Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9A9E3AC7B1E11EF8F559B8F762E951A.roa
File: A9A9E3AC7B1E11EF8F559B8F762E951A.roa (raw, json)
Hash identifier: 67SU5jNLjWvtd/C8qKFHdoBwcXTeg6U7vd2EJzfeS0Q=
Subject key identifier: D8:2A:63:61:95:0C:01:1D:F9:90:97:22:FF:09:F5:D0:A8:11:37:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F330
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9A9E3AC7B1E11EF8F559B8F762E951A.roa
Signing time: Wed 25 Sep 2024 09:15:10 +0000
ROA not before: Wed 25 Sep 2024 09:15:06 +0000
ROA not after: Wed 18 Dec 2024 09:15:06 +0000
asID: 328608
IP address blocks: 154.214.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62256 (0xf330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:15:06 2024 GMT
Not After : Dec 18 09:15:06 2024 GMT
Subject: CN=66f3d49e-9cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9f:00:57:b8:da:3d:53:07:30:df:53:be:b6:
4f:4b:67:f0:19:ef:58:f7:0d:08:39:9c:c2:a7:08:
b1:fc:cf:34:7d:ed:1d:e7:45:27:4c:40:0f:f6:d3:
10:d4:f8:d5:3f:10:ca:37:ef:ed:62:35:b4:7f:b7:
b1:41:db:77:f5:81:f4:99:0f:ac:e6:55:78:12:ac:
f5:0a:ae:51:7e:b1:87:e7:5d:4d:49:e6:5d:6f:14:
df:3d:ec:dc:6c:d1:86:dd:39:cd:9d:5d:41:f9:16:
38:51:f9:ba:86:90:ad:1b:c9:fc:89:a5:7d:eb:18:
a8:23:39:e1:d5:6d:1f:67:88:57:7a:10:79:11:e2:
93:23:86:2b:ae:1c:ee:e1:c2:19:c7:12:4f:a5:a1:
b6:2d:d2:94:94:e1:48:5e:9d:be:aa:44:4a:ba:37:
28:ae:a5:7d:92:99:f1:c8:21:b9:20:fa:1e:09:5a:
b5:b3:77:8d:47:9b:6c:a8:04:d8:86:15:a7:58:d6:
0a:7b:7d:a3:52:05:2a:fd:fa:87:f5:d8:92:aa:07:
ab:c1:9c:a1:8e:05:7d:83:2a:4b:cd:61:93:d5:47:
cd:84:a8:d4:53:e7:84:c5:25:92:e3:74:51:cb:f8:
d3:d3:0e:07:26:49:67:a3:4c:53:4a:09:c2:ae:44:
9e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2A:63:61:95:0C:01:1D:F9:90:97:22:FF:09:F5:D0:A8:11:37:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9A9E3AC7B1E11EF8F559B8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.210.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ae:95:62:50:7e:bc:69:bd:67:45:92:13:87:4f:d1:da:d7:
4f:d0:e5:e2:44:30:7c:c7:71:f5:87:6a:99:1f:7c:45:76:ce:
e7:2c:30:15:d0:2d:2f:57:bf:fe:9a:12:ca:de:0f:1a:9e:10:
c5:ab:38:06:61:7c:c4:31:1c:c7:44:f5:c2:87:db:dd:9a:34:
5b:d8:71:6f:7a:5e:e6:ee:16:a3:d1:7f:00:f0:c6:cd:ab:f0:
8a:3a:e7:d0:17:83:aa:af:10:bc:b5:1d:ae:9a:25:30:f1:2d:
8c:13:db:20:e1:44:24:e0:d0:7b:bb:4f:25:45:a9:1c:a9:d1:
a7:48:2f:7c:4e:39:6f:6c:60:a2:1f:a0:c3:e7:1e:45:db:5e:
ff:89:ea:8b:dd:94:5f:16:13:8f:78:aa:c5:5f:6f:7d:d5:c1:
b1:a2:65:98:46:77:a1:c7:91:3d:7c:10:08:62:00:eb:09:ef:
5b:8f:e4:7f:38:19:c8:6e:0e:e7:cb:48:61:05:41:04:a6:d0:
e5:5b:e0:84:ae:04:36:eb:c8:d5:c3:c9:fd:b4:fa:fd:e5:5c:
fc:10:ec:14:e7:8d:ba:9d:dd:ad:b9:64:f8:f5:e4:ee:88:8e:
50:12:dd:2b:9f:ed:02:9d:6a:0f:9d:7b:36:cc:7a:e5:24:e9:
13:b4:48:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:19 2024 by rpki-client on console-fra.rpki-client.org