Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C9FCD8496B211EFB597F554762E951A.roa
File: 9C9FCD8496B211EFB597F554762E951A.roa (raw, json)
Hash identifier: 9o+AW+N/mtaT2N4kYfNiFukU/TzRD0uv5VR8+OMmVJk=
Subject key identifier: 5F:9D:01:3A:3A:D0:35:3B:57:F8:23:A5:F8:06:FB:BD:37:FA:B6:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010403
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C9FCD8496B211EFB597F554762E951A.roa
Signing time: Wed 30 Oct 2024 11:32:15 +0000
ROA not before: Wed 30 Oct 2024 11:32:10 +0000
ROA not after: Wed 11 Dec 2024 11:32:10 +0000
asID: 55320
IP address blocks: 154.205.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66563 (0x10403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 11:32:10 2024 GMT
Not After : Dec 11 11:32:10 2024 GMT
Subject: CN=6722193f-960b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:34:00:e2:c3:d2:36:fe:b0:f6:b0:e5:f8:
3f:e0:38:86:a5:43:61:25:11:e7:78:bb:4f:34:ef:
9c:ed:6a:9b:ca:5d:47:fe:40:ff:fb:cd:d2:6e:18:
e4:43:78:cc:9e:81:a8:2d:bf:98:18:03:76:51:74:
c3:30:aa:bd:65:a2:3f:65:5f:45:86:87:58:b0:bd:
26:5d:46:5e:43:a2:9e:cf:34:bd:50:4a:21:03:7c:
b6:0c:b8:8f:21:f2:11:f1:71:c4:db:76:76:a5:5f:
82:a6:90:b2:bc:13:8d:59:e4:08:18:20:2b:fe:14:
ad:db:c1:13:fb:a9:3f:f5:4a:10:99:4a:17:cc:b2:
32:4f:f0:66:1c:c7:1b:df:1f:65:cd:32:4c:79:b4:
c5:6c:59:0e:ac:ce:ed:7f:99:4f:c2:2c:85:8f:e3:
61:6f:ad:e9:65:26:45:70:39:4c:88:97:0f:59:8e:
3f:39:83:19:c7:cc:6a:c4:c9:25:7f:2b:ff:11:a1:
a1:b0:80:8f:05:ff:c2:15:58:06:bd:22:62:75:d9:
08:6c:6c:b1:be:a0:ca:ad:fa:03:58:39:c0:88:fe:
ce:e1:ae:9a:80:15:f6:58:fa:6e:e5:f7:c2:d1:5e:
8f:30:19:11:56:f3:be:ab:0a:e7:43:59:2e:4d:5e:
7b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9D:01:3A:3A:D0:35:3B:57:F8:23:A5:F8:06:FB:BD:37:FA:B6:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C9FCD8496B211EFB597F554762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.140.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1e:22:4b:5f:34:74:3b:06:53:db:2d:36:4e:dd:8d:f6:b7:
59:d4:2b:25:3f:ab:8a:72:02:15:39:b1:d8:b8:0a:72:f0:b6:
dd:5a:b3:c6:57:04:85:8a:d2:ec:6c:26:ba:b0:9a:14:17:06:
e7:09:c8:78:af:0e:6c:ef:c2:9b:4f:fb:64:53:05:ab:21:05:
50:c2:8a:88:1d:bc:07:7f:5b:d0:1a:c3:b1:c8:7e:54:7f:12:
ba:34:0c:46:cb:9d:8f:38:25:b9:5e:f3:e7:fc:fd:13:f6:26:
2b:3a:87:60:27:c2:8a:9e:e6:80:07:b9:f5:d8:a1:d5:b6:f8:
2e:89:9f:de:20:4a:54:bd:ea:0d:4e:29:40:59:0a:8f:15:d8:
13:07:b0:e8:9c:5e:c9:22:60:a4:d7:47:4e:e0:2e:e6:5a:3a:
b1:26:d4:1e:b9:05:b2:cc:00:ed:5c:db:ca:ad:d6:11:64:61:
ed:ac:6f:1b:aa:06:79:70:15:98:f8:11:54:c4:85:10:cf:e7:
e7:61:a3:eb:96:6a:40:8c:f7:9a:23:85:68:90:f3:ad:38:31:
4f:c6:93:df:f0:7e:fd:28:b3:66:ed:70:cb:37:cc:5e:a9:2f:
91:c2:21:82:31:8b:3e:2b:35:8f:a7:ee:19:37:b1:97:0a:b1:
5f:f5:ca:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:17 2024 by rpki-client on console-fra.rpki-client.org