Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACFD9E2AA8ED11EFB52DDA4D762E951A.roa
File: ACFD9E2AA8ED11EFB52DDA4D762E951A.roa (raw, json)
Hash identifier: dkIFhd08VrTXknH6PFbc36F3tBLCC/DU4X/56c1e92o=
Subject key identifier: FF:06:7C:14:54:AF:A0:73:B9:B1:82:61:D7:73:D6:0A:C5:4D:6B:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01112B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACFD9E2AA8ED11EFB52DDA4D762E951A.roa
Signing time: Fri 22 Nov 2024 16:20:24 +0000
ROA not before: Fri 22 Nov 2024 16:20:20 +0000
ROA not after: Tue 03 Dec 2024 16:20:20 +0000
asID: 62240
IP address blocks: 154.195.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69931 (0x1112b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:20:20 2024 GMT
Not After : Dec 3 16:20:20 2024 GMT
Subject: CN=6740af47-2762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:8a:b7:48:ba:1a:8d:75:73:95:91:45:7e:
42:9c:d9:00:21:42:4e:a0:af:fa:44:ae:fb:79:a2:
fc:bb:1a:5c:dd:0f:93:e8:8f:f1:45:11:5d:f5:b1:
da:96:b1:5e:16:33:26:be:b3:26:15:a5:d3:dd:08:
86:cf:d7:00:48:22:7a:bf:df:c5:35:07:44:f7:03:
50:ab:b5:58:3e:c2:8d:6c:9e:0a:db:bf:49:e0:08:
51:87:90:bb:e0:64:92:e7:81:74:02:f0:91:d9:f0:
fb:c1:e3:9e:68:26:73:0d:55:24:79:28:e6:5e:ef:
c4:d3:a3:66:30:4f:eb:b7:e5:82:9b:98:92:d0:b4:
87:ea:f9:dd:d5:b3:6b:ab:ca:ab:3b:e8:af:dc:ff:
9c:13:6b:94:93:07:7e:23:08:56:d2:7b:1a:41:c5:
90:e8:8e:bf:22:81:9e:08:63:ec:24:15:61:9b:e1:
3a:4f:a4:de:a6:ee:2c:19:a2:4c:f0:0c:9c:e7:54:
e5:27:6e:09:ed:80:79:a0:03:ce:36:6d:3e:d6:e2:
f0:47:aa:52:56:80:43:62:b3:67:b9:2c:56:4f:6b:
d1:f2:19:47:fb:69:e9:37:15:7e:62:8e:47:4a:f8:
5f:e2:c3:18:ee:ab:aa:c5:17:eb:f3:55:35:11:d5:
84:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:06:7C:14:54:AF:A0:73:B9:B1:82:61:D7:73:D6:0A:C5:4D:6B:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACFD9E2AA8ED11EFB52DDA4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.145.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:5a:22:97:72:cb:52:90:3d:d0:80:41:f1:73:b7:3e:2d:da:
1d:6d:8e:9c:14:da:bb:30:c9:2c:8f:ba:7e:a8:91:80:cc:73:
31:fe:f5:64:cf:a3:10:45:5e:3c:34:04:a8:7b:7e:58:ff:a1:
57:21:ec:e9:00:b1:8d:9e:d1:09:40:be:dc:fa:67:aa:31:62:
76:4b:ff:d8:90:6a:c5:14:6b:b0:3c:a3:d5:6d:72:6f:36:d7:
47:0a:5d:f6:92:45:f8:f3:6c:8a:5d:8d:59:65:0e:8b:f8:f0:
fc:fd:7d:77:68:14:64:40:bd:a2:2d:06:14:67:dd:48:b9:68:
fe:2c:28:29:91:94:20:b4:ad:3e:9a:c6:1c:91:97:6a:52:ee:
5b:04:f0:b2:24:a0:15:5d:fa:8e:65:22:a9:be:0c:5c:2a:80:
99:fe:01:45:cd:07:69:b4:1f:8e:d2:c6:da:dc:e0:82:c7:f0:
1c:d6:68:ca:34:30:2e:e4:86:6f:b6:e8:f2:c2:cc:a7:aa:97:
ff:11:87:1d:04:9e:3b:05:42:30:f0:0c:9b:da:22:56:eb:94:
f0:b9:c4:0e:29:27:1c:90:59:ec:6c:49:aa:1f:a6:e0:fd:fd:
3c:37:8b:70:92:a4:e1:a9:d5:40:31:44:0d:f7:34:32:7b:0e:
13:8e:99:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:42 2024 by rpki-client on console-fra.rpki-client.org