Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6EF3764A8CE11EFBC2F108A762E951A.roa
File: B6EF3764A8CE11EFBC2F108A762E951A.roa (raw, json)
Hash identifier: fdZNOBssj2C9N7NV4Xrl1oeBZHSnC/epISS15D2xD6Q=
Subject key identifier: 25:78:2F:D4:C4:69:B3:4E:8B:26:25:37:FD:79:C1:5F:3B:AA:67:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011025
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6EF3764A8CE11EFBC2F108A762E951A.roa
Signing time: Fri 22 Nov 2024 12:38:46 +0000
ROA not before: Fri 22 Nov 2024 12:38:42 +0000
ROA not after: Sat 30 Nov 2024 12:38:42 +0000
asID: 137443
IP address blocks: 154.223.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69669 (0x11025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 12:38:42 2024 GMT
Not After : Nov 30 12:38:42 2024 GMT
Subject: CN=67407b56-d9e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:51:a0:d1:a4:71:d8:4a:b0:a0:df:b6:fb:6e:
aa:73:01:54:af:ae:8b:9e:d3:b0:9c:2b:dc:6e:dc:
0b:ba:53:e8:d1:e7:ea:2a:b8:61:f1:fa:70:bc:35:
d8:5b:39:70:9b:11:02:91:fd:85:2c:cb:fa:5f:ca:
30:d6:a6:ab:d8:7c:ce:5a:aa:ea:4b:a0:52:90:d0:
e3:cd:9e:4c:70:a4:a0:50:ab:0b:b9:0a:bb:6f:73:
db:d9:c1:f9:cc:75:d1:a8:c6:c2:a7:30:35:6f:c7:
b9:05:ba:05:56:f5:9a:54:7c:c6:c2:62:31:11:41:
cc:74:5c:ed:2d:8c:a6:28:f4:62:c6:1a:7d:f0:8c:
1f:92:19:28:bb:9a:36:48:f4:6a:3d:dc:39:a7:ce:
c1:67:5f:58:42:d2:a7:1c:4c:6d:b5:17:7f:7d:77:
55:5d:bc:81:fc:8f:17:bc:eb:5c:82:26:d9:94:8b:
ae:2c:e5:12:35:50:2b:be:45:22:92:94:d2:8c:17:
0e:24:8e:6f:0a:c4:03:91:d7:1e:cf:d8:64:f1:02:
30:69:f9:f6:23:86:37:a3:78:d9:7e:ed:87:3b:36:
6b:f4:71:ed:7a:86:db:29:0b:77:f8:0c:fe:f2:ab:
fd:a4:90:1c:01:20:0f:b0:4b:72:43:c2:f1:58:77:
be:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:78:2F:D4:C4:69:B3:4E:8B:26:25:37:FD:79:C1:5F:3B:AA:67:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6EF3764A8CE11EFBC2F108A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
Signature Algorithm: sha256WithRSAEncryption
52:b6:e3:2c:22:c6:83:6d:ab:4e:34:49:1f:12:d4:d4:1f:54:
49:44:89:25:e5:e4:52:3c:25:ce:2c:eb:99:76:30:24:bb:71:
21:ee:2f:e1:e5:3c:a1:06:7c:2c:ee:1a:03:39:02:e0:96:a5:
e9:04:e4:20:b4:18:ed:b2:9d:5e:2e:cf:58:1d:f2:43:be:a1:
1a:2a:7b:d3:f5:3b:d7:89:f7:e3:50:d7:89:aa:a2:bd:8d:04:
9f:40:b1:b5:ba:41:b2:88:d7:e6:82:f6:6f:fa:94:ff:32:a2:
6b:ba:13:b2:0e:48:67:df:b1:ea:03:34:bd:71:28:12:76:83:
98:6d:ee:04:4f:e0:ba:af:ce:17:02:aa:60:17:87:5b:9d:cd:
9b:0e:65:fe:29:c9:4b:e5:52:9d:8c:69:60:3c:47:14:d3:6a:
f3:6a:d9:32:d3:37:d2:1d:16:01:6f:33:91:f9:ab:5d:7d:ee:
a8:e5:c6:a8:20:2d:8d:91:a4:a7:8e:7b:60:a7:f4:94:e7:63:
b3:f8:63:f0:d5:19:b7:d5:f5:34:f5:a1:32:61:c3:c9:88:32:
c9:01:c8:31:0c:0b:c0:55:32:64:0b:ff:b3:99:49:bf:52:12:
20:8e:f5:01:8e:d2:0e:d0:9f:56:26:e9:74:ae:10:e9:45:78:
f3:f4:26:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:43 2024 by rpki-client on console-fra.rpki-client.org