Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F76F662A8EC11EFBD682245762E951A.roa
File: 4F76F662A8EC11EFBD682245762E951A.roa (raw, json)
Hash identifier: NpJPxjXyrKt+dpsXtXq+H0msl7zsE55I+9XuahzblwU=
Subject key identifier: B5:EA:1C:72:A4:FA:A4:BA:7D:57:A0:BD:A1:82:46:78:F9:E1:03:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01111B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F76F662A8EC11EFBD682245762E951A.roa
Signing time: Fri 22 Nov 2024 16:10:37 +0000
ROA not before: Fri 22 Nov 2024 16:10:33 +0000
ROA not after: Tue 03 Dec 2024 16:10:33 +0000
asID: 62240
IP address blocks: 154.195.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69915 (0x1111b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:10:33 2024 GMT
Not After : Dec 3 16:10:33 2024 GMT
Subject: CN=6740acfd-bf34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:02:53:c6:d2:e1:c8:68:4b:81:22:55:7f:
02:d9:ba:d1:cd:60:e5:18:de:c1:24:e0:d5:32:ef:
c1:c5:a0:f1:80:f2:65:b4:0c:9c:eb:14:83:c8:37:
15:81:2f:bc:d1:33:c4:38:aa:f4:dc:a5:53:e0:89:
18:b5:f4:38:12:af:b5:c0:05:62:14:bd:92:c9:4d:
71:d5:3a:44:6a:97:6c:18:87:d8:5d:16:48:fa:85:
21:db:7d:04:e7:68:4e:2a:3e:31:5c:7c:e9:25:96:
12:bc:3a:64:19:c7:68:21:21:6b:1d:de:0a:fa:04:
e5:0b:a7:1d:e8:e8:d0:95:92:e9:9f:12:dd:0d:d3:
fa:85:35:5b:f2:7b:38:7e:30:57:48:f5:c5:74:f7:
1d:f2:7c:f2:a7:ed:b2:53:33:43:ad:ef:b6:72:c3:
20:b9:70:c5:6d:40:24:f0:00:0c:0a:d5:29:f9:24:
a9:2e:4d:ba:d3:2c:0e:75:7c:a5:53:4e:a5:2c:ac:
3a:36:a9:ce:6b:f8:73:09:52:73:ef:ea:08:1f:df:
b3:3a:1e:a9:99:fe:cf:bf:2e:65:85:0e:8e:73:41:
82:a3:3e:0e:86:6e:01:eb:f7:ad:89:18:f4:6d:ee:
c9:2c:92:96:7c:21:db:63:61:20:26:dc:88:6c:90:
f7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EA:1C:72:A4:FA:A4:BA:7D:57:A0:BD:A1:82:46:78:F9:E1:03:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F76F662A8EC11EFBD682245762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.136.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:39:dd:76:43:78:6b:b6:be:c6:65:31:42:ce:fc:8b:60:92:
56:f3:15:88:2a:69:06:65:98:7b:14:f8:16:70:bb:f7:ea:33:
05:b3:5e:98:a8:55:26:e6:fd:b0:de:bf:86:b7:61:00:f3:cd:
66:63:e1:70:df:d7:5b:89:28:c4:9f:c9:32:3b:42:81:cc:19:
27:bd:de:c4:f2:ba:11:df:b2:1e:ac:b1:3c:64:5f:99:c6:14:
c6:19:1f:1b:b1:0b:14:ce:fe:00:d2:ab:7c:58:b3:69:06:5a:
cc:ef:40:ca:ef:de:04:fc:7c:c9:ec:89:db:78:83:42:e9:1e:
7c:a7:d8:e5:1f:09:97:db:62:f2:7e:dc:32:aa:b1:a0:44:a3:
98:f7:9e:5b:c1:3c:a7:b1:69:51:11:36:fa:f7:12:5b:7a:73:
01:5f:36:67:dc:52:9d:b6:ba:40:b0:75:f1:92:46:72:4d:6d:
60:a2:19:23:b3:2f:ac:8a:d6:31:7a:b5:a9:9c:cd:7c:5d:23:
bd:7f:e0:6d:64:47:f4:31:20:04:15:29:74:f5:e8:c8:f8:b6:
71:d5:55:23:e3:c1:88:52:9e:a6:cb:be:dc:2e:1b:14:8e:d5:
42:ef:d7:73:06:b6:61:e4:46:36:01:84:42:7e:34:c7:3b:a8:
31:59:3b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:23 2024 by rpki-client on console-fra.rpki-client.org