Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55D5F0B6A8ED11EF8F23814B762E951A.roa
File: 55D5F0B6A8ED11EF8F23814B762E951A.roa (raw, json)
Hash identifier: EKwfDM1aj9BTD0xLAiiny9G67Uc+NS9dp3Ocb2rhhu0=
Subject key identifier: A0:95:99:CD:6B:4C:46:5C:80:C3:7C:C9:B6:9B:95:CF:F0:DB:D0:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011127
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55D5F0B6A8ED11EF8F23814B762E951A.roa
Signing time: Fri 22 Nov 2024 16:17:57 +0000
ROA not before: Fri 22 Nov 2024 16:17:54 +0000
ROA not after: Tue 03 Dec 2024 16:17:54 +0000
asID: 62240
IP address blocks: 154.195.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69927 (0x11127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:17:54 2024 GMT
Not After : Dec 3 16:17:54 2024 GMT
Subject: CN=6740aeb5-6331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:df:65:ae:c8:46:b6:0e:07:6f:e1:c0:29:5d:
32:fc:78:c3:fe:d0:b3:40:e7:44:8c:6e:8c:bf:8a:
42:c4:1d:47:e3:a3:bd:27:ae:5f:63:49:35:07:9d:
1d:d0:a2:ba:be:e4:9e:ec:bb:16:41:8a:8f:b1:01:
ad:02:3e:c6:01:b5:4e:17:65:ea:50:86:7a:78:71:
e0:c6:c4:97:55:41:0b:e1:19:a1:b6:75:5b:5d:e1:
84:61:4b:38:6c:23:53:bc:fb:e1:14:bf:1f:af:57:
dc:96:3a:ba:e3:fe:f3:5e:08:e2:8e:50:25:20:e3:
51:fa:44:a8:c6:a7:61:8f:8a:4a:b1:dc:e8:55:39:
0a:ba:1e:7e:b8:02:b5:41:87:af:fb:4c:55:47:01:
3b:f5:c5:ad:08:65:17:63:73:eb:81:e5:0a:8f:57:
b9:f0:98:bb:bb:16:13:0d:73:c9:16:ba:43:96:e8:
1c:c1:73:fb:c0:91:ab:54:ee:94:c8:02:f2:f0:89:
18:25:ae:6b:5e:ec:11:d8:c1:4b:06:99:7a:ad:33:
21:19:dc:e8:6b:cd:f4:2f:91:d5:8e:8f:ad:fc:40:
21:b8:97:04:be:e5:49:43:df:b5:06:f7:0a:fd:ec:
a8:40:12:e3:b9:39:8b:fd:06:64:a0:bf:34:6f:87:
3f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:95:99:CD:6B:4C:46:5C:80:C3:7C:C9:B6:9B:95:CF:F0:DB:D0:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55D5F0B6A8ED11EF8F23814B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.143.0/24
Signature Algorithm: sha256WithRSAEncryption
78:e2:30:51:78:cb:1c:44:81:e2:6c:8e:7e:40:36:d6:73:1a:
84:c5:c2:1e:95:8e:89:44:a7:87:2f:2b:4d:d7:d2:3b:7a:4c:
ee:5e:17:9e:d6:fc:9c:cd:28:45:c9:ef:d4:5c:83:4d:43:6e:
c2:d4:92:31:eb:19:c9:dd:2d:34:eb:94:05:5f:f8:1b:da:c5:
fc:cb:46:16:a5:d4:d2:22:2e:61:3d:d2:b6:13:4a:e8:b4:32:
8c:20:b6:a8:fb:c3:67:58:21:eb:30:f7:9c:79:45:be:c1:7c:
65:3c:ae:ad:46:e1:f7:f9:bc:ef:b5:2e:15:06:7d:d0:f3:29:
df:b9:e0:90:af:61:a6:b7:31:66:f7:71:bb:88:5c:84:99:24:
92:1c:38:f0:3c:df:56:c8:43:eb:8d:eb:85:bb:a5:8e:cf:a6:
02:d1:61:a6:18:a4:85:f2:46:ad:bb:6e:c9:1c:42:94:31:97:
dc:4f:38:2d:9d:8c:ce:1e:83:6d:82:df:19:06:e7:7b:2c:02:
33:26:ec:b3:8c:2b:22:92:3c:97:80:9b:b4:5f:d1:1e:32:25:
fa:b6:33:4d:ec:90:77:64:a9:c6:a2:02:c1:cc:e4:c6:2c:78:
15:b9:db:e6:5c:35:cd:ad:4c:94:0d:23:2a:65:a2:d9:2b:9c:
fd:ce:5a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:31 2024 by rpki-client on console-fra.rpki-client.org