Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/991AB2D6911D11EFB93B58AA762E951A.roa
File: 991AB2D6911D11EFB93B58AA762E951A.roa (raw, json)
Hash identifier: ctolZFF3lvjshoY7IJdWykAtYy6j8H9T0IS3Wy6pwys=
Subject key identifier: DC:1B:BF:FC:BA:C7:76:D3:01:85:8F:3F:00:32:0C:33:20:00:DA:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100DE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/991AB2D6911D11EFB93B58AA762E951A.roa
Signing time: Wed 23 Oct 2024 09:02:58 +0000
ROA not before: Wed 23 Oct 2024 09:02:54 +0000
ROA not after: Tue 26 Nov 2024 09:02:54 +0000
asID: 21738
IP address blocks: 154.206.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65758 (0x100de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:02:54 2024 GMT
Not After : Nov 26 09:02:54 2024 GMT
Subject: CN=6718bbc2-e063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:d9:f8:20:78:02:98:d5:b0:98:5e:8b:a8:
88:8b:fa:3a:02:2b:c9:bc:b3:50:19:8a:0f:a7:51:
60:0f:15:cf:fc:92:d3:c7:63:ed:34:6e:67:93:e8:
40:df:45:30:cb:b4:ef:f8:15:13:4b:89:93:cc:87:
f3:24:cc:2f:63:ea:20:e0:6b:d0:ac:c0:d4:b5:c3:
77:56:e7:db:ee:d7:41:bc:d8:bd:f4:b0:96:5c:41:
35:26:95:ee:9c:18:33:83:7e:6c:63:df:42:18:07:
34:2d:26:0d:21:48:04:4c:88:26:bb:6c:98:cb:9d:
f0:b8:5b:34:05:58:53:d9:de:db:cc:04:61:f9:50:
44:0b:84:8b:87:b8:68:0b:4b:a1:79:f6:49:df:d0:
fb:ed:19:38:14:10:d3:f4:d7:79:ca:9c:b1:77:05:
eb:51:90:99:fa:c9:30:c4:24:b4:08:80:95:9a:d1:
89:2e:f5:49:17:57:84:72:df:80:b8:39:fe:0c:74:
65:50:c8:6e:cd:77:2f:07:32:89:5b:8d:41:a1:15:
9f:c4:55:06:3d:ae:95:c7:b2:b5:48:9c:31:1c:48:
e9:da:9c:c6:0a:e6:89:50:1a:f9:fc:4c:08:16:03:
2e:6a:82:5d:4f:17:aa:78:b3:8a:76:3a:c4:ae:ea:
97:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1B:BF:FC:BA:C7:76:D3:01:85:8F:3F:00:32:0C:33:20:00:DA:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/991AB2D6911D11EFB93B58AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.19.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:a0:e0:1c:5a:62:53:de:30:e4:77:59:2f:57:28:3a:65:e1:
8b:ed:73:8f:6d:3e:89:71:e6:64:4c:b9:6a:86:ca:2c:11:65:
31:b2:11:12:36:e5:11:bb:f8:d9:34:91:67:08:c6:60:5e:c9:
0f:8f:10:ed:7d:d2:4e:9d:91:c2:9b:40:bc:d9:29:33:14:80:
54:53:53:e5:85:70:06:11:59:36:c9:eb:2a:ee:d9:04:b2:d0:
45:39:cf:d3:9d:24:a1:32:f2:ef:96:fe:5f:1d:69:fe:61:f7:
3b:53:42:7b:fe:34:5f:57:5f:18:20:70:f5:9d:ee:a5:0a:54:
02:45:24:9a:69:5f:6f:1d:c4:8f:71:a2:53:04:41:b2:23:2c:
b0:f5:cb:28:0c:bf:43:98:4c:90:54:42:b4:a8:b7:c1:e3:a5:
bd:42:7f:dc:7d:9d:8f:9e:e5:83:bc:5b:f8:8f:0d:66:dd:ea:
aa:16:6d:b8:0a:46:8c:87:54:c8:39:e7:03:33:44:25:6b:9c:
bf:ef:cb:46:e8:14:d4:e2:ae:b4:e7:85:1a:2e:e2:66:95:52:
a6:10:c5:11:f2:9b:10:10:b7:a0:3e:ae:de:69:c3:d0:a8:bd:
85:7b:69:2e:44:f1:9b:64:fc:d8:88:07:1f:85:d1:03:1f:07:
73:ea:9e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:17 2024 by rpki-client on console-fra.rpki-client.org