Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/843FED2A9AAC11EF9432AA69762E951A.roa
File: 843FED2A9AAC11EF9432AA69762E951A.roa (raw, json)
Hash identifier: JdVT342cvncsN6UxMnc9yFKf8tNQB8TA62MFmTiu6Cg=
Subject key identifier: 61:88:EA:9E:49:92:63:F8:C0:9E:26:1A:A6:5B:FB:89:93:2C:18:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0106AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/843FED2A9AAC11EF9432AA69762E951A.roa
Signing time: Mon 04 Nov 2024 12:58:42 +0000
ROA not before: Mon 04 Nov 2024 12:58:38 +0000
ROA not after: Tue 03 Dec 2024 12:58:38 +0000
asID: 141883
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67246 (0x106ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 12:58:38 2024 GMT
Not After : Dec 3 12:58:38 2024 GMT
Subject: CN=6728c501-d755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:50:4a:10:6f:21:11:24:17:df:35:42:f9:75:
1a:b7:20:e3:f9:14:50:c7:c9:a3:ab:c4:4b:9b:13:
d6:13:70:88:c8:c4:72:9c:51:bb:1b:33:d1:e3:37:
e3:7d:79:91:dc:0b:72:b2:ee:43:86:66:70:59:f3:
3e:5a:48:6d:a7:78:68:89:46:81:fe:83:be:7d:96:
1d:40:73:cb:f8:19:b0:f4:3b:94:3a:67:03:2f:80:
96:34:3e:54:0d:23:88:db:a6:d7:1a:aa:32:5f:55:
b5:46:82:4b:e1:37:f5:3f:9e:40:cc:75:a5:f1:69:
f4:25:c7:ff:a5:f9:61:95:e8:21:19:1f:57:27:59:
f0:a1:1c:ee:b6:65:ce:7f:5c:35:06:80:93:26:eb:
18:12:7b:65:05:d9:4e:f2:9e:07:14:fd:34:d2:96:
63:f9:39:f8:17:1a:ed:cc:d7:1d:21:f2:31:49:44:
eb:3e:64:90:1d:3e:4c:4c:07:8a:8d:5b:d4:94:ea:
aa:df:f5:38:92:48:7b:3f:08:29:a5:53:48:91:c1:
77:b1:5a:f4:00:c7:a7:6b:97:83:14:7b:09:33:45:
81:60:17:62:36:ca:b5:d8:9a:4c:d1:5e:ad:17:26:
0a:98:20:d7:87:d1:7d:48:d0:2d:78:3f:40:0e:fd:
dc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:88:EA:9E:49:92:63:F8:C0:9E:26:1A:A6:5B:FB:89:93:2C:18:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/843FED2A9AAC11EF9432AA69762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:9b:b0:ad:a6:15:58:34:a1:47:0a:78:49:cd:4b:07:68:13:
dd:67:1b:fb:31:0c:7d:f8:c8:6f:02:97:a0:6a:8a:20:14:02:
bc:bf:13:a9:b2:a1:1a:cd:db:92:ab:99:3f:4d:30:35:1d:c9:
9e:9c:4e:b1:6b:34:21:12:0c:75:a6:65:dd:45:a2:86:77:34:
04:52:11:e7:f8:82:f0:d6:29:57:8b:9e:5c:a0:69:26:59:e6:
65:b2:42:32:96:10:34:01:3a:10:5e:78:ba:82:18:68:87:56:
55:15:b4:ea:f8:1d:b7:45:c0:d1:18:1d:0e:51:b4:ae:3e:e2:
af:f0:69:e2:d4:8c:63:79:1c:48:86:9c:ed:46:52:4f:6c:fb:
c6:95:14:ae:12:31:32:8f:70:48:8c:53:86:4d:6f:9d:ad:53:
0a:a9:61:2e:2c:83:35:06:a2:af:f7:59:e9:9c:a0:c0:4c:b3:
a3:58:84:b0:bc:6f:33:cd:0c:4d:1c:4c:7b:7c:46:20:bc:70:
fb:e5:32:14:91:2b:2e:8d:12:da:f0:13:02:7a:8e:01:fd:f9:
3d:b0:7a:d7:8f:3c:82:4a:d0:90:5e:68:47:5f:11:ee:0b:bb:
46:08:7b:cc:6b:da:19:6e:a9:98:b7:2c:d5:df:19:32:0e:04:
72:a0:77:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:13 2024 by rpki-client on console-fra.rpki-client.org