Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A2917567E3B11EF92C2619F762E951A.roa
File: 5A2917567E3B11EF92C2619F762E951A.roa (raw, json)
Hash identifier: zgSee0hLoHlk1Otz3pviQnlvldjPfrrIvrojcqjq2g4=
Subject key identifier: D7:25:A7:1D:F1:FF:71:43:02:B4:06:00:3B:CF:98:7F:88:EC:32:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F48A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A2917567E3B11EF92C2619F762E951A.roa
Signing time: Sun 29 Sep 2024 08:18:05 +0000
ROA not before: Sun 29 Sep 2024 08:18:02 +0000
ROA not after: Mon 30 Dec 2024 08:18:02 +0000
asID: 17561
IP address blocks: 154.198.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62602 (0xf48a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 08:18:02 2024 GMT
Not After : Dec 30 08:18:02 2024 GMT
Subject: CN=66f90d3d-3920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:89:06:6a:93:06:90:d7:07:80:fe:80:45:93:
2a:b6:7f:ca:dd:35:3c:48:80:69:3e:f7:68:40:f6:
02:ce:17:82:74:0d:81:08:5e:a9:b5:8a:7e:b0:10:
fe:70:4a:d0:b9:81:57:5c:1a:f4:23:3d:ef:47:5a:
80:0a:4c:c8:d2:84:d1:e7:2b:7f:e9:c5:70:e8:e4:
f1:d3:c7:17:b5:6c:5d:01:b0:e0:60:ed:3a:08:ae:
5a:b0:67:c5:76:d0:6c:11:5f:bd:c3:62:c0:84:43:
01:63:f4:a3:f7:d1:a3:74:63:d7:c3:c0:cd:05:08:
54:b1:b6:f6:a4:4c:d5:2e:49:13:2b:12:12:44:64:
ad:c3:6a:7f:ab:34:dc:2e:e6:0e:1c:1c:76:2c:e5:
88:08:11:92:2c:2f:3c:3b:70:11:72:4b:41:5a:c9:
74:3c:b2:93:ed:c8:6f:d6:dc:d6:cc:b6:a6:dc:c3:
76:ab:5a:dd:8e:4d:44:36:3d:02:5c:e9:55:5e:50:
25:95:82:55:a1:60:bb:f9:70:40:db:d9:f7:fd:56:
33:e6:22:2e:ff:4c:58:42:a5:de:d6:77:7f:16:77:
a9:90:ac:72:9d:c3:a9:51:18:df:89:33:c2:97:5b:
cd:b7:0a:3b:2a:70:81:ea:4d:7c:60:aa:24:c3:ba:
e5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:25:A7:1D:F1:FF:71:43:02:B4:06:00:3B:CF:98:7F:88:EC:32:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A2917567E3B11EF92C2619F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.9.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d0:f6:1f:91:ae:0f:af:10:1b:53:9f:28:07:03:f8:0d:ca:
d5:6f:6d:93:d4:bf:75:84:44:c3:b2:8f:bd:19:29:53:5c:12:
1e:14:96:fc:c2:b4:6c:e4:a4:0e:0e:13:db:23:f4:40:7a:a4:
97:5e:41:cf:dd:1f:25:0a:39:3e:90:2f:1b:ce:78:93:db:2a:
f4:2b:3e:fe:a8:f5:6e:02:00:10:f6:87:be:84:b9:7c:84:76:
f2:39:e4:ee:9f:fc:4e:d3:34:e9:f5:be:55:3f:a7:28:d6:97:
be:91:1d:87:f6:11:20:b3:67:1d:22:44:0b:17:46:54:a9:70:
61:26:6d:fc:04:dd:e1:7f:54:ea:73:8c:ed:0a:f9:5b:31:60:
58:8e:76:7f:f3:c7:97:01:36:fe:e9:cd:7b:82:f2:c6:94:44:
54:30:7e:c3:bc:48:12:1a:64:10:d8:c7:4b:1a:bf:86:3a:be:
11:12:ec:5c:bd:77:fc:6e:4a:69:49:fd:88:f4:f1:07:6f:4d:
d4:24:e5:dd:88:43:31:eb:a3:70:c6:9e:3c:53:de:96:e6:20:
b0:29:15:24:e0:5c:8d:fa:f6:89:84:11:4d:f8:00:09:05:5f:
1b:6a:bd:88:60:86:7b:31:b1:65:2a:36:38:66:b6:fa:dd:71:
80:3f:ef:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:08 2024 by rpki-client on console-fra.rpki-client.org