Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A25C6F09D1A11EF9C9FC4BD762E951A.roa
File: 7A25C6F09D1A11EF9C9FC4BD762E951A.roa (raw, json)
Hash identifier: BpyXk7CrSk7RuvM380PV2AaidsGN0oSyQ4u2XY3cXAI=
Subject key identifier: DC:96:CD:86:83:D5:00:FB:E8:7D:0A:C6:E7:F8:BC:AA:4F:AE:F5:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01097B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A25C6F09D1A11EF9C9FC4BD762E951A.roa
Signing time: Thu 07 Nov 2024 15:10:52 +0000
ROA not before: Thu 07 Nov 2024 15:10:48 +0000
ROA not after: Wed 11 Dec 2024 15:10:48 +0000
asID: 203020
IP address blocks: 154.202.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67963 (0x1097b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 15:10:48 2024 GMT
Not After : Dec 11 15:10:48 2024 GMT
Subject: CN=672cd87b-d6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:ed:36:6a:8c:70:67:e7:e4:90:35:a2:8f:
dc:a9:f7:7b:6c:55:71:b1:30:d5:dc:5d:f6:99:8d:
9f:ba:51:88:f1:7a:1c:ff:f0:d7:96:22:4a:cf:14:
b6:51:e1:9d:ae:28:44:d6:3d:1f:c4:08:19:c5:1b:
5d:c2:5b:d8:f3:b1:dd:8a:e5:14:92:86:bb:e3:26:
f7:e4:48:31:56:3b:b8:e8:81:3d:c4:4e:01:e1:6c:
94:49:b8:f5:e1:38:8d:3b:68:6f:aa:80:5e:28:e2:
45:6f:38:b1:63:a0:d7:8e:3e:e9:43:a0:b5:18:6f:
e2:e2:7c:67:ab:24:a6:ae:fa:b7:b7:a7:25:b3:08:
3d:3d:b4:f7:b6:67:48:13:bc:e2:a6:18:3f:b7:b0:
a9:c8:7a:f6:52:6a:1f:e7:78:c9:37:44:d5:1c:25:
8a:c2:35:a9:45:e7:67:fb:7c:7b:66:2a:37:c5:39:
2a:48:30:2d:50:82:90:db:d2:0c:62:f4:67:cb:78:
eb:19:16:16:05:cb:65:87:e5:e3:08:f8:4b:66:95:
56:7a:7d:dc:83:9d:90:09:37:b5:32:71:1c:9c:a8:
c5:36:3f:3d:e3:b0:c4:5c:46:4f:85:5a:19:a7:8b:
52:c1:bd:5f:38:b5:6a:56:dd:21:89:5e:90:50:d6:
61:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:96:CD:86:83:D5:00:FB:E8:7D:0A:C6:E7:F8:BC:AA:4F:AE:F5:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A25C6F09D1A11EF9C9FC4BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.91.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:7e:ea:05:6d:ad:02:9d:7b:6d:87:24:05:5e:c9:76:35:7c:
75:6a:b6:84:8f:43:70:de:67:b8:1f:60:63:4f:38:10:e7:41:
dc:6f:78:23:9a:f9:a1:0b:0a:ad:db:37:93:1e:1e:a8:6c:d2:
b6:e2:90:93:b2:55:35:dd:81:b7:bd:74:c9:b4:18:03:29:55:
cc:2c:7e:c9:86:5b:5a:f6:e3:1b:be:9d:f8:ed:81:3c:e7:95:
d6:80:ee:0c:24:ce:34:3c:37:09:96:96:5f:35:13:6b:3e:9e:
8a:ee:4d:08:a4:bd:fa:22:ee:47:40:a8:ae:20:42:32:5d:3d:
a5:1f:4e:4b:cd:f4:1d:5d:f5:0d:c6:c6:ce:1e:2a:7a:aa:d7:
ac:08:08:32:23:dc:19:a3:99:68:ab:17:f0:bb:8d:35:7a:70:
be:8d:bc:89:dc:f0:bf:dd:99:54:d3:c5:e5:b0:98:52:5a:8f:
63:be:91:c0:70:6a:d2:79:27:96:1b:6c:6f:05:f0:dc:c7:06:
a9:2d:2f:b6:58:3c:53:99:e5:e8:35:3f:bd:48:43:50:40:53:
be:3a:66:69:81:1e:6c:71:a1:de:9a:78:a1:bf:6d:b7:37:1a:
4e:26:b2:66:23:44:51:43:5e:75:52:e3:64:de:b9:d6:7a:9d:
fd:a0:7e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:10 2024 by rpki-client on console-ams.rpki-client.org