Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5543126E736911EF81819C50762E951A.roa
File: 5543126E736911EF81819C50762E951A.roa (raw, json)
Hash identifier: 7TmP9oihWECHjF6aqkBmftMbIxUUAXk9H4BmfFolEeg=
Subject key identifier: B5:2E:98:54:49:8E:77:75:C8:88:F3:90:E1:CF:93:39:D1:54:72:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5543126E736911EF81819C50762E951A.roa
Signing time: Sun 15 Sep 2024 13:49:31 +0000
ROA not before: Sun 15 Sep 2024 13:49:21 +0000
ROA not after: Sat 30 Nov 2024 13:49:21 +0000
asID: 142403
IP address blocks: 154.92.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61238 (0xef36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:49:21 2024 GMT
Not After : Nov 30 13:49:21 2024 GMT
Subject: CN=66e6e5eb-2d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d4:02:81:07:72:4d:e8:fe:97:31:e9:de:f5:
54:c3:da:27:b2:2b:e3:25:2b:71:94:b2:22:1b:d7:
7c:75:af:3f:e2:50:ab:c1:05:de:20:04:c7:69:f7:
b3:30:e3:50:08:dd:8c:d5:a0:4b:19:73:16:fd:0f:
bc:06:dd:ba:cb:ec:dd:b4:84:00:b4:a5:8e:6e:7c:
72:c1:21:6c:2c:0b:81:2d:6d:48:56:3c:13:80:bb:
03:a4:a6:f8:ee:90:58:82:48:af:a3:6f:ad:fa:5f:
0d:66:89:bc:44:89:fd:10:bd:37:8d:7a:05:38:d1:
1a:7d:14:e8:a3:dd:19:e2:4a:27:69:2a:d3:5f:30:
43:6c:6e:61:5c:26:2a:f0:25:e1:61:03:44:47:e3:
d2:79:a0:9e:58:36:3c:3c:c3:f9:81:e4:8d:d0:0c:
6d:50:2b:6b:cd:07:30:64:66:ba:9e:c5:94:7b:56:
d8:ec:5d:96:ae:9b:51:51:7f:ff:c2:d3:32:60:2b:
b2:53:c8:9e:30:ef:f6:a5:81:50:95:d2:ba:1b:ea:
bd:21:83:5f:3c:0a:b1:1f:5a:dd:99:0b:8d:77:47:
d5:3c:74:04:e3:43:95:9f:17:23:f0:62:7e:ff:45:
fc:d3:56:f0:90:6a:c5:d3:68:ed:2e:74:1f:8b:c6:
a4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2E:98:54:49:8E:77:75:C8:88:F3:90:E1:CF:93:39:D1:54:72:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5543126E736911EF81819C50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.14.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:14:1b:66:d8:49:7d:6b:6e:eb:26:a9:55:0f:d8:af:97:1b:
c7:b4:7f:e3:0c:fd:ec:c1:34:fa:4e:cc:fe:97:c3:cc:42:62:
9c:d6:19:24:bb:d6:c2:25:50:c0:7d:80:c9:d2:16:e4:2c:c2:
9a:fe:26:d6:33:46:c7:e3:f2:95:5a:11:8b:ba:8a:45:c6:20:
43:91:eb:ab:ad:28:68:a6:da:e9:0a:a2:80:87:59:32:32:da:
f8:a3:29:68:1f:c2:4b:bd:fd:18:e7:05:45:71:ea:89:6d:e3:
ea:9a:aa:5b:58:77:31:57:f4:d9:09:f9:6d:7a:c2:60:9d:e5:
a9:b7:84:db:23:d9:b0:6e:17:ba:fd:7c:35:b1:93:ea:ba:eb:
99:96:1d:28:1d:9a:84:1a:bf:8a:14:5b:f4:d5:10:b8:91:a2:
44:76:c3:50:bb:29:37:2e:14:48:89:5d:63:a5:23:a1:ae:43:
e3:27:38:f1:6a:bd:7a:af:cc:4a:6e:96:15:b7:88:de:c9:8f:
0d:2e:47:64:12:92:6c:23:5c:34:9f:cb:b9:8f:61:e6:d9:28:
a4:3b:37:3c:c2:f8:2e:7e:8e:89:3d:6f:3e:76:1b:c7:94:6e:
fa:c5:55:28:6e:72:e1:3a:c5:f9:27:0f:d9:6b:33:90:0b:8c:
37:08:52:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:07 2024 by rpki-client on console-fra.rpki-client.org