Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94506CFA800B11EF83B9357D762E951A.roa
File: 94506CFA800B11EF83B9357D762E951A.roa (raw, json)
Hash identifier: 1vvug247UoHTB0IR0xRiAb3HgsabWzUF8kD5sR3D7uo=
Subject key identifier: DB:68:B4:E9:C1:95:EF:A6:1A:CE:DE:92:15:17:61:3B:1C:43:94:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F6B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94506CFA800B11EF83B9357D762E951A.roa
Signing time: Tue 01 Oct 2024 15:41:09 +0000
ROA not before: Tue 01 Oct 2024 15:41:06 +0000
ROA not after: Mon 09 Dec 2024 15:41:06 +0000
asID: 25818
IP address blocks: 154.91.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63157 (0xf6b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 1 15:41:06 2024 GMT
Not After : Dec 9 15:41:06 2024 GMT
Subject: CN=66fc1815-238b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:13:c7:f5:0e:83:87:d9:d9:5a:6b:00:3b:86:
07:a3:40:75:97:2c:de:18:1d:c2:84:b2:24:32:a1:
17:59:bc:c4:c8:71:81:d4:0b:89:73:9d:e8:8d:57:
99:9d:ad:cf:76:76:4d:3a:b4:51:8c:15:8e:ce:8e:
19:92:53:cb:c7:a1:71:00:ce:ae:7f:6f:64:e7:09:
3f:80:f6:1a:f9:fe:5c:e9:39:53:6f:19:6c:43:a2:
ba:77:e5:78:59:d6:04:09:cc:c3:ef:6f:7e:13:24:
33:25:30:7b:a1:6b:d8:aa:4a:42:be:40:17:a5:a8:
d2:96:3f:78:95:37:24:68:39:01:48:d1:f2:aa:89:
21:07:45:a7:1e:ef:49:87:25:d9:32:ce:b1:70:4f:
f4:92:67:18:49:ec:4c:1c:b3:77:42:d8:40:48:48:
3a:a8:89:a9:db:9a:f1:b0:13:b9:8a:8a:8d:63:1f:
b3:7b:16:c2:5e:24:ec:cc:dd:2d:bd:63:3f:9b:11:
c7:44:2a:fb:ca:15:3d:a6:2e:38:ae:82:d2:60:bf:
91:88:00:6c:98:2c:be:8f:2b:dd:20:ce:ab:ca:bc:
c8:96:ef:c4:24:00:39:b1:39:77:28:96:df:fc:59:
c8:f6:98:45:a4:04:a7:d2:c4:84:b0:b1:89:e7:08:
a1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:68:B4:E9:C1:95:EF:A6:1A:CE:DE:92:15:17:61:3B:1C:43:94:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94506CFA800B11EF83B9357D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.204.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:10:e2:18:48:84:0a:d8:9e:f2:d6:95:2b:79:5a:4c:23:79:
ea:8a:29:b9:6b:9d:0b:e9:9e:ae:07:be:52:32:b3:96:84:94:
cf:af:67:e5:5c:62:14:a1:38:fd:b0:69:e5:d7:d8:52:10:03:
04:a6:05:f5:fd:ec:85:58:5e:ae:17:02:7c:2b:3c:cd:6c:07:
0c:f8:38:86:aa:43:2c:e6:7d:9f:6e:8c:e7:2c:19:af:c1:1a:
63:2a:df:3e:38:bd:74:96:1a:f7:3e:57:1f:de:e5:a8:6e:c7:
3d:31:dd:c3:18:fd:ce:6d:5e:c7:27:de:49:1e:69:37:ca:9c:
73:56:b8:f0:fb:e6:e9:f8:6e:76:ca:83:26:37:23:f8:03:3c:
c8:16:6f:c6:6d:06:e5:30:52:f2:09:9c:f0:19:6a:fd:02:5f:
7a:86:f6:d7:f7:77:fb:57:b0:11:b6:a7:65:02:be:05:e1:bd:
58:86:7f:81:ba:2a:d9:84:c8:88:eb:c7:37:99:4f:c2:99:30:
c7:50:22:04:1b:5b:67:51:aa:f0:7c:95:73:0c:be:6d:1d:1f:
cd:09:be:ec:76:66:c8:3d:a7:b8:13:ed:2f:55:62:cc:3f:3b:
85:87:b2:09:a2:6d:80:d2:ab:9d:80:83:b9:b7:97:2b:96:e8:
a7:30:d0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:39 2024 by rpki-client on console-fra.rpki-client.org