Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1129386A44B11EFAAE2FFA6762E951A.roa
File: B1129386A44B11EFAAE2FFA6762E951A.roa (raw, json)
Hash identifier: ZVqDP0g0AOQOJ+kA4d4AKDVgQUYqDp6rc+FtBg1jDwQ=
Subject key identifier: D9:2A:FC:39:57:6A:33:3B:00:83:E6:1F:5D:0C:03:D6:74:E0:DE:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1129386A44B11EFAAE2FFA6762E951A.roa
Signing time: Sat 16 Nov 2024 18:50:47 +0000
ROA not before: Sat 16 Nov 2024 18:50:44 +0000
ROA not after: Mon 25 Nov 2024 18:50:44 +0000
asID: 399989
IP address blocks: 154.194.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69109 (0x10df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 18:50:44 2024 GMT
Not After : Nov 25 18:50:44 2024 GMT
Subject: CN=6738e987-2b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2e:65:d4:ff:8f:45:31:57:18:b4:f4:55:5b:
e8:c4:42:dd:d0:ae:d5:c5:f7:f6:45:c2:86:8a:b0:
9d:2d:e8:35:9f:43:fd:96:d9:23:d9:04:eb:38:ff:
f5:4e:a5:1d:72:0f:0a:02:2e:4c:34:f9:bc:e4:20:
58:e1:78:ce:46:7e:0c:4f:29:f4:5c:50:34:db:2a:
c1:7f:ab:a6:db:e1:3a:b1:80:e7:2c:4d:fb:73:31:
c3:3d:ae:5c:9a:dd:60:96:c2:17:5c:d4:0c:bd:4f:
2e:14:38:f1:78:59:bc:50:0f:57:bc:9f:e3:da:f1:
e1:ef:d7:86:19:39:89:08:b9:25:27:78:3e:7d:52:
d3:87:ec:aa:12:06:df:49:e6:0f:1b:15:a6:ab:57:
ee:46:6b:3b:77:46:dc:ae:ec:3f:4e:05:a5:02:9a:
54:09:20:c1:eb:84:fa:7f:14:2c:49:b0:7e:4b:c6:
dd:7a:07:6a:70:45:bc:64:33:83:f1:ab:cf:4e:7d:
72:8b:c4:93:96:1d:3b:50:1f:7b:34:ed:b7:fc:ff:
25:60:92:a8:a3:03:a2:e7:67:85:f9:22:56:52:29:
d4:e1:c2:19:a0:67:8d:be:39:b4:c3:42:88:64:c9:
a1:5e:3f:24:2a:08:dd:80:cf:5d:30:44:23:81:f1:
ee:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2A:FC:39:57:6A:33:3B:00:83:E6:1F:5D:0C:03:D6:74:E0:DE:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1129386A44B11EFAAE2FFA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.24.0/22
Signature Algorithm: sha256WithRSAEncryption
60:12:32:7b:a4:2f:99:f3:1f:53:7c:da:2d:53:35:18:81:b6:
1c:ab:90:3e:ab:37:b5:9a:3e:99:0c:74:c3:88:25:3d:0a:ab:
f5:d3:1d:d1:79:5e:31:22:f2:24:91:3f:64:b6:5d:27:67:94:
bf:c7:51:b2:3b:9a:a8:6c:32:06:7a:4a:d2:5d:f9:77:c7:68:
80:02:49:49:86:85:9f:92:ef:3e:30:ec:b0:91:2d:d3:6c:59:
84:9c:14:8d:e7:ba:49:73:6f:e3:49:00:a0:67:0c:64:3d:5e:
22:6f:3d:87:cd:7e:29:f7:4f:3c:0e:75:aa:04:e7:7e:06:b2:
7d:99:7d:35:34:f1:c3:63:b3:6b:67:77:6d:72:db:40:ac:ac:
b1:87:3a:c4:97:a2:a7:3b:0c:72:76:6c:f4:5d:b0:99:94:12:
33:73:90:1e:40:71:89:58:4d:c6:2d:e2:5d:05:60:06:c6:e0:
ff:e6:e2:54:43:52:6e:35:31:85:92:1a:c9:94:6f:ac:04:0e:
67:0a:aa:f8:9e:c9:0e:00:17:e8:00:b1:1b:6a:42:c3:b6:94:
f8:01:35:2d:0b:36:50:d7:77:d2:87:f4:cf:73:b4:37:05:4d:
dc:86:60:ff:5a:99:8b:3b:86:06:fa:95:d7:25:fd:34:ce:56:
ad:55:08:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:21 2024 by rpki-client on console-fra.rpki-client.org