Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83E2A71A92B311EFAFBBC1A5762E951A.roa
File: 83E2A71A92B311EFAFBBC1A5762E951A.roa (raw, json)
Hash identifier: Q+7mdb0bx5K2qPpKzCvwnlr2uysovbVesVdkyTjYApA=
Subject key identifier: 44:C3:88:95:27:A7:EF:22:2C:21:F3:02:34:07:3E:D3:65:E0:51:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83E2A71A92B311EFAFBBC1A5762E951A.roa
Signing time: Fri 25 Oct 2024 09:28:38 +0000
ROA not before: Fri 25 Oct 2024 09:28:34 +0000
ROA not after: Wed 27 Nov 2024 09:28:34 +0000
asID: 147176
IP address blocks: 154.84.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66016 (0x101e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:28:34 2024 GMT
Not After : Nov 27 09:28:34 2024 GMT
Subject: CN=671b64c6-ba4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1f:5b:7e:01:25:3c:13:86:ee:bc:2b:d9:42:
9d:49:81:67:24:13:f1:10:fd:b6:cf:6a:59:97:b7:
14:f7:ee:ae:6a:e0:f5:cd:70:c0:6f:bf:cb:b3:6b:
55:b8:2f:6d:29:16:61:32:72:cb:6b:1b:f6:6d:6b:
58:b5:a3:84:e4:db:27:45:9d:9e:6f:30:20:e0:8f:
81:87:60:5e:e8:4e:bb:1a:4e:b6:0e:2a:7c:6b:aa:
65:8b:68:f3:87:7a:11:62:0f:72:cd:6f:65:ba:bd:
87:4d:2c:ac:7f:4f:1d:9f:e8:1a:42:ef:ab:37:b2:
12:c8:14:ab:70:99:68:aa:06:3e:0b:68:d3:b9:7a:
3b:03:13:05:6f:fc:91:78:27:06:81:ba:a6:ad:c5:
92:0d:2e:36:c1:e6:22:37:db:09:15:66:78:db:fe:
10:15:48:a4:f1:21:5c:3d:b1:d7:73:c5:05:21:8b:
b3:a1:8c:9f:74:fb:d6:ca:31:56:cb:84:b2:1b:34:
b1:bc:bb:70:35:b2:23:4e:3c:72:c2:17:6d:09:0f:
91:a6:15:f1:dd:a4:aa:7c:5c:d7:46:9b:68:2f:d3:
ff:9a:50:4e:9f:74:4e:63:b1:42:b5:a2:77:e5:b4:
5d:84:1c:1c:e9:36:90:fe:3b:48:fd:97:76:97:b4:
68:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C3:88:95:27:A7:EF:22:2C:21:F3:02:34:07:3E:D3:65:E0:51:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83E2A71A92B311EFAFBBC1A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.153.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:64:5e:20:24:2b:40:4f:25:a0:51:1d:42:6a:ea:c7:0a:3a:
3e:0e:66:d8:9f:56:c9:6d:90:21:7b:26:f5:1e:5c:c0:b4:88:
15:45:10:5e:94:68:d5:43:20:c8:d3:1d:f9:b2:bb:9b:c5:9e:
16:f2:53:81:7e:79:c1:a7:fa:27:bb:51:e7:d9:70:44:50:55:
e9:b8:2f:d1:e8:14:f5:ea:45:06:a1:c2:cf:bb:98:f1:dc:1b:
9d:93:9d:96:a9:54:73:0a:3b:e7:be:ff:ac:cc:aa:1b:1e:e4:
99:03:84:ce:ff:fe:7e:d3:05:05:bd:cf:fe:14:10:91:af:74:
68:41:b8:d5:fa:01:fc:a0:82:e0:5b:82:eb:44:2c:dd:db:30:
ea:06:8d:60:36:90:53:23:22:27:f3:01:45:28:c6:ec:b9:11:
d2:ca:ba:d0:f5:be:02:63:20:38:f7:63:23:8f:9a:22:68:88:
7d:75:12:34:5f:d9:20:01:b8:1a:0d:02:99:de:ce:55:69:fe:
db:b8:f8:0d:4c:0d:74:8b:ac:8f:57:56:2b:0a:bc:46:30:0f:
9c:0f:8d:20:6a:77:54:4a:07:ba:05:9b:4d:c9:01:f5:89:e6:
93:ba:bb:02:cd:64:2a:82:1d:27:27:f0:6e:eb:76:3a:26:b8:
b3:af:75:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:13 2024 by rpki-client on console-fra.rpki-client.org