Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F211FC0726D11EF9F18EF6B762E951A.roa
File: 6F211FC0726D11EF9F18EF6B762E951A.roa (raw, json)
Hash identifier: aDod5NEPsFwKciftLx5rPM2F+M4juc9xZLeWaGzi4tk=
Subject key identifier: 04:2F:A2:6F:98:D7:D9:7C:DA:F5:2B:75:07:7F:AC:7F:9E:B5:C0:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE08
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F211FC0726D11EF9F18EF6B762E951A.roa
Signing time: Sat 14 Sep 2024 07:46:21 +0000
ROA not before: Sat 14 Sep 2024 07:46:17 +0000
ROA not after: Sat 30 Nov 2024 07:46:17 +0000
asID: 142403
IP address blocks: 154.221.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60936 (0xee08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 07:46:17 2024 GMT
Not After : Nov 30 07:46:17 2024 GMT
Subject: CN=66e53f4d-0b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:29:20:c9:5a:cc:1d:b8:4d:3b:cf:e2:76:72:
24:68:01:39:e9:d3:13:ed:16:c4:36:ec:16:da:67:
00:18:b4:2d:e8:46:f6:65:dd:94:2e:79:ba:52:cb:
5c:5d:09:54:43:13:12:16:1d:f0:36:d9:96:6f:06:
c3:e1:3d:11:5e:64:9d:59:e8:e1:08:f6:89:32:2f:
96:5e:d6:a6:e1:d5:a7:ca:10:c8:b7:74:54:17:b1:
6d:68:18:70:82:1a:bf:12:a9:61:7b:3d:00:b7:f7:
1a:5f:c4:2f:fc:9e:ee:e4:11:38:7a:39:ff:35:2d:
22:ff:b3:de:2f:01:39:9c:a9:6c:44:98:3a:43:b3:
8b:fd:9f:67:87:65:ca:7e:41:d8:42:4d:f1:c6:1c:
aa:66:88:1f:25:a9:a4:07:ff:8a:de:ae:8e:cb:11:
13:ef:17:96:1e:8f:17:04:97:cf:8d:d2:12:8c:e5:
41:a3:75:61:4f:b4:90:85:dc:3f:0b:a6:24:56:06:
ae:fd:41:71:bd:69:6f:01:52:d2:de:8a:c4:f1:5f:
57:86:10:66:28:67:6c:91:87:47:27:ca:da:ba:59:
f1:6c:17:17:32:a7:db:4b:7c:20:c0:06:5d:cc:b4:
9f:a5:10:7f:be:1e:92:93:fc:5b:ad:be:08:4b:80:
8d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2F:A2:6F:98:D7:D9:7C:DA:F5:2B:75:07:7F:AC:7F:9E:B5:C0:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F211FC0726D11EF9F18EF6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.16.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:3b:bc:f8:86:bc:f6:36:a8:d9:bb:10:1e:59:9b:0c:d3:1e:
4c:20:08:df:96:0c:ae:fc:62:f3:43:1b:0f:d1:56:14:5d:69:
6e:55:1e:24:35:ee:8d:2d:d4:5a:f9:cc:fb:46:96:3f:e8:79:
5b:4c:0f:a6:98:2d:42:18:b1:2a:8a:23:ab:42:17:aa:cc:e6:
f2:3e:7f:63:9e:67:e6:67:44:3d:78:36:b7:1a:03:3f:a3:23:
e2:70:9e:1d:ca:79:9f:a7:16:73:3e:9f:7f:01:95:ed:35:cb:
bb:91:5a:47:50:bd:50:fd:12:5b:a8:5b:d3:3e:a9:5e:cf:4e:
43:e9:5d:c7:2d:10:6c:95:7f:25:c0:ea:13:1a:29:6f:3f:a5:
67:d1:19:fb:aa:3f:a0:b7:10:27:6e:74:65:ab:17:54:33:99:
67:75:b1:46:35:0d:d0:4d:07:ac:35:5b:1c:ef:68:ed:88:11:
b9:57:af:82:48:84:8e:93:e6:13:17:8e:e4:bd:7c:19:5a:32:
fd:a1:ad:ec:36:34:b6:bc:48:a1:f0:42:c3:e5:cf:72:62:29:
e3:17:5f:c1:8b:0a:a6:d7:bd:96:54:e3:e1:5e:89:e1:ba:65:
61:f0:89:e7:7d:2b:9b:cc:cf:6a:6b:8c:96:b7:9e:5d:64:cc:
1a:ed:c2:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org