Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91F9FFDE74CB11EF8D021CBA762E951A.roa
File: 91F9FFDE74CB11EF8D021CBA762E951A.roa (raw, json)
Hash identifier: yF0joWwySBAhWsBE70uPhIsQ5ruydXO2V6m8LtBXONE=
Subject key identifier: 30:0E:AD:C8:BB:72:4D:DF:7B:47:DC:76:35:0C:A3:AF:1A:D6:FD:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EFE0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91F9FFDE74CB11EF8D021CBA762E951A.roa
Signing time: Tue 17 Sep 2024 08:05:15 +0000
ROA not before: Tue 17 Sep 2024 08:05:11 +0000
ROA not after: Sat 30 Nov 2024 08:05:11 +0000
asID: 142403
IP address blocks: 154.221.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61408 (0xefe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:05:11 2024 GMT
Not After : Nov 30 08:05:11 2024 GMT
Subject: CN=66e9383b-72a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:72:4c:4b:12:73:48:e1:6b:b8:c0:42:03:15:
5d:42:99:49:2c:36:94:89:50:0f:00:7e:1d:0a:61:
3b:26:b9:2f:a1:ff:d5:4d:1a:f4:45:bd:7b:16:90:
fb:50:f8:50:01:26:a2:6f:86:4b:e8:47:06:d7:24:
ad:9c:59:36:a1:94:6b:b1:93:d7:37:32:64:2c:28:
18:9a:f1:5a:6a:56:0d:2d:44:c0:6f:7f:ff:27:c6:
65:cc:33:0f:84:0c:76:d1:d1:cf:fc:d2:73:b3:ee:
58:f1:3e:77:f1:05:3d:62:fd:cf:e6:55:dd:02:69:
ca:e4:93:8a:0b:c7:a7:7e:81:2a:b5:db:2f:65:db:
91:8f:ed:42:53:45:bf:c0:14:61:93:37:27:1e:31:
ea:9d:28:6b:71:8a:03:59:96:80:cc:4b:aa:2a:63:
ca:b6:a5:e6:33:a3:93:2a:9f:c4:e9:4a:43:83:fd:
7c:af:4a:4c:59:8d:e5:1a:d9:7c:70:d4:d5:aa:33:
2d:e3:c6:e0:9f:d3:d3:91:98:c2:83:fa:e7:75:3b:
66:21:cb:8e:12:7a:39:a0:fd:d6:03:fb:ef:f7:94:
86:d8:9d:59:6f:28:24:bd:8e:bb:bc:e6:3c:70:1e:
bc:05:e4:99:0a:9a:c4:fe:63:be:41:a0:56:72:77:
03:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:0E:AD:C8:BB:72:4D:DF:7B:47:DC:76:35:0C:A3:AF:1A:D6:FD:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91F9FFDE74CB11EF8D021CBA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.25.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:88:8c:1f:20:ef:16:c5:96:97:40:ff:59:d6:13:84:57:e6:
20:45:08:24:4f:50:a9:9e:81:4d:c8:99:66:c6:22:2b:5f:f7:
eb:86:0f:c4:f3:2c:b7:82:76:2b:ce:64:da:f9:ef:20:33:6e:
02:b3:bd:5e:5a:63:e2:f9:43:ef:c4:dd:64:a6:0e:b0:c9:11:
d1:46:87:a2:a8:55:1d:2b:ec:f3:5a:5b:82:e0:c2:29:e1:0f:
f8:e4:b8:86:6f:19:e8:bf:f8:92:9e:79:f2:e2:9f:94:ab:5e:
2c:38:c5:86:be:86:16:df:af:c8:92:c4:03:d0:c7:14:30:07:
63:1f:fe:33:cb:22:a5:8d:36:db:e7:52:96:2f:0f:22:cd:91:
3a:a0:68:ab:0d:29:91:ba:d9:19:92:07:02:1d:be:31:03:e1:
e6:75:1d:de:1e:0a:2e:e5:dd:dd:0e:ac:cd:4d:e8:38:4a:5a:
4c:1e:81:9a:b6:58:ad:e3:83:59:2a:88:21:82:0d:63:93:9f:
fd:70:05:80:50:26:9f:b2:bb:7e:7e:6e:51:cc:1f:04:8b:57:
40:8c:be:24:41:50:32:71:1e:62:5e:06:17:ca:eb:73:4e:df:
e9:6a:2b:40:ba:7d:8e:9c:bf:dd:00:a5:ff:9d:f6:10:2d:2c:
79:0b:05:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:16 2024 by rpki-client on console-fra.rpki-client.org