Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A820EFE0A9D011EFACEE9F60762E951A.roa
File: A820EFE0A9D011EFACEE9F60762E951A.roa (raw, json)
Hash identifier: v+JwtKnU5yKuoWJbcfHUtXdTgDIL6verzQbKenXrixU=
Subject key identifier: 89:26:16:AC:7C:D1:37:99:71:03:06:8C:BD:D4:D5:C8:81:A6:5E:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011218
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A820EFE0A9D011EFACEE9F60762E951A.roa
Signing time: Sat 23 Nov 2024 19:25:11 +0000
ROA not before: Sat 23 Nov 2024 19:25:07 +0000
ROA not after: Tue 03 Dec 2024 19:25:07 +0000
asID: 62240
IP address blocks: 154.194.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70168 (0x11218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:25:07 2024 GMT
Not After : Dec 3 19:25:07 2024 GMT
Subject: CN=67422c17-0a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3c:dc:a5:e1:12:06:59:25:c8:30:05:36:53:
5f:88:df:c6:fd:00:ac:4e:7c:2d:39:b2:b1:c1:ea:
bf:10:69:d1:d5:f9:c9:6c:67:8d:f9:9c:e2:04:82:
48:35:41:03:84:60:07:64:f3:f0:b1:d6:5c:fd:8f:
d0:bf:8d:12:b2:7a:37:a5:b1:47:f9:39:05:d3:33:
8a:95:af:3f:d7:83:fd:f0:1d:5b:55:c2:e2:d1:3d:
22:ac:cf:43:1e:36:84:93:0d:b1:11:18:0c:ed:25:
76:2e:08:ad:cc:35:4b:f0:fb:5f:d6:98:47:76:80:
21:5a:52:1b:63:ad:d7:f4:b8:4b:68:e1:cf:98:83:
90:39:82:5f:90:5c:a2:4b:c7:4b:80:8f:1d:40:9d:
4c:c6:74:44:f5:4d:a1:58:ef:f1:20:12:4c:52:d1:
e2:f8:78:b6:58:46:88:02:ff:ca:f6:2d:21:dd:19:
f3:cf:68:7d:84:4d:d7:29:f7:ca:21:60:10:08:0a:
06:a3:1f:d9:90:3d:5a:30:75:58:f9:61:e7:a8:70:
ec:3e:92:01:dc:7b:2d:67:19:72:aa:b8:8b:f9:a5:
13:ca:79:a4:2f:80:00:fe:8a:27:78:b0:22:06:10:
aa:07:49:70:59:66:58:11:2f:c5:2a:96:3a:18:5a:
c3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:26:16:AC:7C:D1:37:99:71:03:06:8C:BD:D4:D5:C8:81:A6:5E:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A820EFE0A9D011EFACEE9F60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.7.0/24
Signature Algorithm: sha256WithRSAEncryption
44:88:b7:66:00:a4:a9:57:99:65:95:21:32:58:4e:f0:ca:79:
3b:b7:a6:76:8a:46:d2:d8:a1:f2:41:e1:81:10:b3:3f:20:79:
12:d4:24:6c:4e:b1:d8:50:e7:c4:3f:1a:2e:15:ea:c5:1e:c1:
3d:65:95:88:fa:4d:74:3d:60:e5:b2:63:d9:ca:96:1e:42:81:
b9:af:cd:27:e8:b8:61:35:7a:42:1e:99:29:4f:e8:9a:1e:0f:
af:bb:f2:fb:44:93:83:fe:c8:b2:fc:4c:a1:c5:d0:32:57:0d:
79:51:ea:ad:04:ad:ca:9c:06:eb:24:33:b7:db:09:a4:e9:06:
d4:6a:41:51:69:ba:40:ea:23:d7:f9:ea:13:5d:99:ed:27:f4:
ae:c1:9d:27:11:5c:02:80:3d:8f:28:a6:89:28:f3:90:c3:00:
f7:3e:8b:63:c8:df:20:37:73:1c:57:ee:c3:d1:1d:57:29:28:
6e:ed:18:dd:f7:1d:58:f6:a7:59:8a:30:14:31:7e:56:34:a4:
8f:05:79:6f:ab:56:6a:9e:6f:18:ca:ef:b5:f1:dc:57:70:68:
89:8b:2d:fd:c6:23:4b:f1:4d:1a:bb:da:71:ab:10:56:5b:01:
77:59:3f:60:79:30:6d:a0:08:80:51:70:77:36:a2:86:ab:3f:
5c:51:79:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:42 2024 by rpki-client on console-fra.rpki-client.org