Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5152A9CE9AB211EF8D6D888F762E951A.roa
File: 5152A9CE9AB211EF8D6D888F762E951A.roa (raw, json)
Hash identifier: kuGHZ8P9fmIkf8kR7eSbhsih/J1lqSA6vOFclFlT1eY=
Subject key identifier: 7A:0F:20:06:63:22:F5:FA:07:0A:37:EB:AE:35:D9:15:EC:B5:B2:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0106C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5152A9CE9AB211EF8D6D888F762E951A.roa
Signing time: Mon 04 Nov 2024 13:40:13 +0000
ROA not before: Mon 04 Nov 2024 13:40:09 +0000
ROA not after: Tue 03 Dec 2024 13:40:09 +0000
asID: 139646
IP address blocks: 154.221.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67270 (0x106c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 13:40:09 2024 GMT
Not After : Dec 3 13:40:09 2024 GMT
Subject: CN=6728cebd-c1c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:a0:8b:3d:50:a7:f9:54:52:dd:65:44:71:
f3:74:b9:79:74:ca:89:51:83:69:c3:80:39:49:3b:
7a:d5:18:c4:ca:76:f0:4d:b7:d8:0a:9d:57:b0:5f:
13:03:98:21:43:08:95:0a:a1:ac:fe:ba:41:b4:0c:
07:68:0e:24:3e:ec:13:e2:8f:35:40:43:0a:6c:3c:
b8:63:41:9e:b1:08:29:df:1d:e1:40:0e:10:01:ed:
a9:cd:b6:54:37:bc:ba:96:cc:fe:96:35:55:66:59:
a1:ec:28:78:66:da:7f:9a:69:69:f0:47:45:1c:5b:
ce:2a:24:0c:b8:f1:eb:9c:cb:af:1e:2c:23:cf:7c:
8c:53:3e:4b:3a:15:1d:2a:cd:49:72:49:e4:db:63:
0a:07:05:60:bf:3b:35:13:65:fd:1b:1e:d5:b2:9e:
81:10:25:c1:39:30:6b:b0:30:7a:a2:88:b5:39:51:
f8:67:14:21:3c:d5:58:b4:3c:c9:da:df:59:77:3a:
61:e5:60:53:e2:11:6e:04:42:26:a3:d0:eb:22:f0:
a8:7b:26:53:d1:d2:97:1d:6d:9b:c5:ef:a1:3f:06:
16:d7:16:8f:1b:1f:4d:32:3a:93:a4:92:82:35:9c:
cb:f4:97:bd:21:a3:1c:d7:b0:ee:82:cd:05:bc:10:
88:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0F:20:06:63:22:F5:FA:07:0A:37:EB:AE:35:D9:15:EC:B5:B2:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5152A9CE9AB211EF8D6D888F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:db:bc:f9:02:d4:9a:94:99:12:eb:bb:65:6c:65:34:89:4d:
c9:cc:81:03:9c:20:1e:4d:b8:cd:ab:bb:94:5f:dd:42:a2:a9:
57:52:b5:4a:ce:8e:35:2c:2a:aa:7d:db:75:ca:50:ca:f3:bc:
2b:b8:ed:f1:b1:94:d4:23:4d:67:74:20:24:de:cd:76:ab:05:
c5:95:bd:4b:27:c8:cb:73:ac:f3:0d:1c:18:ba:f8:2d:3f:af:
49:b0:72:52:ec:d7:94:cb:7d:95:0d:cd:11:ee:42:43:0a:b8:
7f:dd:9c:89:bc:ca:50:42:56:8f:43:e9:55:17:37:54:ee:42:
09:f0:20:66:1e:dd:42:db:28:3e:ad:ef:18:9f:34:2c:36:40:
ae:e7:32:c1:a2:ec:2a:be:2a:7f:dd:2a:a8:dc:dc:bf:97:71:
86:40:47:00:e4:5c:fa:a8:f7:40:10:6e:52:33:b4:e1:78:a4:
a6:f5:3a:2e:33:86:8a:78:e4:f7:3a:b4:36:99:1b:67:03:82:
74:96:52:96:41:0d:d7:72:94:6c:56:8f:88:cd:ee:93:71:e0:
fd:c4:12:9e:b4:81:77:b6:fe:f3:a3:4b:da:8a:8d:eb:29:3b:
e0:b9:90:02:e9:9b:e9:76:d1:83:f2:d5:44:65:f6:2d:cf:6d:
71:99:12:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:06 2024 by rpki-client on console-fra.rpki-client.org