Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54E21B9E677511EF97DB3083762E951A.roa
File: 54E21B9E677511EF97DB3083762E951A.roa (raw, json)
Hash identifier: 7CVbFEgBKJ1+Nrs3UivR03QDSlOvd9qQuaAAcaiFwJ8=
Subject key identifier: EB:6D:9C:33:28:48:E0:AB:24:0A:D3:A1:A5:0E:31:86:3F:50:95:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E841
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54E21B9E677511EF97DB3083762E951A.roa
Signing time: Sat 31 Aug 2024 08:45:10 +0000
ROA not before: Sat 31 Aug 2024 08:45:07 +0000
ROA not after: Tue 02 Sep 2025 08:45:07 +0000
asID: 212552
IP address blocks: 154.91.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59457 (0xe841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 31 08:45:07 2024 GMT
Not After : Sep 2 08:45:07 2025 GMT
Subject: CN=66d2d816-53cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1a:53:ab:5f:be:2c:4d:09:5a:77:1a:e1:79:
08:d7:5c:da:b7:8a:59:8f:83:48:d2:5b:3e:81:03:
27:af:a1:07:5d:22:5f:f8:47:ee:8f:6f:24:84:be:
a8:71:53:f1:9c:03:95:e7:d7:b5:cb:ed:9d:e4:9a:
69:da:d8:8c:93:97:87:7c:5e:0b:88:36:87:7b:2f:
9d:25:d3:f0:e3:da:85:1f:e2:2c:13:c1:17:7f:15:
79:9c:0a:bb:0f:87:16:b3:5f:3e:1f:5d:c7:1c:fb:
26:0c:d5:a1:e4:d5:2b:cc:97:6e:9f:b1:bd:a4:c8:
6d:01:92:27:b1:0f:d1:fb:09:55:34:80:3a:47:16:
d2:14:61:f5:27:58:85:a0:60:8f:55:aa:04:af:fe:
53:61:78:a3:be:54:09:7e:10:98:c3:ca:4b:4d:90:
8c:0b:34:7d:64:a6:a4:9f:43:9a:65:7d:04:6f:a2:
fd:ea:59:83:f3:d0:42:5e:9b:30:ec:43:61:2b:d2:
2d:43:d2:9d:fc:e1:f8:2b:72:2d:f2:0b:4f:f6:a1:
fd:03:4e:63:51:32:ab:b8:76:56:1a:27:48:29:13:
99:ed:d6:3e:3a:60:3e:ec:ed:a4:c2:41:aa:93:c0:
80:a9:48:4f:df:0e:1f:1c:59:99:bd:7e:50:01:82:
b0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6D:9C:33:28:48:E0:AB:24:0A:D3:A1:A5:0E:31:86:3F:50:95:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54E21B9E677511EF97DB3083762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.170.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:fe:54:c8:b8:02:1f:d3:28:78:10:10:92:fa:7a:9b:34:f5:
5f:0a:4a:2b:2f:46:a3:62:c0:a0:0e:f1:3a:13:a2:eb:8b:ad:
64:92:e8:ce:fc:69:d5:4f:ed:df:72:8e:c4:64:b3:d7:b5:db:
68:6f:49:69:ce:e4:ed:a0:0b:c4:f6:e4:47:f1:4e:a7:05:de:
5e:ed:dd:b7:31:4b:4c:eb:dd:fc:87:de:cd:44:fa:bf:1b:c3:
53:61:bf:56:02:8f:e2:2f:df:c4:8d:84:b1:a8:63:d5:59:97:
90:eb:32:d1:ca:af:b9:40:61:e6:74:5f:1e:73:5a:2f:ed:7c:
43:be:50:48:2f:ba:4e:9e:1d:86:32:b6:d6:68:7f:41:27:88:
c3:cc:a8:af:f6:b5:7e:82:43:ba:97:ae:cd:61:1b:b5:56:4b:
a2:af:fb:41:30:95:4f:79:c4:27:16:e1:d4:89:a0:3a:3d:0f:
69:b0:ea:9f:20:7e:91:57:0f:ec:5e:6d:4d:e6:52:90:e9:28:
e0:fe:39:93:0e:8c:a7:b4:d1:27:3a:ea:30:ba:ce:a9:b3:33:
f3:12:98:93:0f:53:d7:15:8b:a0:56:ed:ab:6a:d7:5a:05:3e:
e9:6e:9c:d3:e8:0a:0b:49:fb:e6:4d:9f:97:cd:bf:16:f5:7c:
ec:4e:3c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org