Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65E899C92B511EFAB4CD0B3762E951A.roa
File: A65E899C92B511EFAB4CD0B3762E951A.roa (raw, json)
Hash identifier: WlkjYXM0QnnSBRXLDQvPjtkLnBkjQnOkgk/9C9VUzZY=
Subject key identifier: FE:85:BC:68:37:D8:7E:96:5D:57:7D:4E:32:27:F5:CA:8E:9A:52:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65E899C92B511EFAB4CD0B3762E951A.roa
Signing time: Fri 25 Oct 2024 09:43:55 +0000
ROA not before: Fri 25 Oct 2024 09:43:51 +0000
ROA not after: Sun 01 Dec 2024 09:43:51 +0000
asID: 202656
IP address blocks: 154.222.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66040 (0x101f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:43:51 2024 GMT
Not After : Dec 1 09:43:51 2024 GMT
Subject: CN=671b685b-aa78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:02:5f:50:62:da:07:c7:4a:eb:27:7a:03:7b:
79:36:59:09:ba:6f:48:9a:35:e2:92:6f:6e:ec:58:
0a:a3:c0:b8:71:c8:e1:3e:6e:c5:9f:76:ca:1b:46:
ea:de:48:67:39:be:8a:ba:39:0e:f7:86:01:de:47:
3d:c2:44:6d:01:77:02:cf:fd:2c:94:67:c6:df:a5:
e8:69:44:23:9d:8f:c3:b4:cd:dc:24:f3:30:9f:4a:
e6:24:0d:c4:0d:00:17:0c:6d:b7:68:58:0f:16:f2:
7b:eb:fd:40:19:47:84:c4:fd:42:ad:b8:22:56:3f:
d8:e0:03:96:f6:02:64:9a:f5:a1:b3:95:19:1b:af:
d0:b3:06:da:0f:b3:0f:5e:a2:c9:17:3b:ef:0a:d3:
93:61:d5:2b:57:56:72:82:6f:b7:01:5c:9f:c9:42:
0a:cd:40:77:df:ea:ad:d3:60:b9:e0:fe:c3:07:84:
d6:97:9d:dc:4f:b7:a4:8a:f3:d8:36:27:c3:12:6d:
8b:d7:a9:0d:88:c8:f6:6b:86:58:58:fd:12:be:b2:
e1:4b:22:fc:79:58:e2:e4:ed:7f:d2:41:b6:43:8c:
9e:77:87:3f:04:57:20:1d:0d:ac:33:ea:b3:6f:b9:
bb:76:14:17:63:5f:d8:68:f1:c1:3e:ca:76:5f:43:
40:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:85:BC:68:37:D8:7E:96:5D:57:7D:4E:32:27:F5:CA:8E:9A:52:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65E899C92B511EFAB4CD0B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:04:fc:40:3b:28:30:00:76:81:17:16:f5:a0:f2:19:84:ba:
7e:ec:5c:65:e5:45:66:80:32:05:93:09:2b:81:d3:b6:1b:aa:
90:c9:90:9c:59:26:a6:e2:09:82:9e:65:8f:a6:59:17:99:a1:
b1:59:17:53:ed:54:59:64:d8:dd:6d:e5:17:72:b4:e7:ef:c9:
79:05:93:c0:63:56:12:5c:02:76:e5:10:6d:95:b5:59:d4:c0:
af:1c:3f:44:8d:e8:89:e7:a2:0d:c7:98:0b:50:f4:67:ca:32:
c7:86:33:85:51:ba:c3:78:bb:ff:c7:71:44:87:5d:ea:d8:e2:
ff:a6:e1:18:7f:7a:96:5b:04:5f:51:61:6e:93:05:7d:72:55:
aa:1c:41:33:1b:3c:e8:cb:2c:03:1a:1b:91:4d:08:90:8b:9b:
54:2e:f4:fd:76:ea:ae:cf:ea:1a:a9:7d:8e:b1:1c:69:7a:90:
87:d2:56:60:fe:4e:32:e9:7d:16:06:7c:e9:45:09:fd:28:f2:
87:26:73:56:4a:bf:7a:b3:5f:9f:23:10:48:6d:ee:94:40:e5:
57:83:4d:05:12:87:12:34:43:a9:95:21:3c:cf:2d:e7:53:89:
5f:64:95:30:08:9d:21:14:39:b3:a9:35:43:38:fc:9f:f4:29:
75:b0:fd:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:42 2024 by rpki-client on console-fra.rpki-client.org