Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B72BC9C27E3A11EFBB46F59C762E951A.roa
File: B72BC9C27E3A11EFBB46F59C762E951A.roa (raw, json)
Hash identifier: szDmuPgHKzMseqmajFsSxddrt5CgLmtzL5JtcA7c90A=
Subject key identifier: 85:6F:D9:51:15:11:0E:AD:45:5E:70:6D:1A:01:E9:65:B1:5A:FD:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F482
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B72BC9C27E3A11EFBB46F59C762E951A.roa
Signing time: Sun 29 Sep 2024 08:13:32 +0000
ROA not before: Sun 29 Sep 2024 08:13:28 +0000
ROA not after: Mon 30 Dec 2024 08:13:28 +0000
asID: 17561
IP address blocks: 154.194.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62594 (0xf482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 08:13:28 2024 GMT
Not After : Dec 30 08:13:28 2024 GMT
Subject: CN=66f90c2c-e1e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:36:0e:ea:7e:f2:43:c1:cd:5b:3f:b1:63:
e3:90:e2:8a:bf:0a:7a:c1:7e:a7:44:8c:73:83:ba:
3f:b3:be:06:24:25:4b:07:4e:e1:ea:cc:1c:18:8f:
a5:17:f8:2f:dd:ee:04:df:f2:55:1f:f2:eb:ea:74:
1e:5c:20:9f:f4:f9:e9:e2:31:56:50:71:3f:ed:ec:
1e:71:a9:29:2f:db:2d:c6:44:c4:66:0c:65:1c:6c:
be:0a:78:72:b1:6d:32:be:8e:50:7f:ad:13:6e:ed:
cb:0a:88:b7:20:a4:6f:22:f5:2d:f4:58:93:7f:cc:
4b:59:cf:c6:ea:83:6e:16:d9:d5:76:19:5f:36:b8:
7e:7d:0f:68:8f:af:3f:16:be:d9:34:ce:d2:bf:18:
2d:97:71:cd:83:56:5e:fc:dd:b8:96:4e:0f:dd:e6:
0d:9b:4c:2e:c9:30:af:bd:82:ec:46:25:2f:aa:d2:
20:47:ac:34:a9:12:e2:84:fe:57:aa:ce:b2:e2:49:
01:16:20:8f:66:22:d6:0c:a9:83:de:ed:20:9e:32:
87:eb:f2:cd:0d:67:3b:13:a6:f9:a2:3d:01:a4:c2:
57:b8:fd:8e:86:1a:88:61:ed:42:11:28:de:57:4f:
b3:60:7d:b4:f9:08:7d:0e:83:db:68:35:00:e6:d7:
88:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:6F:D9:51:15:11:0E:AD:45:5E:70:6D:1A:01:E9:65:B1:5A:FD:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B72BC9C27E3A11EFBB46F59C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.49.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ab:28:ac:c6:67:79:97:40:7a:d3:74:67:56:51:e7:53:c4:
bd:1d:53:b1:c6:44:5a:8d:1d:c0:22:8a:e9:24:21:91:ad:a7:
be:13:29:d2:5c:eb:0f:6f:05:d8:01:4a:45:64:22:23:fb:cd:
6f:0e:9b:3e:e6:41:5d:b6:41:29:8d:19:62:08:dc:51:d3:ab:
b1:a2:bf:a7:e0:69:9b:e2:49:44:3a:f2:2c:cf:5e:31:58:b5:
5f:29:38:e9:bd:ce:b6:65:da:aa:b7:94:e1:29:78:6f:ac:a1:
18:7f:e0:95:71:14:57:d1:e4:af:0a:a6:ac:1c:25:95:c5:2d:
60:d1:3a:2b:bb:70:66:92:7d:03:5b:5d:aa:aa:1c:24:b8:84:
1b:86:a4:a2:90:49:6c:df:09:c8:44:99:b6:28:99:9e:68:dc:
1c:39:2f:73:b6:72:4f:dc:25:18:ac:4e:29:21:2f:c7:71:56:
2d:36:06:6e:2b:62:21:ab:39:17:1a:69:63:af:04:79:ee:bd:
f5:72:75:af:2b:4b:0a:12:11:44:5d:56:64:49:78:c4:04:70:
67:b3:a0:0e:9a:db:6c:af:57:19:b0:9d:86:4a:18:dd:0d:09:
f9:31:03:2a:96:f2:2d:f1:69:db:2a:04:59:34:1f:d4:c5:3e:
cc:5b:1c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:22 2024 by rpki-client on console-fra.rpki-client.org