Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/659FD178A19611EFA60BCA9F762E951A.roa
File: 659FD178A19611EFA60BCA9F762E951A.roa (raw, json)
Hash identifier: lpu5JB6kAHm8mXoZYK1AtqrOGrmg08QvR9gxZov2CVs=
Subject key identifier: ED:9A:58:05:65:CA:10:A5:D9:F2:83:DB:7A:73:94:E4:B7:88:4D:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CB1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/659FD178A19611EFA60BCA9F762E951A.roa
Signing time: Wed 13 Nov 2024 08:07:59 +0000
ROA not before: Wed 13 Nov 2024 08:07:56 +0000
ROA not after: Sat 28 Dec 2024 08:07:56 +0000
asID: 149440
IP address blocks: 154.91.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68785 (0x10cb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 08:07:56 2024 GMT
Not After : Dec 28 08:07:56 2024 GMT
Subject: CN=67345e5f-e8fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:97:2c:70:c4:02:19:da:0c:f5:9b:01:f7:6c:
19:39:87:35:2a:a8:bc:70:cc:82:9c:42:cd:08:b1:
54:da:54:84:96:f9:19:fe:97:ce:37:b6:85:05:75:
c9:06:b0:4e:b2:3d:9d:7f:fc:62:e3:0f:dc:4f:b2:
f2:48:06:2e:be:46:33:5f:1b:2d:07:6a:cc:f6:f5:
bd:20:b2:5e:3a:c8:d2:71:6e:0f:1a:16:2d:05:07:
3a:b8:73:d3:0b:b3:41:da:cf:27:8d:b1:33:ea:be:
e5:61:ef:f5:e4:04:9e:87:26:02:4f:53:e2:07:24:
61:51:02:bf:db:26:12:34:6a:66:e4:c4:2c:af:cf:
a7:46:2b:a6:94:42:52:e2:3b:16:f9:27:d8:f8:b1:
4e:d8:f0:05:e4:53:32:c3:fb:3b:ad:ed:80:f1:92:
5a:73:e1:e2:4d:44:65:2e:28:b3:b4:63:06:8e:df:
20:6c:31:40:d4:36:a4:b8:f6:61:2b:24:46:9d:71:
ce:d5:7b:3a:74:e4:52:c7:1b:08:13:a8:e2:da:49:
76:69:aa:76:a5:aa:16:c9:14:d4:5d:85:c2:d5:71:
99:43:5d:95:eb:90:39:52:9b:c2:7f:c2:dd:6d:23:
b1:a7:f9:c8:c7:c8:13:17:56:76:a8:a2:3c:13:8f:
82:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:9A:58:05:65:CA:10:A5:D9:F2:83:DB:7A:73:94:E4:B7:88:4D:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/659FD178A19611EFA60BCA9F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d3:9f:bc:bf:7f:66:3c:df:b8:11:cb:38:d7:95:8c:6b:42:
ca:3e:54:db:d8:ac:1e:b5:38:ed:49:76:9b:2c:2f:e7:43:5d:
0d:bb:27:89:31:73:65:67:eb:59:09:98:96:0f:e8:db:32:6e:
35:49:55:76:c7:d2:c2:eb:55:e9:1b:2f:46:a4:7d:7c:40:1b:
27:2c:69:b7:60:37:89:ba:d2:4e:42:58:79:d0:61:15:08:fc:
c2:b6:54:58:48:09:68:4a:03:84:13:95:1c:7f:2e:d6:e7:a1:
b8:48:c6:67:83:34:08:08:0f:47:a5:1c:bd:a8:1e:29:a9:81:
68:4d:73:58:0c:5b:6d:d6:7e:d9:b8:32:a3:0f:b2:f6:68:14:
27:98:b8:fa:9d:19:5e:c8:65:71:b6:d0:63:dc:cf:d7:02:db:
8e:17:ce:98:e3:fe:38:41:74:6e:5a:bc:dc:02:e7:75:6b:82:
fd:fb:18:2b:32:df:2b:15:15:84:87:f6:62:6d:fb:9d:eb:a2:
12:4d:8b:78:2e:9b:42:23:12:e1:96:8b:7a:d7:63:8a:14:74:
b3:45:cc:b5:31:06:48:6f:92:6b:b0:24:04:aa:ee:ea:85:c6:
2b:ad:b8:91:9a:10:a3:76:18:40:ba:5f:7f:28:57:e7:86:85:
9c:36:58:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:33 2024 by rpki-client on console-fra.rpki-client.org