Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79A9993AA19411EF8849D693762E951A.roa
File: 79A9993AA19411EF8849D693762E951A.roa (raw, json)
Hash identifier: Brlf2rqC8++0KhjCYF+ZmTFSAbv+W+l9nNSK1pPy8R0=
Subject key identifier: A9:02:64:A0:5D:82:6E:6B:57:70:E4:37:A5:5C:87:F6:31:96:28:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CA7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79A9993AA19411EF8849D693762E951A.roa
Signing time: Wed 13 Nov 2024 07:54:14 +0000
ROA not before: Wed 13 Nov 2024 07:54:10 +0000
ROA not after: Sat 07 Dec 2024 07:54:10 +0000
asID: 138915
IP address blocks: 154.223.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68775 (0x10ca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 07:54:10 2024 GMT
Not After : Dec 7 07:54:10 2024 GMT
Subject: CN=67345b26-9388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:04:76:6e:ae:1e:07:1e:d9:ce:06:09:19:
ce:7e:57:c6:1f:29:c9:5d:92:87:06:4d:06:77:9f:
c6:20:00:92:c7:72:03:5f:63:14:22:c0:0f:56:40:
51:cf:06:db:20:2c:73:6e:91:b8:4d:ca:65:4e:ab:
6a:4b:6c:16:d3:97:48:5e:ce:1e:ca:fd:a0:33:80:
58:a3:1e:8c:60:3b:b7:ec:60:56:ad:23:4f:94:a0:
15:1c:6c:d0:7e:75:4c:cf:59:a9:12:01:94:30:ae:
0d:a2:6c:6a:de:f0:05:fb:68:6f:c0:16:44:3e:9d:
aa:6d:08:87:24:5c:bb:9b:ad:37:2b:39:a6:47:e7:
13:8c:f8:32:9b:b8:99:d9:62:e2:47:a0:8a:89:59:
58:6a:53:a3:91:8b:cf:06:4d:ae:61:8f:21:ff:ee:
2f:20:15:97:b3:10:3b:dd:b2:81:d5:c6:f9:d4:00:
c3:aa:a4:b3:59:6b:fa:12:34:b2:13:fd:54:00:34:
2d:9b:f7:65:e5:b1:35:94:08:48:13:6a:d0:65:b4:
cf:b4:29:ae:30:1e:8b:16:46:53:d6:a1:52:17:f3:
29:c5:a9:a0:c2:ff:ce:7c:01:cf:c0:98:c6:c7:07:
46:84:41:1a:c6:e6:c3:9e:00:18:51:56:8f:13:73:
0e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:02:64:A0:5D:82:6E:6B:57:70:E4:37:A5:5C:87:F6:31:96:28:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79A9993AA19411EF8849D693762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.64.0/24
Signature Algorithm: sha256WithRSAEncryption
14:fa:3f:6c:5d:83:fb:d7:0c:6d:40:b7:54:76:6a:14:67:11:
a3:2e:ef:ac:e5:88:f0:42:2c:c5:b2:60:e1:f5:3b:e9:f0:05:
bd:79:a0:06:fe:a2:0d:d1:f9:fa:44:b1:16:86:b6:c1:a3:d7:
e8:e9:c5:35:be:c0:58:ee:d0:59:bf:72:95:2d:0f:d2:2f:51:
e3:e2:e8:e2:2e:9c:cb:14:3c:bb:cc:16:55:2a:81:c9:dc:54:
59:21:8a:7c:b2:08:96:5d:83:b2:56:47:94:7b:47:44:20:f8:
51:fe:1c:d0:70:e9:2a:cf:45:63:bb:07:6a:b9:1a:e6:76:71:
8d:23:75:28:1e:2f:d3:b1:94:28:10:dd:b7:62:78:3a:8e:07:
43:07:ba:d3:69:45:3d:ab:0c:e4:6e:14:d0:8c:b0:2f:12:93:
87:2e:c0:55:86:42:60:c2:f9:1c:38:1d:cd:cf:b8:7b:d3:c6:
4c:cb:8a:ef:d9:b7:cb:fb:f2:ef:f5:a2:5b:2a:f8:74:d5:3b:
7f:fd:ef:09:46:ef:99:9b:c5:fe:ff:cb:89:77:84:dd:14:cd:
3b:e9:b7:d0:ef:14:8d:ae:39:b3:c1:d4:ca:56:e7:38:e0:21:
da:6e:64:6f:a8:29:19:b0:24:da:63:c3:ea:1f:29:d4:24:fc:
f4:ea:f5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:35 2024 by rpki-client on console-fra.rpki-client.org