Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D4051A274D011EF8782BA59762E951A.roa
File: 6D4051A274D011EF8782BA59762E951A.roa (raw, json)
Hash identifier: tB9w1dRfr5xghU6nGEmC2jcUadlk8VeOApz719aod2o=
Subject key identifier: D3:19:BF:EF:2C:B7:0D:2A:8D:C0:FB:EA:94:56:B2:1D:E7:D1:9E:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F01C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D4051A274D011EF8782BA59762E951A.roa
Signing time: Tue 17 Sep 2024 08:40:01 +0000
ROA not before: Tue 17 Sep 2024 08:39:57 +0000
ROA not after: Sat 30 Nov 2024 08:39:57 +0000
asID: 142403
IP address blocks: 154.92.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61468 (0xf01c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:39:57 2024 GMT
Not After : Nov 30 08:39:57 2024 GMT
Subject: CN=66e94061-77d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:80:7c:96:05:91:92:89:66:a0:70:7d:3b:85:
fa:4d:4b:28:e3:b6:33:e0:18:57:b9:ca:b2:b8:68:
83:a8:b1:0b:49:59:19:02:df:0e:51:83:18:77:ce:
e3:a4:77:de:71:63:52:33:fb:71:6a:b7:3e:27:48:
d9:43:55:12:ba:45:7f:b4:a3:de:0a:9d:7e:e5:1a:
6a:84:90:36:b1:f5:1c:c9:50:9d:8e:1e:16:9f:b0:
89:7f:0d:cd:7c:17:5b:c5:1e:c9:98:be:fa:3b:9e:
d8:1b:92:61:fc:38:18:49:6b:2b:99:73:6a:c7:fe:
44:a5:03:47:d1:4a:0f:c5:8b:ee:db:32:ee:71:76:
41:e0:36:84:b5:91:a5:df:79:5e:a9:c5:99:17:96:
03:a8:4f:0a:8c:e6:8c:d0:93:71:e4:64:fd:0c:3d:
7e:3e:2c:5e:6f:a7:22:8c:1d:f6:ba:4d:fd:8a:0f:
34:ee:12:5b:6e:25:90:68:e5:ec:36:1a:31:a8:de:
6a:b4:68:18:1a:ef:35:4d:2b:43:ef:1a:2d:e0:a6:
6c:e9:c6:8f:b6:5c:e5:60:f0:64:13:79:04:1a:e4:
ac:bf:74:a4:b6:4a:0f:5e:9f:20:1d:12:24:c8:35:
70:8f:3b:c9:a0:78:e8:a1:e4:93:79:88:2a:29:39:
28:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:19:BF:EF:2C:B7:0D:2A:8D:C0:FB:EA:94:56:B2:1D:E7:D1:9E:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D4051A274D011EF8782BA59762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:7d:cd:8b:de:28:02:65:3c:05:dd:5d:70:cd:25:a0:fe:89:
7f:0e:62:1b:0d:88:70:ef:e1:65:42:81:31:6e:96:26:06:c9:
d6:f2:db:8d:8e:74:8c:ac:93:51:9d:7e:0d:87:4b:cf:a2:86:
65:97:6d:49:71:77:6f:6b:58:ce:48:15:a3:d5:0b:0c:e5:b7:
67:f9:96:8b:9e:41:02:c1:ad:f0:a7:a2:dc:de:2e:cd:38:41:
72:22:a1:2b:2f:ce:0a:1f:d6:0b:cc:de:0c:9d:0e:5f:9c:09:
0e:a0:58:8b:38:21:77:bd:4a:2f:41:b4:4a:44:43:cd:4e:4c:
52:cc:ae:e6:29:c2:81:b3:9d:d6:63:56:88:26:35:82:e9:f0:
14:87:a5:48:64:3e:59:b1:71:e7:6c:46:93:ff:8b:d1:fd:41:
4d:db:19:93:83:d6:af:68:b6:b1:19:26:f5:0b:1a:ec:d6:8c:
77:8d:04:e9:ea:2c:db:e5:dc:13:ce:d4:e8:35:a9:17:90:64:
45:ff:77:f9:d4:f7:8b:22:c9:5d:17:df:c7:99:41:55:77:16:
a8:2c:ab:11:f3:6e:39:87:e4:23:0b:60:00:56:d7:1c:4a:75:
5e:50:24:08:32:79:8b:c9:6d:ad:be:2a:1c:c6:84:d4:0c:e6:
51:81:31:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org