Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7909A0F47E3711EF8E62C586762E951A.roa
File: 7909A0F47E3711EF8E62C586762E951A.roa (raw, json)
Hash identifier: uCPCqThlgsdqworGwU9bog8b2RcgUNRfZ3DiRNW72ZI=
Subject key identifier: E3:71:99:08:80:AA:13:A4:A0:85:83:48:00:1A:78:22:9D:FD:7B:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F470
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7909A0F47E3711EF8E62C586762E951A.roa
Signing time: Sun 29 Sep 2024 07:50:19 +0000
ROA not before: Sun 29 Sep 2024 07:50:15 +0000
ROA not after: Mon 30 Dec 2024 07:50:15 +0000
asID: 17561
IP address blocks: 154.197.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62576 (0xf470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 07:50:15 2024 GMT
Not After : Dec 30 07:50:15 2024 GMT
Subject: CN=66f906bb-5c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b6:b9:57:09:50:0d:5b:f9:9c:6e:e9:bc:a1:
d0:18:f9:65:4a:f6:ab:76:8a:41:f9:01:56:d0:da:
d0:ae:2c:07:5e:bf:60:a7:63:95:d6:02:48:57:55:
74:0c:c9:be:67:e9:0e:59:18:26:db:f6:9c:43:8b:
1d:a3:0d:ac:23:2c:a1:82:d3:d2:1e:a6:27:a5:08:
09:8c:05:ed:22:35:eb:5e:f3:51:c1:8c:f3:31:1b:
08:91:bf:06:5a:51:67:c7:89:89:b6:44:12:54:fe:
d3:c1:d3:ed:ce:d8:ba:59:cf:88:2a:5a:e0:62:da:
e5:78:bf:c0:ba:65:10:80:4f:6a:5d:60:10:f6:f5:
ae:64:03:5b:6d:3f:9f:07:4e:fe:24:66:0b:65:f4:
62:37:78:7c:33:0c:95:a4:f8:03:19:51:e9:2d:22:
56:d6:27:02:34:6e:0b:c8:e2:55:e5:4c:e9:e9:a7:
85:bd:a7:40:36:0d:01:82:75:c4:11:fa:a4:23:1b:
8c:a1:a6:13:dc:14:a6:6c:0a:de:2f:1d:ba:d5:22:
e0:f3:60:8c:c8:19:c2:15:78:f7:bb:e1:2e:f3:9d:
20:39:05:68:a8:19:04:26:d3:a2:e3:bf:18:84:a6:
f7:47:4b:8e:50:b2:ac:18:38:3a:1e:36:f2:18:67:
c9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:71:99:08:80:AA:13:A4:A0:85:83:48:00:1A:78:22:9D:FD:7B:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7909A0F47E3711EF8E62C586762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.97.0/24
Signature Algorithm: sha256WithRSAEncryption
53:58:e9:d3:90:1f:7d:7e:f7:50:09:40:41:e3:f7:e7:b7:aa:
0f:36:c7:7c:72:bc:4d:8b:92:9e:af:a5:0c:48:1b:2d:76:ec:
5f:b6:f2:e4:27:3f:64:2e:54:8a:34:ec:a2:51:c7:fa:e5:e7:
e9:82:95:56:30:9f:a0:2a:91:62:11:bf:5d:06:26:cf:bf:14:
98:54:be:c6:0c:d8:2f:36:f9:bb:fc:af:73:76:7c:02:57:b9:
c5:39:f1:0f:3e:33:61:5d:6b:6c:97:c6:45:60:16:b8:8c:3f:
5c:61:1c:b2:be:05:0e:2f:c9:96:22:f0:b6:5b:ab:7c:35:1a:
5b:ee:58:31:60:2a:f0:61:8b:16:dd:07:34:91:db:d1:ff:aa:
43:6b:a9:04:cb:c7:b9:62:51:58:61:66:27:45:12:16:50:c1:
d4:d0:c6:1b:c6:c5:1e:13:6a:08:99:5a:90:f6:2d:a6:3a:31:
d4:dc:f3:be:9c:4f:ee:7b:1d:9b:41:9d:2b:67:22:33:31:bd:
05:6d:65:2d:1c:c1:67:76:7c:27:0c:5f:01:cb:fa:10:93:d4:
ff:74:4a:67:62:26:a6:e2:05:c3:5e:a4:41:44:91:9a:2a:73:
f9:ee:fe:d1:de:47:a9:b0:0b:31:31:32:47:8f:e0:be:76:e5:
32:69:df:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:11 2024 by rpki-client on console-fra.rpki-client.org