Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AC7A5B2736511EF8C6574B7762E951A.roa
File: 7AC7A5B2736511EF8C6574B7762E951A.roa (raw, json)
Hash identifier: SE2JdQ2wFMvQFLdaWwYa1eoUidj59OcmIEtbo4zBVdw=
Subject key identifier: FB:14:C6:2A:31:51:48:51:B1:7B:F9:D2:FC:48:B2:2E:9B:07:45:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF04
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AC7A5B2736511EF8C6574B7762E951A.roa
Signing time: Sun 15 Sep 2024 13:21:56 +0000
ROA not before: Sun 15 Sep 2024 13:21:53 +0000
ROA not after: Sat 30 Nov 2024 13:21:53 +0000
asID: 142403
IP address blocks: 154.221.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61188 (0xef04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:21:53 2024 GMT
Not After : Nov 30 13:21:53 2024 GMT
Subject: CN=66e6df74-e7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b1:56:db:15:79:4b:a4:18:97:aa:43:1b:91:
e8:56:62:21:d1:1b:6b:57:cc:1a:58:3f:4a:5e:e5:
1f:95:b1:a7:d3:34:2f:54:d3:ca:df:2e:42:45:97:
b4:08:4d:4b:64:67:27:5b:34:82:f6:58:ac:ed:da:
5d:4d:8d:b5:79:4e:42:ab:23:4e:71:d9:bf:5a:a9:
0c:22:93:9a:c5:01:97:47:ee:1a:0c:a9:62:bc:14:
54:7b:ff:a9:1c:d3:e7:c4:5f:0c:41:f9:ad:be:13:
d4:7b:9c:8a:c9:4a:c1:79:50:92:5c:58:ec:2e:52:
2f:e6:95:a5:46:03:47:a4:2c:78:84:4e:d9:95:ab:
96:0a:c3:ce:47:e4:3d:1d:f7:f0:c0:4f:95:f9:9d:
f9:8f:08:00:28:09:aa:d2:1d:bd:79:e9:ae:80:b8:
02:9a:6c:0b:dc:ab:c1:51:2a:57:03:6a:1e:c1:65:
1e:dd:48:de:c7:28:a2:ec:9d:93:4f:da:89:0b:da:
c8:ec:a4:95:2f:d7:ab:c9:4c:a1:14:8a:23:b8:2e:
52:9f:58:a6:a8:dd:2e:80:17:68:d8:7a:77:9e:54:
01:db:4f:fb:0b:be:53:39:80:ed:59:35:a3:70:9b:
ca:73:49:56:f5:d9:99:f6:09:90:66:ef:45:9b:46:
8c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:14:C6:2A:31:51:48:51:B1:7B:F9:D2:FC:48:B2:2E:9B:07:45:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AC7A5B2736511EF8C6574B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.16.0/24
Signature Algorithm: sha256WithRSAEncryption
90:32:1c:a9:ba:b7:b9:f3:f3:31:ad:af:2b:7e:bb:03:1d:9a:
dd:62:8c:94:de:75:c6:7f:1f:d9:95:17:7c:86:11:4b:2c:40:
0e:60:2a:ab:07:c7:33:22:c4:bc:6e:46:57:a0:5e:e3:62:a9:
30:74:7d:86:e4:96:8e:a8:47:9c:a2:c1:3c:8b:27:ed:f8:c4:
fb:09:de:f7:01:4e:33:89:bd:1a:33:38:cc:0c:ee:b2:13:e8:
45:ae:15:6c:53:44:6d:0b:af:2b:b0:b6:e2:f7:14:5b:e7:e3:
cb:5a:45:62:73:6e:31:f1:82:20:92:0f:d7:84:e8:9a:5e:be:
66:99:2a:08:fd:63:eb:5a:67:67:d0:b6:32:3d:99:2d:c4:8a:
ce:f8:c7:9b:5e:6c:8a:55:e2:01:e5:e0:ba:5d:4c:44:e9:ef:
74:a7:21:2d:fb:44:ce:e1:16:70:be:73:c1:60:86:9a:f9:6d:
06:b8:6c:ee:a7:f2:97:9c:ae:93:09:b5:23:40:36:8b:23:69:
15:22:3a:de:6a:1c:e1:af:b3:0a:2d:b3:28:70:b6:b7:bb:78:
4f:b8:9d:25:78:ee:0d:72:93:5b:96:28:44:af:da:92:96:18:
7a:7c:f1:12:1c:41:e0:0c:85:45:1e:b2:49:17:e5:e0:1b:f6:
ee:1f:c2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:12 2024 by rpki-client on console-fra.rpki-client.org