Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A25E6A7092B411EFA8BB60AC762E951A.roa
File: A25E6A7092B411EFA8BB60AC762E951A.roa (raw, json)
Hash identifier: mqRfNntustVBGv1vMlFdz49sJt9aX3K1YQ8UtjQ9eV8=
Subject key identifier: 90:CA:33:14:07:C8:26:28:0E:31:94:38:C6:76:4D:3B:F1:85:F2:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A25E6A7092B411EFA8BB60AC762E951A.roa
Signing time: Fri 25 Oct 2024 09:36:39 +0000
ROA not before: Fri 25 Oct 2024 09:36:35 +0000
ROA not after: Sun 01 Dec 2024 09:36:35 +0000
asID: 48031
IP address blocks: 154.222.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66028 (0x101ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:36:35 2024 GMT
Not After : Dec 1 09:36:35 2024 GMT
Subject: CN=671b66a7-f77d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0e:ae:b3:f5:9d:b3:05:51:6d:70:2e:6f:d1:
b6:61:bf:0c:23:a7:41:c8:09:66:1d:22:a5:e2:2c:
ea:ad:e6:e9:c6:bd:41:3b:22:85:89:bd:c8:f2:09:
7e:a0:28:c4:d0:3a:98:04:06:70:fa:fc:72:93:7b:
29:33:e7:3c:8f:4b:0b:8e:c5:41:0a:dc:63:fe:7d:
9c:6f:82:d4:89:71:d7:6b:cc:b5:b0:aa:03:91:8d:
65:76:61:bf:63:4b:5f:01:04:6d:c6:88:65:4c:ec:
13:69:82:f6:1f:16:8f:20:81:7d:7d:01:79:60:9f:
6a:bd:b0:a6:cb:ac:bf:0c:c9:a0:fd:16:d3:0a:4c:
40:37:ad:8e:6f:86:e5:a7:bf:b7:d3:52:ad:89:66:
64:ce:1e:f0:21:c2:d4:fe:db:ff:af:36:c7:2b:aa:
40:9f:8d:6b:69:42:fb:80:62:ec:ca:14:0b:c3:0f:
18:6e:b1:05:7a:5d:6e:82:a4:cf:b9:de:db:f8:57:
93:8b:58:53:3d:95:3a:df:1a:d1:c2:1c:a6:34:f2:
df:0b:8e:f4:66:f0:13:b7:9e:2d:cc:07:28:c6:4d:
3c:db:b6:b9:df:5b:a8:76:dd:bb:fe:ef:3d:9b:e5:
45:4c:93:19:74:4a:f7:e6:67:a3:75:ab:08:f0:10:
f3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:CA:33:14:07:C8:26:28:0E:31:94:38:C6:76:4D:3B:F1:85:F2:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A25E6A7092B411EFA8BB60AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.216.0/23
Signature Algorithm: sha256WithRSAEncryption
95:68:91:c9:a5:28:34:5e:80:9a:a3:4d:7d:09:ee:c7:b4:be:
dc:2c:03:1f:63:7c:be:66:13:2e:c6:fd:39:7c:e5:52:17:6d:
61:75:82:c7:30:90:76:1a:e6:fa:3c:2b:b8:33:3e:a7:ca:88:
46:be:81:b8:33:6d:d3:4a:a7:3e:68:68:d1:25:0c:c9:3e:52:
c1:aa:69:f6:4d:f2:19:10:8d:fa:44:3c:f7:d7:6d:bc:d9:62:
01:ef:90:12:50:5c:c1:3d:92:d5:9e:b1:c8:c9:29:34:94:bd:
34:7a:40:a3:17:73:e3:5f:91:ac:28:68:52:c9:5a:ff:78:f8:
18:7b:c2:2f:ad:38:60:43:37:20:1c:08:9d:29:1f:1b:8f:ff:
74:20:98:f9:a8:df:f7:24:e0:3c:20:5b:83:52:52:d1:56:e3:
0d:93:f9:16:49:4b:a4:76:8f:d4:f4:70:63:a3:e0:df:11:a2:
62:64:e9:2c:88:e5:b1:cb:a8:25:f6:90:b8:7b:d3:21:30:08:
93:c7:bd:7c:40:4b:15:12:eb:c1:a0:1c:9d:8e:45:ea:0d:f3:
10:8d:21:44:53:ff:df:95:1e:1b:a9:70:03:87:f6:81:0f:25:
cf:d1:fe:34:f2:fb:2e:89:49:1c:08:24:ac:4a:a8:b5:57:59:
76:d8:30:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:18 2024 by rpki-client on console-fra.rpki-client.org