Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5141DE0487C611EFA14B3AB3762E951A.roa
File: 5141DE0487C611EFA14B3AB3762E951A.roa (raw, json)
Hash identifier: Vema66wkOpyWLnsrjEwO7uHFMX9Wm6nUpnv3lpERSFU=
Subject key identifier: 52:E5:D2:93:65:A1:ED:9C:92:56:60:12:71:FD:38:3F:86:9F:38:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FD6A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5141DE0487C611EFA14B3AB3762E951A.roa
Signing time: Fri 11 Oct 2024 11:45:31 +0000
ROA not before: Fri 11 Oct 2024 11:45:22 +0000
ROA not after: Wed 19 Feb 2025 11:45:22 +0000
asID: 136907
IP address blocks: 154.220.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64874 (0xfd6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 11 11:45:22 2024 GMT
Not After : Feb 19 11:45:22 2025 GMT
Subject: CN=67090fdb-6c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ac:df:52:6d:12:23:fc:90:cd:a9:70:5b:83:
c8:cd:78:aa:43:da:4e:84:b0:fd:57:1c:13:9e:1c:
0c:42:b9:ff:52:8c:93:db:6e:9a:4b:c3:0d:20:ec:
44:c4:7f:34:4e:d6:57:4f:4a:e9:89:5d:76:ab:f7:
af:1c:12:f5:dd:b0:63:d2:c1:dd:ec:39:85:50:18:
72:7a:78:1e:93:fc:df:3b:55:3a:b6:37:c6:49:7d:
33:ef:db:51:64:6a:fc:ca:a5:ea:ad:dd:a2:58:54:
ff:47:2e:00:6b:52:70:a8:48:c9:3b:08:89:bf:3d:
43:17:b3:d4:ee:4a:63:86:4c:a3:54:d1:41:bc:11:
d1:9d:30:48:b4:3f:98:62:42:a1:c6:69:be:54:84:
39:f6:90:e7:be:d7:ec:1a:e8:68:81:9b:dd:73:d8:
6c:00:98:4a:90:1d:cc:37:06:ab:54:41:13:dc:f5:
cf:89:ac:40:70:42:62:9d:35:b0:11:02:f0:4e:51:
17:62:db:18:42:b8:12:98:d5:35:ca:88:0d:5d:b9:
05:91:2b:66:b5:dc:a2:33:31:48:2c:95:f5:12:a7:
7f:5b:88:bc:06:44:4f:73:32:34:76:55:5c:87:fc:
c4:ad:64:3e:f5:2d:cf:88:f3:35:5b:b6:f3:15:0f:
5f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E5:D2:93:65:A1:ED:9C:92:56:60:12:71:FD:38:3F:86:9F:38:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5141DE0487C611EFA14B3AB3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.192.0/19
Signature Algorithm: sha256WithRSAEncryption
7a:d1:d3:31:07:be:6f:dd:c1:d4:9d:58:8b:01:5a:84:55:13:
af:f2:37:df:5c:4d:a1:a5:c0:74:0f:7c:98:55:b3:94:4c:68:
2a:d3:3f:55:79:54:41:91:02:a0:3f:80:33:35:8a:cf:45:24:
ff:d8:c9:6c:2b:60:2d:42:59:4b:3f:a7:2b:3f:ff:66:c0:c2:
40:b3:eb:3c:2f:6c:12:95:3a:12:3c:0b:b4:27:8b:01:dc:77:
b3:b2:de:32:bb:d0:9c:a5:b0:42:e3:7f:ad:be:ea:56:b7:07:
14:e6:0f:3c:9a:91:3c:80:ee:e3:52:ac:f6:f7:96:bd:b8:ad:
a7:aa:9b:eb:69:8d:57:d7:9f:82:44:3d:a5:5c:45:ad:7a:b3:
e2:7c:70:ce:1a:69:f3:b1:99:f2:14:39:e2:45:64:f1:f6:d2:
7e:5a:0c:f1:ed:dd:86:74:22:a6:a5:ef:b3:84:9f:ea:48:77:
ec:09:88:4b:eb:35:a7:13:69:6e:02:3e:5e:6b:64:9b:68:2a:
97:10:24:50:34:c8:20:cf:be:32:f3:61:16:60:81:63:46:c2:
17:cb:0e:28:52:c3:e2:f6:e0:c5:3a:8c:f3:8b:ce:5d:cd:58:
23:26:0b:ef:dc:2e:2d:8b:d7:73:ae:c2:3c:fe:6c:33:b6:5d:
3f:3b:d6:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org