Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D4F6A62736511EFBDE840B9762E951A.roa
File: 8D4F6A62736511EFBDE840B9762E951A.roa (raw, json)
Hash identifier: NDu2Qb2f5Bq2YFrHYBovSraQikMvnE9XoEfrBvydl3g=
Subject key identifier: 07:3C:C9:72:6E:8A:A0:F7:B2:C8:4C:F9:E6:98:80:88:33:AE:80:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF06
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D4F6A62736511EFBDE840B9762E951A.roa
Signing time: Sun 15 Sep 2024 13:22:27 +0000
ROA not before: Sun 15 Sep 2024 13:22:24 +0000
ROA not after: Sat 30 Nov 2024 13:22:24 +0000
asID: 138152
IP address blocks: 154.211.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61190 (0xef06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:22:24 2024 GMT
Not After : Nov 30 13:22:24 2024 GMT
Subject: CN=66e6df93-34d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d2:49:bc:77:d6:a5:4e:da:f3:7d:9b:3c:50:
13:85:17:2d:ba:2c:ab:65:74:b1:ec:8c:0b:09:51:
61:10:d1:c4:e3:8e:a0:e0:27:bb:4d:95:3a:ad:48:
80:53:03:0e:9d:56:57:80:ef:e9:af:42:dd:e4:49:
00:c8:c8:81:d3:04:22:22:60:38:85:17:bf:68:30:
2d:66:16:73:9a:8f:47:fb:60:a7:1c:56:da:32:28:
24:a8:5c:99:b7:58:20:d0:c5:99:ba:2d:ba:09:00:
ef:69:e6:ac:28:19:e7:d1:d7:7b:f3:84:59:3e:a2:
b9:eb:84:83:06:43:0a:7c:b8:5e:e3:eb:5a:24:65:
8e:f4:0a:f0:ea:9d:f3:d2:a6:a9:82:76:c1:c8:0e:
0e:7a:8a:7c:51:77:8d:e9:25:3a:26:b5:52:0f:ab:
42:3d:ca:55:f5:45:5f:00:9c:9b:d9:21:34:7a:82:
bc:c2:83:49:ab:6e:17:5d:44:c2:04:24:7f:66:fd:
5a:13:57:0e:78:6d:c6:b7:1f:ce:84:ec:ac:0a:f6:
3d:18:b9:d9:26:dd:da:b9:c0:9d:0e:58:9d:75:53:
bb:2b:6e:b0:32:88:fe:14:c6:ae:4d:20:e2:f3:09:
b0:79:fb:35:09:2a:cc:73:05:63:7b:b7:32:db:05:
fa:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3C:C9:72:6E:8A:A0:F7:B2:C8:4C:F9:E6:98:80:88:33:AE:80:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D4F6A62736511EFBDE840B9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.15.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:4f:48:e5:7c:4b:30:16:f2:f5:d5:b0:21:50:8c:04:8c:b8:
74:66:ec:27:2d:41:67:96:71:fc:e7:66:7b:9e:67:0f:50:90:
80:9e:40:67:15:90:f6:9a:79:c0:58:e8:50:04:c4:cb:5e:53:
c2:c3:5a:85:65:d4:42:29:c7:4a:f0:8a:5e:00:c9:67:6c:d6:
96:24:86:a5:58:a6:98:9d:4c:e9:47:a4:ab:d6:c0:45:be:16:
e6:96:ae:77:f3:08:5c:e6:13:b4:56:44:2f:d3:8a:4d:89:60:
24:6f:a3:85:b4:ad:14:4e:8f:0c:a1:d8:38:ab:6c:10:59:a3:
26:09:83:d0:ac:c6:c2:f7:07:e0:f2:8b:5f:e5:5a:5a:b3:f6:
17:a5:48:0c:5f:3e:63:a9:94:1c:9f:d6:c3:1d:94:ff:2a:1c:
d6:0e:94:30:cb:78:52:98:b3:7d:13:bc:7c:22:72:16:67:08:
54:6f:f4:86:90:3b:0d:c0:63:73:00:3e:26:95:9a:53:e5:91:
e8:8b:f6:8d:5c:32:1b:0e:f1:fc:88:df:de:56:c6:7b:b6:d7:
a9:67:f9:8b:3a:b6:55:73:b3:8a:76:38:48:b0:96:77:a1:d8:
24:84:ca:fb:5f:7c:c6:01:8b:6b:ed:6e:84:b9:a3:90:4d:78:
55:25:cf:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:15 2024 by rpki-client on console-fra.rpki-client.org