Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72FCC4046A5D11EF84B8C4B8762E951A.roa
File: 72FCC4046A5D11EF84B8C4B8762E951A.roa (raw, json)
Hash identifier: q3esIw8+mNwrqYEUQFwqh7Fyh/oE3PtOTlZQNoqTY54=
Subject key identifier: 40:62:26:B4:27:27:BB:A4:5B:CA:BF:B9:D7:8D:7C:94:F4:48:12:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E9ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72FCC4046A5D11EF84B8C4B8762E951A.roa
Signing time: Wed 04 Sep 2024 01:31:47 +0000
ROA not before: Wed 04 Sep 2024 01:31:39 +0000
ROA not after: Mon 30 Dec 2024 01:31:39 +0000
asID: 17561
IP address blocks: 154.223.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59885 (0xe9ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 01:31:39 2024 GMT
Not After : Dec 30 01:31:39 2024 GMT
Subject: CN=66d7b883-c4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f5:68:c8:28:ea:13:cc:e7:a0:4d:d8:6d:a3:
d8:9e:ef:1f:46:22:7b:d2:d5:bd:fb:72:b5:62:33:
3d:88:55:5c:aa:80:2f:d3:9b:66:ba:0c:dd:4c:0d:
39:9d:57:be:fd:13:e5:5f:17:5c:b3:55:a0:e9:9a:
79:d8:ed:3d:67:53:03:e4:5b:40:28:17:a1:0c:c4:
b6:ac:2d:80:7f:d4:05:06:2d:5e:db:aa:f9:49:3d:
ec:21:65:fd:74:8b:1c:e9:a3:f7:6c:8c:78:25:87:
4a:9f:10:f2:99:98:8a:04:db:a9:70:75:0c:4b:8b:
fd:55:c2:05:2b:51:72:81:c2:c9:8b:58:fb:c4:ed:
b3:d1:ae:0e:95:7a:74:aa:3b:74:f3:74:cd:7f:6b:
4c:31:36:ec:4b:78:5c:97:a3:b8:a2:5a:b6:65:87:
5f:c2:eb:8b:71:fb:6f:8e:c8:61:f6:0e:4f:66:90:
1f:a3:b6:0d:b4:7d:37:e4:22:1d:c4:5f:87:a6:a3:
b6:40:c1:05:5b:8f:c7:e2:cb:1a:a9:e0:8f:df:3b:
f6:00:55:55:71:e8:fe:1e:ea:30:8d:79:5c:e9:92:
67:82:fb:c1:c1:18:57:b2:fe:8d:94:27:f1:b1:25:
fe:0c:a7:1a:7d:e1:c7:e5:6d:87:2e:f1:8f:b5:2f:
b4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:62:26:B4:27:27:BB:A4:5B:CA:BF:B9:D7:8D:7C:94:F4:48:12:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72FCC4046A5D11EF84B8C4B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.0.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:01:87:93:56:b9:5a:ee:09:97:32:78:26:c8:42:9b:32:b9:
31:71:26:41:e8:a2:a4:b4:a8:80:1c:5e:f3:86:98:69:f7:05:
62:1c:56:aa:b4:89:c6:75:33:b3:72:b6:c9:b3:16:d7:f9:dd:
df:6f:a1:7b:62:a2:ec:d6:12:26:a1:ad:a5:67:bf:c2:68:65:
14:9c:ba:c9:05:69:3b:3c:f4:87:19:27:28:e4:60:f1:ef:a9:
ef:d4:77:d3:ca:46:c0:0d:d0:c3:9e:0e:89:51:79:24:4c:4b:
05:28:31:b1:61:cc:1e:fc:79:d3:5d:62:aa:6f:dc:b9:40:a2:
3c:9b:b1:fb:7a:27:dc:83:3e:85:4e:1e:60:d6:7a:0b:8b:b2:
21:8c:11:cf:d0:b6:e5:39:5a:b1:10:aa:8b:64:6f:08:80:5c:
0d:e4:c6:a9:c9:28:0c:f7:c4:db:e8:4a:d0:32:b9:a6:ef:0b:
b4:85:97:51:d4:d4:cc:13:96:70:bc:7f:eb:3c:06:2a:5f:6a:
91:54:5d:ac:96:22:65:54:47:ca:55:80:a1:26:3f:fc:39:c9:
ed:90:92:02:1e:d6:e0:32:5f:d1:59:57:8d:5b:76:cc:fd:b7:
3a:21:93:a5:9a:2e:27:58:06:3f:06:b2:df:e5:42:b6:da:d5:
43:97:f4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org