Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B44FB66992D11EFA33C0E77762E951A.roa
File: 5B44FB66992D11EFA33C0E77762E951A.roa (raw, json)
Hash identifier: MToAi+gUDlEOFyWd9Cm3w5qlCx1QZHBuO4dSAs+Yy+A=
Subject key identifier: BD:DA:A4:5B:82:27:30:00:53:91:DD:AE:07:48:53:91:F7:5B:4C:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0105C4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B44FB66992D11EFA33C0E77762E951A.roa
Signing time: Sat 02 Nov 2024 15:15:56 +0000
ROA not before: Sat 02 Nov 2024 15:15:52 +0000
ROA not after: Wed 05 Nov 2025 15:15:52 +0000
asID: 140224
IP address blocks: 154.200.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67012 (0x105c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 2 15:15:52 2024 GMT
Not After : Nov 5 15:15:52 2025 GMT
Subject: CN=6726422b-5e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:e8:1d:4c:c4:72:67:5c:b1:c1:8a:a7:d5:
96:78:5d:07:21:83:bf:fc:b3:2a:69:2f:9c:20:bb:
1b:57:9d:3f:fb:e7:e1:db:d3:ee:4b:22:f9:24:4a:
6f:3f:7f:e1:e4:d3:66:ab:09:06:f3:a3:a4:ca:77:
9e:1a:de:99:ea:43:fb:0a:8e:08:c4:3a:a7:1b:7c:
e3:41:a5:89:d3:a4:b9:75:5f:27:62:1a:4c:d8:2b:
4f:71:7b:f9:78:1c:3c:10:d2:3b:a5:86:17:c2:35:
5a:23:3b:51:81:9a:bf:32:8c:43:23:ff:bf:bf:67:
b5:e4:ff:33:e1:f5:20:dd:1a:25:1f:cf:7e:83:44:
79:13:74:ca:e3:24:1f:48:a5:6b:9f:68:9b:6a:c6:
88:cd:2f:f6:8c:9b:d4:fe:ef:39:c4:20:52:d3:0d:
4e:2c:74:cd:6d:5f:a3:65:aa:f5:d2:a1:25:8e:7e:
ec:e7:53:7a:66:62:ef:d9:27:97:bc:8b:ae:d5:d0:
57:ac:73:cc:d4:b8:d8:92:72:1a:d0:ab:3c:63:ac:
b8:39:36:e0:61:2b:7e:fb:14:d3:fd:7f:ad:cf:47:
72:b1:f8:89:cd:1d:e5:77:50:a7:f9:0a:3b:46:db:
dd:78:2e:bb:d1:8b:f8:42:5f:87:3f:c0:8c:0a:a7:
59:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:DA:A4:5B:82:27:30:00:53:91:DD:AE:07:48:53:91:F7:5B:4C:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B44FB66992D11EFA33C0E77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.97.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:51:3b:ae:fe:56:41:1a:a6:2a:92:be:69:f7:05:fc:fb:2d:
f5:95:10:04:21:e1:0c:a5:b3:64:03:e7:c5:1c:1d:6a:f3:2d:
d7:e8:32:72:17:b1:b8:d9:72:2d:8d:5e:12:4c:6d:e3:e8:37:
73:de:e0:88:56:59:e4:db:2c:28:5f:15:74:8e:92:25:21:05:
b4:7f:57:38:b4:ca:7c:e7:50:18:06:db:ca:fc:4e:5c:2c:aa:
4c:07:0f:73:63:2c:43:a0:f8:bf:bb:25:09:b9:a1:2e:3c:77:
f2:2f:6b:f2:b3:2c:7c:87:9e:19:d8:03:f2:f9:f6:2c:c8:b6:
a3:9a:d6:49:d8:ac:6d:32:cb:73:70:f9:0c:29:30:ce:61:5e:
40:86:1b:7f:5b:6a:d4:dd:1d:b9:f6:5a:9e:45:e1:a1:88:2a:
5d:1f:f7:d1:de:7b:c8:29:ca:44:97:3d:55:c7:b4:cd:99:1e:
ee:6e:71:18:26:52:d1:94:e8:aa:20:08:d8:fc:81:6a:8b:bf:
d3:fd:4a:2b:3d:a5:29:f8:2d:65:a1:1b:0a:5c:3b:c5:ca:4f:
55:79:8b:60:92:f7:45:07:0e:35:c5:8b:a8:b1:87:63:62:51:
dc:2c:d8:dd:51:a5:3e:d6:c5:c2:4a:92:5e:fa:22:02:19:1d:
9e:43:26:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:08 2024 by rpki-client on console-fra.rpki-client.org