Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9341441C9B8411EF9C21ECBC762E951A.roa
File: 9341441C9B8411EF9C21ECBC762E951A.roa (raw, json)
Hash identifier: nxGvcbY/YbkgsTvqoSOPlqjNZLEn+dMgnGjn0ja5XjQ=
Subject key identifier: 09:1B:E3:75:BB:73:27:AE:1A:C9:70:4A:92:AF:70:05:D3:61:18:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01080D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9341441C9B8411EF9C21ECBC762E951A.roa
Signing time: Tue 05 Nov 2024 14:45:18 +0000
ROA not before: Tue 05 Nov 2024 14:45:14 +0000
ROA not after: Mon 20 Jan 2025 14:45:14 +0000
asID: 140570
IP address blocks: 154.91.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67597 (0x1080d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 14:45:14 2024 GMT
Not After : Jan 20 14:45:14 2025 GMT
Subject: CN=672a2f7e-4d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:69:c2:59:45:67:ad:84:ef:ea:37:a2:62:f0:
7a:51:33:c1:b1:44:2d:e8:50:67:86:38:29:1f:0f:
c2:fd:95:fe:9e:b0:3d:8d:95:99:66:ff:50:24:9f:
78:5c:25:11:ec:1d:7b:5c:14:89:ee:79:da:51:a4:
60:62:fe:dc:52:eb:00:85:af:78:8e:7d:63:c4:27:
9c:10:b1:b3:e9:2d:b5:2b:5e:72:79:a9:d9:7e:bf:
e9:c0:d5:e3:17:df:e2:3c:3d:0d:03:a9:5a:5f:8e:
f3:e4:8d:a6:1e:54:e8:42:ef:0c:9b:1d:d7:9a:a1:
74:2d:08:39:56:06:81:fc:ce:7d:7e:9f:e6:cd:55:
46:47:75:0e:97:30:b9:a3:de:cd:d4:3e:d3:24:a8:
69:b0:ab:59:01:72:a2:68:a5:ff:98:54:ce:9f:fc:
ca:c2:64:2f:47:7f:8a:d9:6a:a0:06:71:4d:75:58:
ff:ab:ce:c2:47:87:bc:9e:9c:26:d7:16:82:31:3a:
22:0a:a7:89:9f:14:79:aa:df:1e:5f:df:59:a9:07:
21:b5:a6:bd:b6:2b:fc:b9:10:4a:f8:0d:de:e3:b5:
0c:e3:17:78:5f:58:d2:be:b3:70:01:5d:3d:ab:7c:
14:d3:88:cc:f9:9b:aa:6c:3a:d0:3e:1f:87:ea:fa:
5d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1B:E3:75:BB:73:27:AE:1A:C9:70:4A:92:AF:70:05:D3:61:18:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9341441C9B8411EF9C21ECBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.5.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:09:fe:b5:64:f9:40:93:b5:6a:a2:75:c1:c2:78:2d:07:d9:
d3:e9:fc:fd:d2:d8:0f:28:2d:4d:0d:1a:f8:f9:5b:47:1d:2a:
65:9c:3d:c7:98:d6:6e:4c:26:d4:79:23:3f:61:b3:09:aa:5e:
5c:ee:90:af:03:7e:ed:d4:5c:49:67:d3:53:53:d2:36:d0:30:
c0:4e:e3:75:47:9b:d1:e0:29:86:01:81:7f:62:ed:97:e2:f2:
18:b5:f1:24:17:de:17:2e:d1:66:63:4c:4b:3a:8b:b8:a0:88:
d7:a3:08:d6:36:86:35:e0:67:8c:2f:86:9c:8e:b5:de:91:e1:
c3:43:23:04:29:79:9d:69:12:d5:e5:fe:cc:cc:d5:4c:ed:1c:
4b:a6:b4:15:13:0f:bb:50:ae:76:f4:ba:71:33:d2:96:6d:94:
e8:f3:76:34:2a:40:03:4c:e1:44:fd:16:b0:e1:01:83:48:c1:
fd:db:7b:8c:84:4a:88:e9:aa:32:a0:c8:75:7f:c5:f9:d5:ab:
ae:6a:ef:db:4d:d8:fe:62:e0:cd:95:9d:79:34:1c:85:9e:02:
a6:e7:0c:3e:85:db:83:56:18:86:15:ab:ae:25:b2:c4:da:3a:
49:fb:d7:31:89:42:d7:54:7f:57:88:3d:9a:1c:32:a9:f9:a0:
b2:b0:45:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 10:50:38 2024 by rpki-client on console-fra.rpki-client.org