Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98084B7C9F7A11EF8A4220AC762E951A.roa
File: 98084B7C9F7A11EF8A4220AC762E951A.roa (raw, json)
Hash identifier: ZqHynQDaj7ON03lwELFeJv6ngNUuvDTBuTbYtzpMzsU=
Subject key identifier: 22:68:25:F5:04:6C:28:FC:C2:9D:DA:67:BE:4D:98:3B:84:61:B8:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B04
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98084B7C9F7A11EF8A4220AC762E951A.roa
Signing time: Sun 10 Nov 2024 15:43:56 +0000
ROA not before: Sun 10 Nov 2024 15:43:52 +0000
ROA not after: Thu 12 Dec 2024 15:43:52 +0000
asID: 214120
IP address blocks: 154.199.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68356 (0x10b04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 15:43:52 2024 GMT
Not After : Dec 12 15:43:52 2024 GMT
Subject: CN=6730d4bc-76f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:16:c1:dc:b1:5e:5d:f6:27:4d:e2:2d:3d:8b:
0e:95:56:8f:e6:e1:d8:fa:2f:96:ff:21:40:58:28:
ec:2d:ae:e4:2b:c0:31:a1:b4:84:2b:7c:96:61:d0:
b0:14:4c:94:65:a6:5a:72:99:ae:71:03:0c:a7:af:
f6:1c:09:f3:c1:4e:22:82:de:ce:07:81:2c:54:c4:
2b:21:63:90:c8:7e:ee:0c:d6:20:d0:4a:9c:84:b3:
94:cc:ee:15:a3:6e:61:d7:8c:81:af:28:d5:b0:78:
e6:7b:eb:d4:2d:61:c8:30:a8:65:32:86:31:07:fd:
8e:57:ec:f6:19:f4:d3:ee:d2:4d:1d:84:5f:c1:ca:
45:25:7f:5b:eb:b7:88:85:d6:6f:95:9f:04:56:88:
42:40:8d:95:db:6c:c3:b1:76:96:73:d0:96:b7:d6:
51:df:b4:be:a6:a6:22:d4:ee:86:93:b0:24:d2:4f:
f1:36:ea:bb:fd:ce:ac:94:b5:81:30:f7:be:20:d6:
ae:3a:f4:c3:ab:06:f4:76:d5:2c:f0:13:f4:f6:16:
2c:c9:cf:d8:5e:a5:9d:f0:a5:38:d2:9e:36:e8:cc:
c7:68:3f:60:4e:b3:49:d8:eb:6f:09:37:c7:cb:38:
50:35:11:e8:5f:a9:ea:0c:8b:98:d2:c2:85:e3:cf:
0c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:68:25:F5:04:6C:28:FC:C2:9D:DA:67:BE:4D:98:3B:84:61:B8:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98084B7C9F7A11EF8A4220AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.1.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:7f:76:5d:8b:35:a6:9d:d2:4e:73:ea:1a:c2:d8:d9:99:74:
e2:a3:b5:b5:99:c0:fb:5a:b2:b8:95:af:cb:d3:d1:a3:53:96:
18:ff:5e:f7:cc:69:dd:f1:94:fb:38:64:2a:48:8d:de:6e:a9:
a1:b6:9d:f1:2b:56:c5:1b:ec:0b:5d:b2:46:db:ff:68:1f:fe:
f2:e1:7c:4d:83:98:ae:39:ad:61:33:ea:24:72:ec:80:66:99:
24:4c:35:37:57:5c:37:2d:8c:3c:34:0c:33:90:b4:d5:4d:84:
af:ea:22:fd:64:c5:ed:29:f1:06:ef:c7:ff:43:07:96:ca:e8:
dc:84:2d:1a:ad:1c:ba:d9:c7:a2:c0:5a:0d:2e:84:e9:ab:e9:
16:2f:47:52:72:24:bd:b0:d8:5e:6a:a5:ee:59:d7:e4:51:db:
a2:30:7a:57:70:14:ae:61:aa:82:84:96:27:5a:3b:eb:33:b8:
cc:1f:a9:ac:63:b7:7a:ba:a0:ef:7f:52:f9:28:14:99:ac:23:
52:36:6a:dc:d8:4c:b4:ab:b7:3c:4c:e9:71:e8:67:d1:de:92:
ee:67:f8:e9:48:78:db:0d:65:1c:b3:c4:09:2b:ed:84:aa:24:
6f:6c:52:01:03:04:b7:72:88:9d:b8:27:a0:f4:5e:fc:8e:2b:
58:4a:05:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:40 2024 by rpki-client on console-fra.rpki-client.org