Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95504860726D11EF87521B6F762E951A.roa
File: 95504860726D11EF87521B6F762E951A.roa (raw, json)
Hash identifier: ItX5K7NLhI5wCZh5Yxnt6ND1lv1hM3aSYy/LY1vois0=
Subject key identifier: 29:3D:F5:50:F6:61:C9:1B:FA:54:1D:31:89:42:FE:D5:6E:A5:D1:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE0A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95504860726D11EF87521B6F762E951A.roa
Signing time: Sat 14 Sep 2024 07:47:25 +0000
ROA not before: Sat 14 Sep 2024 07:47:19 +0000
ROA not after: Sat 30 Nov 2024 07:47:19 +0000
asID: 138152
IP address blocks: 154.211.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60938 (0xee0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 07:47:19 2024 GMT
Not After : Nov 30 07:47:19 2024 GMT
Subject: CN=66e53f8d-c1c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cd:78:7c:9d:d8:37:c9:37:85:92:68:83:7f:
01:98:b8:fd:48:c3:52:60:f4:2c:aa:be:f0:66:ab:
96:22:10:8d:87:13:c7:cc:f6:6f:fb:05:24:9d:77:
2d:6a:52:3e:40:ac:b8:c9:5e:53:dc:ff:9a:ec:53:
2d:53:29:f0:2a:48:43:0a:ba:12:ae:48:32:6b:71:
4f:75:b7:3c:13:81:f1:0a:ef:89:c9:85:d4:4c:fc:
61:84:1b:ba:e6:08:a0:f6:0b:90:da:8c:f4:c8:18:
a6:bf:0b:bf:18:92:63:5c:a6:ca:0c:f2:c7:03:cd:
4e:41:1d:89:ce:fc:99:9e:e3:c2:7c:5a:6b:c5:53:
9b:2d:c8:5a:52:1c:3f:e3:94:c7:95:13:9a:d9:40:
d4:27:8b:9c:d7:c6:ef:e9:ab:34:48:e4:0c:e2:13:
fb:52:5a:64:b1:97:ff:d9:d3:09:c9:c0:01:fb:25:
fe:1b:ed:47:33:a7:74:fd:10:98:b1:1a:d4:76:5a:
a9:51:d3:fb:9d:19:54:17:1f:4c:80:c1:7c:3f:a4:
32:13:fd:b9:61:57:a3:04:cb:12:95:ae:95:0e:b3:
b5:8b:15:81:f0:1b:2b:c9:eb:9c:59:9d:07:bc:cc:
6e:d2:a6:ef:1f:26:96:77:df:0d:70:25:eb:85:e2:
a4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3D:F5:50:F6:61:C9:1B:FA:54:1D:31:89:42:FE:D5:6E:A5:D1:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95504860726D11EF87521B6F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.15.0/24
Signature Algorithm: sha256WithRSAEncryption
66:3c:7b:f1:7b:ab:41:7d:14:07:c8:5e:cf:5a:e7:af:61:0b:
c0:c1:00:f8:97:0b:a3:73:11:ee:91:12:34:9e:ed:44:0e:bd:
32:b9:fc:c6:0e:58:36:31:4f:f9:20:4e:34:4b:99:27:ac:f9:
7b:72:61:f0:0c:53:e6:23:e9:ff:c0:3e:c4:17:06:6b:a8:db:
b0:d7:63:34:d8:a4:15:c0:e1:6c:25:bf:a2:0e:89:76:03:2c:
11:4e:33:16:aa:48:95:50:e8:a7:69:f7:b8:82:0c:92:b4:5b:
03:7d:69:3a:67:dd:aa:26:f2:60:fc:1d:90:37:5b:61:94:3c:
b3:db:73:dd:c5:93:a6:e0:ed:7a:e5:43:4f:73:85:1b:5c:b8:
cf:22:18:48:ef:2d:77:b8:de:1a:c6:93:b0:1f:b8:8a:9b:12:
fd:0e:69:03:e6:63:48:c3:d4:e1:c5:07:68:05:8e:f9:5b:46:
71:cb:35:81:a2:a6:ca:7d:a0:cb:39:1d:71:ee:06:6f:75:ac:
ff:94:c1:f7:92:4f:36:ac:26:ed:9b:78:4e:12:10:05:00:82:
0b:dd:14:0b:8f:76:85:4d:a5:27:cb:e0:33:0a:b6:a7:8f:66:
a3:f2:00:ea:37:1d:fa:2b:69:b3:a5:87:f3:f4:a9:6f:e5:0d:
fc:00:1d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:16 2024 by rpki-client on console-fra.rpki-client.org