Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/779FC1EE7CA711EF8EAD90B2762E951A.roa
File: 779FC1EE7CA711EF8EAD90B2762E951A.roa (raw, json)
Hash identifier: 8wptFGIuDYnqR1p7VoYMu/6LlvtysEVGbizrcZv3DCA=
Subject key identifier: E2:EB:C5:45:8F:D0:88:FE:05:21:5A:9D:F5:0A:32:9A:76:E8:7D:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F3D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/779FC1EE7CA711EF8EAD90B2762E951A.roa
Signing time: Fri 27 Sep 2024 08:06:58 +0000
ROA not before: Fri 27 Sep 2024 08:06:54 +0000
ROA not after: Tue 30 Sep 2025 08:06:54 +0000
asID: 201411
IP address blocks: 154.205.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62420 (0xf3d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 27 08:06:54 2024 GMT
Not After : Sep 30 08:06:54 2025 GMT
Subject: CN=66f667a2-ba70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cd:96:23:b4:df:f8:b4:c1:0d:3a:63:68:c3:
2b:37:f6:2e:0f:d3:4e:b5:59:1b:e5:da:66:12:d9:
1b:d4:79:07:3d:cc:40:d5:26:31:fe:00:d3:39:25:
7c:5c:a0:34:74:bd:12:e8:7e:83:6e:1a:4e:57:02:
1e:fc:40:df:2a:c6:d9:ae:6c:a9:d9:c8:2e:7a:0b:
83:d3:77:1b:be:62:8f:37:e7:7b:81:cb:ec:d2:e0:
b3:42:e9:76:d6:bf:ce:5b:2f:95:c7:06:c4:f5:31:
19:74:3a:6f:4f:90:bf:d3:6b:be:a5:a6:34:80:a9:
2c:68:0d:e0:73:9e:90:5d:98:8b:5a:e6:67:6c:ca:
3b:36:1d:8e:9b:c7:fd:92:da:6b:e1:cf:3d:01:1b:
4f:b2:8c:e0:90:9e:59:94:4a:46:39:6b:c0:f6:d2:
3b:c2:70:e5:b0:ba:72:10:aa:dd:1f:e2:03:5a:cb:
1f:b8:8d:77:45:e0:1d:ea:34:65:e9:50:3b:db:77:
b8:0c:86:b2:00:84:b6:91:23:2d:2c:7c:e7:44:f6:
ef:7f:0d:7e:ac:fe:21:04:90:30:f9:e0:9e:7d:c6:
ae:49:c8:09:d0:28:cf:82:3c:0d:33:c2:16:6e:9d:
f5:43:a8:92:b2:1a:ab:7a:5a:5e:b2:d3:fc:df:42:
41:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EB:C5:45:8F:D0:88:FE:05:21:5A:9D:F5:0A:32:9A:76:E8:7D:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/779FC1EE7CA711EF8EAD90B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.191.0/24
Signature Algorithm: sha256WithRSAEncryption
47:8c:3f:55:b2:91:c5:d3:33:ff:69:82:0e:8a:ad:c7:f2:29:
2a:4f:9d:6e:c6:59:e1:5e:1f:a9:ed:f4:83:f6:9d:6c:7b:c9:
7f:98:f5:30:cb:52:d2:c4:30:b9:33:de:72:4d:ee:26:8a:5b:
0b:a1:90:f3:34:d3:99:e4:3d:ed:13:79:70:e9:79:90:32:90:
bd:2e:eb:8f:3c:a7:72:4e:52:9b:28:99:ef:b6:4b:00:d7:13:
07:87:2e:45:bb:39:e3:6f:6e:f8:5e:97:22:6d:e2:07:7d:57:
32:7d:f4:f5:27:46:80:8f:e8:45:ac:3e:06:12:df:16:77:ce:
96:6f:1e:bd:b3:15:5a:03:f6:32:7b:d0:52:74:97:f5:93:df:
25:5c:f7:ff:ea:a9:a6:84:c1:1a:38:8c:ba:39:e6:4e:11:ca:
b6:97:99:13:e5:dc:0c:85:08:11:13:b0:5b:f0:84:a9:ed:1a:
f5:f2:59:eb:bc:71:78:4f:cf:51:a1:73:65:41:79:3e:ae:dd:
85:51:fb:3f:ef:0e:13:b4:e5:72:30:cc:7b:b6:19:a0:55:7d:
a4:38:bb:1e:f4:bc:52:27:bf:14:9c:b2:79:12:86:a0:95:21:
89:50:b8:72:03:63:18:83:6f:98:ff:9a:c0:2c:ec:15:77:73:
d5:26:e7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:11 2024 by rpki-client on console-fra.rpki-client.org