Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83EAFB42A8F011EFAC631E5F762E951A.roa
File: 83EAFB42A8F011EFAC631E5F762E951A.roa (raw, json)
Hash identifier: A+WdwRmT+lhMrNDsU4f0I8fR7G44xme5gPgYbTEEWbk=
Subject key identifier: 8D:CB:1C:B3:42:E1:57:0F:83:BF:DB:15:2B:90:CC:3D:5D:23:8A:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01114D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83EAFB42A8F011EFAC631E5F762E951A.roa
Signing time: Fri 22 Nov 2024 16:40:43 +0000
ROA not before: Fri 22 Nov 2024 16:40:39 +0000
ROA not after: Tue 03 Dec 2024 16:40:39 +0000
asID: 62240
IP address blocks: 154.195.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69965 (0x1114d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:40:39 2024 GMT
Not After : Dec 3 16:40:39 2024 GMT
Subject: CN=6740b40b-7900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b1:14:f2:3f:4a:a8:81:a5:55:2f:64:cf:4a:
b2:2f:a5:16:05:94:70:e3:79:51:7a:50:db:42:91:
cc:8f:87:1f:9b:88:69:8f:88:bd:5f:41:ec:38:01:
35:8d:6c:9e:60:dc:f1:41:93:7f:41:fb:ef:7c:68:
17:9d:5e:39:aa:d6:05:51:29:6d:06:fe:4e:b3:e5:
82:df:58:5b:ab:ad:4d:ba:b7:a7:02:5b:00:e3:68:
8d:a7:3b:f0:79:ca:a8:9a:98:b5:f5:62:68:e9:fa:
50:76:11:38:ba:1c:77:09:9d:41:c6:cc:ae:4b:41:
19:20:b1:7c:b3:c6:8a:31:40:ae:a6:79:73:26:ec:
bb:b8:08:65:95:2b:0c:1c:98:59:5a:05:a5:6b:b6:
0e:90:85:89:be:58:d5:bc:d0:1d:6b:25:49:99:07:
4f:c0:e7:9d:f4:9a:b1:31:6c:75:eb:7a:1e:72:1f:
83:54:6a:96:cc:11:6e:dd:07:03:84:c7:94:99:e4:
5b:0f:13:2f:0e:29:2a:35:73:9a:fb:10:21:91:28:
39:62:0f:ac:dd:6b:78:b8:4d:d8:8b:ba:bf:3b:87:
dd:9d:24:cf:d1:a8:f2:4d:15:94:14:0f:63:ad:17:
9a:f1:07:3e:72:66:ab:14:13:1a:e0:6c:6e:a2:e8:
4c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:CB:1C:B3:42:E1:57:0F:83:BF:DB:15:2B:90:CC:3D:5D:23:8A:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83EAFB42A8F011EFAC631E5F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.161.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0d:eb:54:11:69:9f:f7:e0:b8:75:74:5c:e5:6b:fd:cf:1b:
75:3b:de:d7:ad:5f:c0:da:c5:c4:7f:b1:42:fb:36:ae:d5:7c:
35:c5:40:7b:7c:3a:2d:ef:ae:4d:b6:80:c8:d6:1c:40:cb:37:
fb:f7:8e:60:d7:6c:4a:34:a1:27:24:a4:fd:2c:2f:00:09:18:
f0:1a:1d:2e:e3:3b:8f:df:c7:8a:7b:e7:a1:01:f1:4b:f4:da:
83:e5:e3:6b:ac:3a:f6:f9:58:90:e1:75:e8:d5:5f:9c:b3:e8:
27:81:8e:95:b2:e6:41:be:77:e9:40:7d:5d:cf:fc:f2:ab:89:
05:7d:ff:df:53:c5:ca:0b:24:04:2e:0c:f2:46:b3:22:59:f7:
f5:77:21:ee:67:73:0c:49:26:85:cc:23:0c:cf:22:f4:1e:c4:
a9:3e:b8:5e:ce:d7:82:8c:4a:06:2c:34:fa:64:65:d6:e4:ca:
80:bd:c2:cd:6e:20:de:aa:5d:da:5c:0f:0b:09:68:8d:81:d1:
cf:33:dd:10:1f:c7:4f:b3:5c:2f:6e:e0:9c:42:c2:1d:dd:44:
d7:b6:eb:a2:49:60:3d:f7:52:87:65:76:4e:68:5d:c7:27:b7:
34:f1:b0:b8:d2:32:c7:7c:b9:92:da:94:af:6c:05:f3:aa:84:
22:ee:04:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:37 2024 by rpki-client on console-fra.rpki-client.org