Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55A6A9B88ACB11EF8BC8965A762E951A.roa
File: 55A6A9B88ACB11EF8BC8965A762E951A.roa (raw, json)
Hash identifier: 75XSfUbQrWBfaO/2nuUCO5YApbzdyCPmL3+cBIeoK7o=
Subject key identifier: FF:0E:B7:DB:B6:9E:EA:25:9E:9C:4E:C8:F7:E7:CC:BA:53:97:89:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE32
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55A6A9B88ACB11EF8BC8965A762E951A.roa
Signing time: Tue 15 Oct 2024 07:58:59 +0000
ROA not before: Tue 15 Oct 2024 07:58:56 +0000
ROA not after: Wed 27 Nov 2024 07:58:56 +0000
asID: 152179
IP address blocks: 154.91.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65074 (0xfe32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 15 07:58:56 2024 GMT
Not After : Nov 27 07:58:56 2024 GMT
Subject: CN=670e20c3-2873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2f:34:0c:af:85:10:98:51:f3:2e:c2:ab:e9:
a7:cc:53:57:41:94:13:5c:79:0b:c5:1b:e7:99:87:
a3:7b:24:63:72:23:80:49:f7:2c:19:65:93:44:43:
cf:75:05:7d:56:fb:5b:2e:be:b3:5c:70:4b:aa:24:
56:f1:75:07:fb:f3:66:2b:b3:45:c8:04:df:58:16:
97:86:f6:b6:82:fc:eb:94:40:b1:c2:c6:39:e2:7f:
0d:36:23:55:79:17:db:51:85:e7:2b:bb:26:bd:43:
bd:38:5f:78:90:28:61:9c:aa:bf:39:b2:32:a6:7e:
43:d3:20:44:52:1a:28:9d:76:36:ba:75:73:62:f8:
67:5f:49:c6:8d:99:33:13:e4:6c:31:53:10:e6:ab:
9e:2f:2b:1d:65:ff:c2:40:59:9e:67:bc:8f:4a:e0:
9e:dd:3e:76:99:4b:89:6c:55:aa:9e:e3:75:b4:88:
02:30:01:fc:95:c7:45:f6:4a:37:b9:58:b5:4f:66:
09:c4:1b:9b:19:15:3c:0b:bc:54:45:5d:56:61:76:
70:58:a0:8c:41:11:19:af:a5:a3:ce:1f:bd:66:1e:
29:1d:09:6c:f7:29:7f:27:b8:76:7a:d8:f1:37:98:
83:93:e8:b0:1c:5b:ac:b6:ea:75:e6:34:77:3b:a0:
e8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:0E:B7:DB:B6:9E:EA:25:9E:9C:4E:C8:F7:E7:CC:BA:53:97:89:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55A6A9B88ACB11EF8BC8965A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:f4:62:64:f3:b6:50:9a:b9:d2:c3:dd:96:0a:18:84:a0:96:
9b:bd:83:12:aa:e6:7b:73:88:23:39:59:77:4a:5e:66:db:11:
43:cd:5b:1c:e5:2e:39:0d:3a:11:33:14:27:7f:e9:88:58:ce:
44:46:ed:2c:b2:54:fe:9c:b8:04:59:e7:5c:f2:d0:5b:e6:42:
21:80:42:5a:d7:de:03:b4:eb:bc:13:65:40:74:fc:a2:24:c0:
f4:a2:0d:7c:97:7c:c5:b5:16:2c:00:6a:a5:8a:67:6b:e9:51:
7c:bb:a9:40:ff:5e:fb:ae:b6:6b:4e:12:8e:3d:69:c5:5f:ba:
e3:13:b3:e5:1d:63:e3:ec:a1:1b:85:0a:d0:e2:28:ac:3a:f1:
d0:bd:7a:69:1e:d1:0e:98:45:a1:2b:94:31:f7:5f:f4:1d:09:
b9:99:d9:91:b1:6a:ae:69:db:d5:34:ff:3a:e1:1d:70:fe:16:
f6:e3:ee:f3:45:f1:21:51:8c:c9:52:b9:b7:42:73:b4:1c:ce:
9e:3b:dd:d8:66:a2:b9:a1:ec:96:9c:ab:05:d1:4c:5b:4f:36:
6b:66:71:84:ed:fe:59:4a:6c:40:75:01:b2:65:a7:b2:ad:dd:
8e:fb:e8:fa:bf:84:a3:89:90:7c:f8:01:19:3c:fc:d9:71:f2:
29:8e:10:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:31 2024 by rpki-client on console-fra.rpki-client.org