Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96D50EF492B711EFBA206ABF762E951A.roa
File: 96D50EF492B711EFBA206ABF762E951A.roa (raw, json)
Hash identifier: 3mgl1dGFc9DVr3AOvimSTGuKpV7GcOWalSq+IlcGezg=
Subject key identifier: 5F:B9:BB:23:E2:BC:B5:5B:E8:69:AF:4C:26:52:F4:AC:9A:84:A9:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010210
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96D50EF492B711EFBA206ABF762E951A.roa
Signing time: Fri 25 Oct 2024 09:57:48 +0000
ROA not before: Fri 25 Oct 2024 09:57:44 +0000
ROA not after: Sun 01 Dec 2024 09:57:44 +0000
asID: 202656
IP address blocks: 154.218.28.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66064 (0x10210)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:57:44 2024 GMT
Not After : Dec 1 09:57:44 2024 GMT
Subject: CN=671b6b9c-a26a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b9:ff:03:24:a1:d5:0b:93:8b:fb:9a:6e:8d:
97:8a:d0:ef:4f:7c:0d:7e:fc:69:45:dd:41:bf:c9:
35:fa:85:39:39:c5:17:98:88:1d:29:43:a0:64:a6:
d5:0e:06:1b:0e:a2:05:49:d8:f1:3c:46:3a:3d:9c:
c0:60:cb:d5:68:09:a5:4c:2b:62:aa:84:60:06:ef:
93:6b:54:14:a3:3f:e2:96:6f:85:ec:5f:70:10:70:
71:da:7d:a9:43:12:a7:6d:30:a6:b0:89:82:3d:c3:
60:79:e3:23:56:c5:f3:a8:4a:3c:8c:fb:b2:9c:53:
53:90:87:5b:34:df:70:d6:c6:ec:bc:55:89:3d:01:
1f:5c:77:a7:6d:cf:99:6a:08:63:0f:4b:fa:f6:47:
7f:e1:a7:0c:01:08:43:a0:11:46:5d:ce:fb:2c:01:
51:5b:36:f5:86:b2:09:47:75:db:70:89:29:a2:ba:
f7:84:dc:cd:e1:d7:dd:41:8b:05:48:e4:e4:0b:cc:
b0:b3:dc:c0:3e:09:86:40:de:f0:31:b8:28:c0:99:
ff:4f:70:28:d7:79:68:78:73:8b:1c:09:aa:71:f0:
ca:05:b7:8b:52:ed:73:15:a0:5a:50:08:6b:2e:49:
55:1c:71:7e:4a:c8:9e:6f:5e:72:93:46:b7:f8:e1:
6a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B9:BB:23:E2:BC:B5:5B:E8:69:AF:4C:26:52:F4:AC:9A:84:A9:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96D50EF492B711EFBA206ABF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.28.0/23
Signature Algorithm: sha256WithRSAEncryption
26:32:74:d7:6f:1b:e5:b4:a7:b9:fc:65:13:47:f1:11:97:28:
dc:89:b4:0d:04:5f:33:8f:78:ba:c8:81:d2:d0:7d:6d:69:95:
33:52:d0:f8:be:85:ae:7f:b1:d7:df:9d:85:6a:02:8c:06:71:
ac:1b:01:dd:eb:58:33:b9:ef:8e:33:53:1b:3e:e5:26:04:35:
c5:82:c1:b8:c6:2a:9d:34:2c:09:ff:62:1c:01:06:90:4c:a2:
7d:74:8e:a7:c9:fb:db:5d:3a:a3:e3:6e:06:44:25:d1:29:5d:
8a:15:0c:86:be:d7:9b:31:92:81:ca:9a:0b:51:1a:d5:ad:b3:
cb:71:c9:5b:00:bc:11:90:ab:5e:5a:3f:bf:4c:d7:c1:a2:11:
28:a3:4d:cf:82:7e:42:97:1a:7e:2b:a9:ba:7a:60:fc:b4:b0:
7d:5f:8d:0a:b7:a6:23:42:db:44:46:39:df:61:8d:4a:7f:7a:
2d:97:db:dc:56:95:6e:fc:59:74:72:f8:8f:6b:4e:20:9f:aa:
49:76:b2:52:14:32:e4:b6:d1:e5:52:94:ab:c0:9a:35:07:ab:
ea:65:d7:0f:59:bf:b2:20:dc:05:24:65:7e:f3:bf:98:c3:08:
00:7b:71:c0:5e:ac:fa:c6:b0:6e:4b:f7:0a:b9:ce:e8:bc:de:
c5:1c:d8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:40 2024 by rpki-client on console-fra.rpki-client.org