Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FB60652976411EF99A2F6B8762E951A.roa
File: 9FB60652976411EF99A2F6B8762E951A.roa (raw, json)
Hash identifier: QL/grMNDRcHoeuis81KGJNfJR/XGhje32UWVQYDcYwE=
Subject key identifier: A2:05:11:8A:1E:6C:32:EA:B5:EB:17:69:59:5E:60:EF:C8:4A:94:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010470
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FB60652976411EF99A2F6B8762E951A.roa
Signing time: Thu 31 Oct 2024 08:46:30 +0000
ROA not before: Thu 31 Oct 2024 08:46:27 +0000
ROA not after: Mon 13 Jan 2025 08:46:27 +0000
asID: 135377
IP address blocks: 154.202.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66672 (0x10470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 08:46:27 2024 GMT
Not After : Jan 13 08:46:27 2025 GMT
Subject: CN=672343e6-c954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:98:40:fc:6c:dd:d0:35:77:d1:e5:06:5a:76:
25:fe:72:61:ac:06:b3:6c:ef:9c:ee:ab:ae:16:15:
15:5c:df:92:2c:ef:c7:36:96:24:12:1b:84:9d:df:
df:21:d6:21:75:90:e8:b5:1c:ea:96:61:ef:29:b7:
12:53:4f:41:04:8f:50:0a:c0:9c:2f:f8:c6:e4:6e:
91:fa:a3:61:31:0b:35:9c:68:76:e6:74:0b:09:2c:
8b:7c:87:33:a3:c8:c1:60:92:17:e6:45:c1:51:c4:
c8:ec:cd:15:19:4c:a4:e9:fb:ab:45:45:07:ad:73:
26:20:e9:30:c5:d9:d7:44:ce:0d:3b:fe:4c:44:6f:
2e:04:b0:ae:44:cb:6c:be:13:4d:3b:80:7f:12:fc:
da:13:3a:81:67:8a:30:d5:f5:5c:51:48:3f:33:b8:
d7:82:96:e1:67:1b:76:16:a1:09:15:e9:af:6e:32:
e8:99:97:a3:18:c6:48:87:a5:c3:e6:40:3e:fe:2f:
f6:ae:19:0e:98:b1:29:5c:c3:db:af:21:a5:cc:75:
35:cc:3a:61:56:51:2a:de:a3:f0:28:f3:ca:c0:2d:
6b:71:26:0b:67:5e:c7:cf:dc:02:f2:7a:44:8f:b0:
57:a2:c3:e2:df:10:c3:c4:62:56:99:a5:97:ff:9d:
0e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:11:8A:1E:6C:32:EA:B5:EB:17:69:59:5E:60:EF:C8:4A:94:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9FB60652976411EF99A2F6B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.68.0/24
Signature Algorithm: sha256WithRSAEncryption
88:da:13:72:7d:4f:38:9d:1e:a4:c4:c5:83:2f:01:71:b0:d4:
ee:e3:1e:20:bc:f0:7d:d9:9e:1d:aa:9e:87:cb:64:9c:6a:1c:
54:98:fe:fb:95:56:06:aa:2b:51:1c:0b:61:95:95:13:61:69:
3f:57:43:e9:c6:0b:0c:26:b1:eb:f7:24:c5:3b:e5:12:bd:48:
0f:48:9c:f2:53:8e:aa:74:8d:f3:11:c1:28:76:79:fe:b7:e7:
37:1d:63:74:f4:a4:dc:4a:e7:78:82:5c:5f:b6:6f:64:11:6c:
38:e1:33:70:d3:81:5f:6e:88:de:09:ef:aa:b1:3d:cf:cb:d7:
70:1c:84:aa:85:6e:91:0c:e7:82:e1:00:38:01:63:3d:aa:4b:
4b:cd:7b:6b:21:ce:b7:93:4b:9b:7f:31:94:12:76:6e:54:23:
3d:17:db:d1:79:94:a2:30:fd:c9:92:bc:f3:b7:05:db:63:68:
4c:3b:46:b3:02:0c:6c:35:b0:d0:10:ab:0e:be:a0:1a:27:46:
ca:c2:69:39:10:e2:29:26:c2:d3:a8:52:48:52:e6:c4:34:74:
6f:c5:4c:7a:11:86:48:fb:95:58:a2:92:79:6c:7c:0e:2a:ab:
2e:11:dc:10:b4:3e:0a:97:2f:3d:c1:d9:ce:cf:de:51:57:bd:
c9:9f:30:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:18 2024 by rpki-client on console-fra.rpki-client.org