Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C304722ECF11EFBD7EFC92762E951A.roa
File: 54C304722ECF11EFBD7EFC92762E951A.roa (raw, json)
Hash identifier: kgfWEF8DdZhIl32qpFfqFWNYb2RN4hLX7V7nCTCmemU=
Subject key identifier: 7D:99:F2:03:0A:8A:D9:D2:58:27:A3:2E:82:D5:86:05:63:1D:C8:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C550
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C304722ECF11EFBD7EFC92762E951A.roa
Signing time: Thu 20 Jun 2024 06:35:49 +0000
ROA not before: Thu 20 Jun 2024 06:35:46 +0000
ROA not after: Wed 18 Jun 2025 06:35:46 +0000
asID: 209242
IP address blocks: 154.202.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50512 (0xc550)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 06:35:46 2024 GMT
Not After : Jun 18 06:35:46 2025 GMT
Subject: CN=6673cdc5-7a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:04:fd:4a:59:d0:40:4a:92:5d:12:9b:5f:9d:
27:a2:12:7d:72:15:32:01:10:30:42:d9:13:dc:6b:
47:6f:99:4b:cb:98:1e:06:0e:00:2d:43:73:a7:60:
f4:de:ee:7a:0f:ac:1b:4b:c0:8b:fa:22:e0:cb:a9:
d4:42:a8:d8:be:38:de:5d:9d:0e:51:03:e1:90:33:
e7:f0:2f:f8:f9:ef:16:cf:06:71:cd:d2:2c:51:cf:
9a:d3:57:5b:9c:b7:68:0e:85:c2:bc:17:19:1a:06:
6b:3b:3a:e3:4b:89:cf:9d:16:de:be:28:08:73:4a:
2a:2a:95:b6:60:52:42:44:88:7e:7c:7d:dc:47:a2:
25:00:d9:cb:a1:79:50:cb:1a:e6:7f:71:fb:24:68:
14:22:95:5b:e3:cf:55:3e:81:58:61:f1:99:a2:34:
96:26:b2:d5:97:41:fc:1b:ca:2f:62:be:0c:cb:1c:
c8:a6:b0:52:02:10:d0:c1:ea:b4:31:18:de:77:56:
68:5e:66:cc:5d:ac:58:e2:25:58:c5:46:4e:53:c5:
d1:cb:94:f9:bd:e3:3d:69:e1:98:2a:e5:f2:31:df:
33:2b:da:ff:17:52:50:10:c9:f8:18:cf:ef:79:24:
4d:e9:da:af:bf:64:c1:7e:1e:1c:06:1c:19:86:a3:
14:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:99:F2:03:0A:8A:D9:D2:58:27:A3:2E:82:D5:86:05:63:1D:C8:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54C304722ECF11EFBD7EFC92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.89.0/24
Signature Algorithm: sha256WithRSAEncryption
99:65:9b:a0:e4:c8:e7:56:b5:c4:5e:8d:96:e9:82:e8:b1:fd:
2a:36:83:86:d7:05:68:44:21:8c:6a:97:34:5f:c5:da:0e:26:
d8:8c:d0:b9:18:9c:8d:ec:4b:7d:ba:37:d5:68:ab:2e:dc:4c:
a6:51:b5:61:93:a9:6a:02:b1:65:9e:25:a8:de:64:26:da:9b:
1f:9a:ca:db:62:b9:f7:6c:3f:c8:b3:72:22:cb:4b:d0:b0:47:
00:e1:77:e6:82:76:3d:e9:d9:35:ca:ec:05:ee:61:ec:93:8c:
ad:20:04:29:4c:cf:fc:b8:6d:63:ed:26:b8:53:56:63:1d:a7:
eb:9e:f7:ab:ab:20:6b:54:19:1b:c3:1e:fc:60:e1:41:f1:3b:
1d:b2:42:26:50:ea:83:21:1f:a9:c5:6d:a2:91:2f:0f:71:37:
aa:e2:50:2d:25:60:cd:1f:b2:7a:7f:c5:e6:c4:56:7c:62:9e:
34:ee:c7:7e:5c:52:c4:4d:07:33:29:73:bd:15:80:62:7d:a8:
ff:1b:5a:26:93:e4:8b:fd:52:08:2a:66:35:b4:ad:dd:cc:f7:
0a:e9:08:fa:b1:b7:aa:a1:e4:a6:ed:e2:f6:83:17:ad:10:fb:
05:f7:c5:be:6c:db:d0:85:b9:4b:7b:3f:75:02:ae:7e:f5:1b:
08:15:58:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:07 2024 by rpki-client on console-fra.rpki-client.org