Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/644DC052A8E211EF93A1FE84762E951A.roa
File: 644DC052A8E211EF93A1FE84762E951A.roa (raw, json)
Hash identifier: vePP0HX0RD46FrwJoJaaSZhosEtrNQDQwCSeF3WJlvc=
Subject key identifier: 2B:44:D3:FB:DB:74:40:6B:E4:FC:8C:C9:DA:B8:CD:21:86:41:CA:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/644DC052A8E211EF93A1FE84762E951A.roa
Signing time: Fri 22 Nov 2024 14:59:37 +0000
ROA not before: Fri 22 Nov 2024 14:59:33 +0000
ROA not after: Tue 03 Dec 2024 14:59:33 +0000
asID: 62240
IP address blocks: 154.194.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69795 (0x110a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:59:33 2024 GMT
Not After : Dec 3 14:59:33 2024 GMT
Subject: CN=67409c59-f6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:15:22:98:08:fc:ef:d5:02:9c:e9:37:93:3b:
ab:8d:4e:65:f9:3f:a8:ec:fd:3d:05:e0:b9:1e:36:
9b:73:5e:93:aa:fa:62:3d:75:18:44:d9:07:ed:c7:
47:2a:e8:8b:81:ba:45:ba:f1:76:43:42:30:d3:96:
ef:a8:a3:a9:c3:88:4f:d2:24:bc:73:5a:36:af:06:
fb:02:30:c8:87:d0:40:a2:3e:f7:fd:8b:41:f3:e0:
4e:b7:81:19:36:e1:ff:1d:0b:54:55:20:be:c2:cb:
9f:51:94:c5:49:1a:14:4d:c1:87:14:56:87:7a:ab:
17:79:c8:bd:a9:8e:c2:ca:dd:f8:51:43:81:b2:36:
21:e4:ec:15:58:cd:c2:52:ab:a0:a4:42:4f:0b:c3:
02:9e:36:be:2a:81:a0:25:6c:0f:a2:3c:40:08:a8:
e4:40:f0:12:88:6f:47:2b:a1:f6:e2:ba:18:2c:ce:
7b:27:cb:48:89:0e:5c:53:b7:71:e1:c8:33:60:90:
b2:43:bc:2d:c1:41:18:4a:6c:0e:85:f6:d0:b4:3f:
66:8b:8d:7e:1d:ba:09:47:6c:58:6b:42:03:bd:91:
1f:4d:48:fe:d3:12:91:c5:fe:e0:c7:ac:8e:c5:cb:
b8:ee:cd:3f:e7:44:29:62:4e:31:92:01:5f:76:7e:
91:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:44:D3:FB:DB:74:40:6B:E4:FC:8C:C9:DA:B8:CD:21:86:41:CA:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/644DC052A8E211EF93A1FE84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.83.0/24
Signature Algorithm: sha256WithRSAEncryption
07:70:cc:7f:c9:37:18:13:ea:01:4c:f0:4d:ca:ee:d4:b9:95:
d2:28:1a:71:06:dd:ab:81:18:7b:40:c2:a2:ff:8e:06:37:1d:
d7:49:3a:09:63:23:b2:a8:f4:50:9a:df:04:63:7f:36:50:70:
89:8c:fc:b8:5b:52:bb:28:08:6b:4f:f8:aa:7a:ed:2b:5c:40:
db:ae:92:7c:db:78:9e:65:1c:f9:eb:0d:83:c2:5b:c3:59:34:
06:17:a6:35:fd:36:c5:24:5f:87:e4:a6:4e:cc:d4:59:8c:8a:
bd:9f:0f:cf:52:b2:d5:44:f5:54:11:36:e3:e3:77:4e:e4:4c:
f1:fa:db:11:74:ca:27:0d:30:d8:6f:b6:25:62:42:f2:09:cb:
85:4c:3a:3a:0a:95:0f:c5:b6:33:c5:ee:58:74:d7:53:3e:af:
d5:61:b9:ec:60:a5:05:23:6a:41:1c:bb:7b:2a:8c:53:cc:34:
b1:ea:99:ff:f8:bd:07:76:71:fd:8b:13:21:89:93:74:7a:0c:
5f:67:92:d5:f7:ea:03:1d:9f:a6:fe:74:59:d0:7b:16:b4:f0:
01:b9:83:a9:60:c2:8c:94:32:f6:92:b6:82:c8:59:bd:5f:68:
be:1b:e2:6c:92:dd:c5:48:0f:8a:fe:35:45:27:85:34:c6:2f:
a4:3e:db:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:33 2024 by rpki-client on console-fra.rpki-client.org