Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54CC9CEA92B511EF90A1ADB0762E951A.roa
File: 54CC9CEA92B511EF90A1ADB0762E951A.roa (raw, json)
Hash identifier: 6fJgd/4UpmgdBkWE0qkBb2ErRHSG1V/87WHpKU7ZI+U=
Subject key identifier: 05:E9:85:8D:36:B3:C7:EA:25:02:86:EB:39:64:61:84:09:B8:05:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54CC9CEA92B511EF90A1ADB0762E951A.roa
Signing time: Fri 25 Oct 2024 09:41:38 +0000
ROA not before: Fri 25 Oct 2024 09:41:34 +0000
ROA not after: Sun 01 Dec 2024 09:41:34 +0000
asID: 202656
IP address blocks: 154.222.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66036 (0x101f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:41:34 2024 GMT
Not After : Dec 1 09:41:34 2024 GMT
Subject: CN=671b67d2-3740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:89:27:c3:86:bb:f5:01:5f:a5:3a:90:b6:
6e:ce:92:51:cd:fb:a2:9a:4d:b0:8a:20:65:c5:c3:
38:f3:65:e4:d0:35:f2:06:d2:28:bc:7b:e9:56:8a:
b2:02:5c:5d:41:cd:67:22:55:b1:2f:52:c6:7f:69:
4d:32:e1:c7:96:25:fb:ea:8d:02:2a:15:8e:25:3c:
d5:eb:6e:d1:c3:c3:1c:13:78:33:60:f2:df:37:45:
c4:06:39:bf:a1:88:72:c9:fa:06:e2:e1:1b:ce:17:
fe:98:99:81:ea:aa:b4:9c:9c:3f:66:24:8f:cf:aa:
12:4d:9e:f1:ae:46:c6:e7:b8:4e:60:e9:1d:ed:6b:
4f:96:86:08:d7:8a:3e:dc:f7:d3:fe:56:5f:ae:93:
a9:5b:3e:75:69:4c:de:80:5a:f5:39:a9:96:8e:d3:
e3:fa:9f:98:8a:b5:d9:4a:79:06:9e:35:06:b2:47:
d1:a1:e1:5d:56:1f:82:27:3f:fc:9c:8c:a5:50:5a:
38:03:2e:ba:33:55:91:79:42:56:2f:fe:8e:7b:e0:
10:b0:cb:75:c5:cb:90:de:5c:c7:e8:e3:b5:23:9e:
30:e0:d3:aa:08:5b:85:51:c0:eb:0f:73:01:e6:f2:
ee:48:1e:1d:5e:05:d3:13:2c:65:76:c3:20:af:44:
de:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E9:85:8D:36:B3:C7:EA:25:02:86:EB:39:64:61:84:09:B8:05:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54CC9CEA92B511EF90A1ADB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.40.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:56:36:32:c8:16:57:c3:18:d6:4d:4b:2e:2c:32:f9:b3:82:
df:fb:64:27:fd:d7:c4:ea:f4:32:40:91:af:86:c6:8f:e4:f6:
eb:29:79:8c:e4:89:ff:34:92:8a:93:da:8f:8b:be:63:46:24:
74:b5:2e:3a:3f:0b:a3:65:06:b7:92:2a:1c:69:a9:fb:73:49:
5a:bd:b9:e6:a3:4f:19:73:4c:7a:8b:e1:d0:01:be:ec:dd:ba:
a5:ee:d5:46:d2:97:10:4c:dd:91:39:7d:06:65:f8:3a:09:cf:
91:53:8c:55:2c:61:42:fd:15:70:35:a7:5c:3c:03:c4:12:31:
5e:3a:fe:fd:db:47:3c:1d:c4:4c:59:44:d8:41:d5:34:72:0f:
4d:8d:f7:3d:56:1f:f3:fd:97:2c:10:49:20:bf:d0:3c:09:bb:
24:a8:4a:ed:c9:d5:92:fe:0a:66:0a:27:16:8c:49:a8:f7:94:
37:5b:50:c2:99:2a:f4:c7:7f:48:3b:71:a1:aa:7b:08:ba:60:
e5:e9:ce:ce:f5:fc:be:75:b4:5d:6b:2c:5e:e9:c3:70:72:e6:
0f:36:49:61:f7:4b:b4:9f:6d:d9:42:4e:28:b7:ed:c7:f8:04:
dc:91:06:7f:d3:2f:f4:fe:2c:ec:90:ce:8a:16:cf:7e:b1:79:
63:21:ed:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:30 2024 by rpki-client on console-fra.rpki-client.org