b7:e9:2d:99:a5:19:7c:10:1e:97:
58:5b:a5:06:1b:68:fd:cc:bb:6f:45:f7:a5:a1:13:06:32:b8:
c2:73:97:7d:f3:9e:50:16:8f:24:60:d0:0f:b5:be:93:32:6b:
7c:9f:84:2b:19:5e:93:ac:1a:c1:a7:91:c6:50:09:d4:4c:02:
6b:3c:44:86:72:f1:a4:91:38:a3:26:07:c4:f7:06:1b:c6:22:
0f:56:b4:eb:7c:b3:77:0f:fd:a2:c2:1d:ad:2b:35:35:e5:6f:
de:cf:0c:ac:50:d6:58:ea:e0:a9:04:46:8c:79:c3:e9:77:d5:
ef:9c:36:ec:36:52:07:1d:cd:83:be:89:05:2c:c9:62:50:2f:
20:3a:45:43:7d:23:13:29:ef:cc:1e:ef:20:08:6e:bc:8c:ae:
b9:55:a0:6d:14:da:5d:66:43:1c:15:8b:ec:7d:bc:2d:03:f8:
ff:47:4e:e6:6a:43:ed:19:51:1a:68:7a:95:3c:10:4d:2b:52:
08:bb:cf:97:09:db:f4:c1:66:89:20:19:81:d9:d4:78:3c:51:
c6:e8:a5:c6:33:24:22:78:bb:b5:88:90:bd:79:53:bf:29:5e:
f9:c3:2b:fd:b3:2e:01:a3:92:f1:ed:b9:d4:74:1a:68:a5:25:
fd:f1:ae:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:03 2024 by rpki-client on console-ams.rpki-client.org