Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/598A142C9A9111EF83D5D940762E951A.roa
File: 598A142C9A9111EF83D5D940762E951A.roa (raw, json)
Hash identifier: xko1c4oYVV70jhNrJI+c9/8KpidV+9XoOMRIhoywQa8=
Subject key identifier: 7D:BF:F3:01:28:7B:C8:C3:23:FF:6E:CF:37:E5:AD:44:63:D2:81:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01066E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/598A142C9A9111EF83D5D940762E951A.roa
Signing time: Mon 04 Nov 2024 09:44:14 +0000
ROA not before: Mon 04 Nov 2024 09:44:10 +0000
ROA not after: Thu 23 Oct 2025 09:44:10 +0000
asID: 132546
IP address blocks: 154.88.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67182 (0x1066e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 09:44:10 2024 GMT
Not After : Oct 23 09:44:10 2025 GMT
Subject: CN=6728976d-8756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:33:e6:8e:5f:b0:5f:fb:56:49:c8:3c:21:8f:
fc:ad:86:ec:dd:97:5a:78:93:a4:ab:76:5b:93:3e:
d8:29:6d:9e:6d:ce:dd:a0:38:22:82:03:af:2b:3e:
36:88:d8:7a:f0:ec:40:2c:3e:9a:25:99:ef:0b:f5:
50:a5:9f:70:56:5f:9e:be:d9:82:68:96:ed:e3:9a:
86:56:75:5f:5d:77:c1:79:0a:86:a8:fc:00:10:05:
60:77:0f:47:9f:01:9f:f9:f2:35:53:64:69:1c:05:
21:f1:dc:c7:ec:95:de:a0:30:3b:d4:95:ff:10:40:
02:38:99:6f:e9:c2:d8:7c:67:80:6f:a7:b2:de:58:
95:3b:bc:3e:ed:cf:4b:9a:e7:ad:d5:df:95:16:9d:
e8:53:ba:76:53:8b:f6:f5:f9:74:a6:db:ec:8f:26:
a7:97:bd:bb:c3:01:19:60:cd:ea:e7:93:a9:2f:64:
3b:0a:7b:18:65:5c:1f:9c:9a:cc:60:82:ad:2f:c6:
35:aa:9c:64:c9:63:74:4b:32:89:03:3d:64:92:1f:
af:74:b8:b2:ee:93:0b:a9:da:b4:34:7a:1b:5b:aa:
75:69:fa:2d:aa:6a:c5:46:3f:cd:63:f4:08:98:55:
69:ee:de:b2:b3:1f:cb:c8:1a:64:72:bb:dc:8c:18:
60:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BF:F3:01:28:7B:C8:C3:23:FF:6E:CF:37:E5:AD:44:63:D2:81:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/598A142C9A9111EF83D5D940762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.9.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:6a:8b:ec:47:a8:51:d9:e9:d4:32:36:c8:a0:f3:13:0a:06:
b4:2c:78:43:8a:7d:e7:d4:4f:bb:12:be:1d:21:eb:98:93:ea:
83:d5:44:04:e0:67:14:ff:f7:07:9a:f0:5a:9d:c7:46:4a:f9:
65:2a:39:83:83:c2:d0:e2:8b:c4:2d:05:ad:ed:18:6b:58:4b:
9b:14:9f:09:ab:aa:fd:4e:69:c7:48:60:4e:7f:7f:f6:a5:1e:
9c:3d:6f:25:ce:d2:49:82:3c:fb:ca:31:8c:c6:ee:fc:f7:95:
21:27:65:01:0d:7c:21:bb:83:d6:b0:0d:d6:bc:ce:eb:27:74:
f4:2f:03:f1:b1:55:d4:26:fa:92:d6:91:73:0d:c7:4b:7a:f9:
f1:1b:c3:b3:a9:c2:4a:88:fe:e2:53:61:74:1b:ea:40:84:63:
79:d1:c7:e5:62:e8:ca:89:e3:8c:4f:f6:a8:2b:23:04:79:4f:
73:80:71:a7:89:7c:3b:12:75:a8:7b:93:0b:e3:73:79:c7:42:
ba:e8:13:f5:be:8b:cb:2e:be:ae:f9:ae:cc:2c:4e:c2:70:d2:
15:08:00:25:b7:b0:91:d8:05:50:21:16:91:18:00:37:68:dc:
d4:5e:e1:11:f6:10:c8:31:8f:e7:ed:86:6b:f9:42:93:ec:05:
88:75:8e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:25 2024 by rpki-client on console-fra.rpki-client.org