Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABCE97DAA45011EFABC3C847762E951A.roa
File: ABCE97DAA45011EFABC3C847762E951A.roa (raw, json)
Hash identifier: nv8+uxF8rE+RWRjknFDCAZN7cY001SPzIPdndDi4RZs=
Subject key identifier: D9:20:E1:F8:9E:99:6F:69:E3:22:04:43:CE:34:8C:89:DC:62:63:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E1B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABCE97DAA45011EFABC3C847762E951A.roa
Signing time: Sat 16 Nov 2024 19:26:26 +0000
ROA not before: Sat 16 Nov 2024 19:26:22 +0000
ROA not after: Mon 25 Nov 2024 19:26:22 +0000
asID: 9009
IP address blocks: 154.92.126.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69147 (0x10e1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:26:22 2024 GMT
Not After : Nov 25 19:26:22 2024 GMT
Subject: CN=6738f1e2-4cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:04:4c:69:9e:c6:31:3e:46:43:e1:40:65:65:
6e:59:08:7b:be:b2:ac:fe:fd:03:4e:89:07:43:00:
4d:0c:14:a4:04:0a:44:5d:09:17:4a:5d:e8:47:2c:
e7:7d:9b:60:f9:8a:8e:03:40:e6:1c:ad:1a:52:92:
94:7e:2e:27:b2:a7:b1:17:1c:be:f9:18:0e:72:f5:
c3:58:bc:3c:8a:57:c8:58:0e:e3:d1:1f:99:11:09:
f4:64:e7:4b:fe:fc:1f:b4:a8:1c:c6:d6:73:9e:b7:
ef:bc:5b:e5:7c:1e:8a:54:0b:2d:b7:6c:0c:d9:3e:
7a:10:52:d1:85:ac:dc:df:bd:ad:32:ea:3c:46:09:
f2:36:35:02:04:34:eb:c0:61:37:d8:c9:ef:ca:76:
05:0a:eb:b9:c2:60:5c:49:78:bc:3a:f6:7f:a1:d7:
98:ac:9b:a6:e3:30:8d:fc:ce:c9:bf:e6:fb:38:c1:
33:e1:d2:d1:c9:18:6a:e5:73:a7:4a:c4:47:74:16:
19:d5:3d:7f:03:27:07:06:f5:48:09:48:66:5a:be:
cf:06:55:9d:fc:dd:66:fd:02:1a:d9:c5:73:2d:fb:
3d:aa:e0:bb:a3:a8:ee:bf:5c:3d:9b:03:a7:04:a5:
db:69:c6:c7:e8:86:b0:95:27:b3:9f:69:d6:58:45:
78:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:20:E1:F8:9E:99:6F:69:E3:22:04:43:CE:34:8C:89:DC:62:63:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABCE97DAA45011EFABC3C847762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.126.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:b7:f6:4c:18:a2:49:65:2d:64:31:40:b6:cb:0a:b3:8d:23:
cd:52:b3:99:ae:fb:4e:ab:40:fc:5a:6a:f2:5f:5d:fc:3f:86:
5a:0e:4d:ea:35:bb:9b:8f:ca:89:c0:e7:b0:24:0e:6c:92:5f:
a0:7c:ba:00:4c:3b:62:88:c0:8f:d7:35:d6:3a:72:c7:fe:a3:
6c:9e:f2:1b:fa:23:60:b7:6e:a2:d3:dd:bf:93:99:50:36:a6:
a4:8e:de:27:7f:6e:5c:67:10:66:9a:75:e0:70:39:ce:6c:4d:
5c:5d:c8:e6:05:fc:c3:28:78:03:e9:3b:20:9a:66:35:08:2b:
8e:89:f3:9f:38:77:22:5a:63:4c:c3:63:0f:36:0a:e1:f2:71:
14:56:70:c5:90:71:bd:b9:47:74:51:8e:32:e0:37:34:96:91:
0c:a3:f0:51:91:51:9b:9d:34:f7:9f:54:40:ed:3a:de:02:e7:
83:9e:e1:5b:3a:1f:0f:8f:4e:8c:b9:a3:d0:3d:f7:dc:64:7a:
e6:ec:3a:b4:63:b1:e8:52:8a:49:e4:6a:46:f9:59:e6:fe:3f:
5f:73:63:d7:13:af:8d:39:98:5a:81:ef:d6:11:f6:87:c2:03:
e8:37:9a:18:e7:d0:d7:86:bd:85:ac:20:b3:95:93:18:05:fe:
3c:f4:05:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:01 2024 by rpki-client on console-fra.rpki-client.org