Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABA61AACAE1B11EEB064179B775412E6.roa
File: ABA61AACAE1B11EEB064179B775412E6.roa (raw, json)
Hash identifier: P2/IIznIR6H6t/F9Erdca1OVQyUljYBr7vyq4e5MjC0=
Subject key identifier: B6:CB:B5:E5:38:9C:9A:5D:CA:59:AD:2C:F9:7A:A4:7C:1B:9E:42:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABA61AACAE1B11EEB064179B775412E6.roa
Signing time: Mon 08 Jan 2024 11:47:16 +0000
ROA not before: Mon 08 Jan 2024 11:47:13 +0000
ROA not after: Tue 14 Jan 2025 11:47:13 +0000
asID: 138965
IP address blocks: 154.223.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29354 (0x72aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 8 11:47:13 2024 GMT
Not After : Jan 14 11:47:13 2025 GMT
Subject: CN=659be0c4-0fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6a:d0:0a:84:8a:53:1c:86:da:54:08:69:a0:
66:f0:e8:98:9e:bf:fe:93:b5:fe:e2:47:a3:61:3a:
76:dc:8e:bd:07:e4:0f:15:4b:54:df:8e:4c:6c:a1:
98:ed:12:e2:2c:35:b4:ef:51:8e:48:11:83:f3:01:
41:d2:52:15:b0:cf:c5:78:4d:60:c3:2a:ef:da:61:
ba:a9:e3:c9:a8:08:1d:33:06:6f:4e:4d:85:79:b0:
c8:d5:43:ea:2f:ac:8b:6c:d9:b9:e3:bd:86:ac:e5:
c4:95:2b:01:91:24:02:6e:ec:9b:f4:ff:b2:db:a8:
32:e4:31:9a:31:5b:50:3b:05:07:18:f6:42:1b:0e:
be:4c:7d:94:1e:bd:29:4d:f9:e6:1b:59:a0:50:fe:
0d:92:f7:8d:7e:65:05:38:60:dd:48:97:21:43:ea:
9a:a7:b7:dc:8b:d6:8e:56:ff:f4:1a:15:bf:3a:51:
94:15:ab:5e:08:81:11:57:65:0a:ad:da:81:c1:ad:
76:3c:b9:16:bc:c4:4b:20:68:3f:a7:5b:87:5e:f4:
6f:01:2c:35:5d:8f:c7:c9:68:ed:d7:01:bf:9b:2f:
19:aa:33:22:e7:15:72:5a:dc:b2:2d:7a:93:09:fc:
39:8c:aa:7e:7a:6e:de:3b:f1:70:a9:74:1c:1f:65:
8d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CB:B5:E5:38:9C:9A:5D:CA:59:AD:2C:F9:7A:A4:7C:1B:9E:42:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABA61AACAE1B11EEB064179B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.14.0/24
Signature Algorithm: sha256WithRSAEncryption
79:a8:c1:c1:13:c9:bf:4f:17:5b:59:72:34:e3:40:63:27:f5:
07:08:7a:4d:ec:41:fa:24:09:2e:96:58:eb:0e:61:fa:82:c6:
54:3a:02:26:59:dc:12:02:c4:8e:c2:59:b2:52:17:07:00:34:
d6:da:c8:79:4f:26:71:bf:dc:45:3f:41:0d:1d:0b:3a:db:74:
6b:ad:50:8d:dc:04:a0:b1:7d:85:fb:30:e7:b9:58:6b:bc:5e:
66:6b:08:50:f7:02:5a:ee:54:b0:f2:ff:84:7c:b5:17:23:30:
59:48:65:65:9a:31:93:1d:6a:90:50:53:1a:19:0f:0d:b3:d1:
0c:fb:c2:76:c7:18:58:2c:5c:33:34:95:36:0e:65:73:c9:e9:
1b:fd:d6:5c:43:cb:2c:1f:2e:2c:3e:b3:0d:10:85:e9:52:df:
28:ff:6a:03:bd:57:5e:47:d5:0a:fa:eb:cc:a5:34:cd:48:eb:
01:c7:4c:56:fe:66:35:32:52:4c:b6:c5:ff:b1:ff:87:4c:95:
9f:82:b5:d4:9e:a2:6d:60:e9:b2:c1:fb:eb:d2:d0:0c:23:1d:
fc:5a:50:a4:fc:72:c5:dc:32:b6:7e:75:80:47:6b:38:71:cd:
15:81:b6:02:2b:c0:79:4f:7b:1b:97:ac:c9:45:2f:19:7e:86:
1b:9b:84:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:20 2024 by rpki-client on console-fra.rpki-client.org