Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7D63D5C4A5111EFA16485AA762E951A.roa
File: B7D63D5C4A5111EFA16485AA762E951A.roa (raw, json)
Hash identifier: VhCVssr19mxa6JMp2wBUsPacNmBtqhJL9J8JL3UwKO4=
Subject key identifier: 1F:F7:90:E0:A2:1B:50:BB:89:69:D0:EF:76:9F:F3:70:E0:1F:DC:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D69E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7D63D5C4A5111EFA16485AA762E951A.roa
Signing time: Thu 25 Jul 2024 06:47:11 +0000
ROA not before: Thu 25 Jul 2024 06:47:08 +0000
ROA not after: Sun 27 Jul 2025 06:47:08 +0000
asID: 58073
IP address blocks: 154.84.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54942 (0xd69e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 06:47:08 2024 GMT
Not After : Jul 27 06:47:08 2025 GMT
Subject: CN=66a1f4ef-1a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c5:ef:43:10:c6:83:a7:0d:91:8e:92:28:f0:
4a:6d:9c:e7:72:f1:da:ba:dd:8b:5a:30:64:c9:ca:
74:9e:c4:15:66:cd:c3:6b:3d:06:ff:2d:68:4a:dc:
fd:11:e6:98:ff:97:80:8c:4e:f8:79:2d:23:11:75:
de:d0:f9:d8:c5:53:db:35:14:60:10:ff:4f:51:32:
ae:54:7e:38:40:45:16:ea:4b:f5:5f:bc:23:46:c0:
7a:40:56:70:d0:71:04:3e:1f:77:65:91:47:0e:c3:
32:b6:cc:aa:ac:fe:f3:31:34:ef:d2:c3:4c:7f:fc:
3b:ff:77:f2:53:46:0a:d5:2f:fc:a8:c4:e2:a1:a7:
5d:8b:4b:5e:6d:a2:ae:5f:6c:a1:37:b1:9f:8f:11:
78:29:08:54:a8:c7:68:53:47:c4:47:23:a8:40:f0:
ba:c5:af:37:26:4a:57:af:73:62:92:01:bb:a6:3a:
e6:01:d7:55:81:45:74:aa:72:53:64:1a:41:04:f5:
45:1a:0f:3c:47:f4:f3:2c:d2:18:11:84:9e:5e:cb:
71:4c:1c:bc:fa:c9:ac:c4:e5:0c:8c:97:17:cc:a6:
54:b7:f5:3c:8b:4a:61:1e:52:67:21:3c:72:79:d3:
b0:74:4e:ae:92:c0:a8:42:ee:bc:1a:30:be:a0:43:
7d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:F7:90:E0:A2:1B:50:BB:89:69:D0:EF:76:9F:F3:70:E0:1F:DC:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7D63D5C4A5111EFA16485AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.1.0/24
Signature Algorithm: sha256WithRSAEncryption
af:0a:9e:df:b0:b7:4c:74:b8:9d:29:81:2d:26:66:4c:28:56:
c9:5f:9e:1e:4e:9c:35:ab:83:eb:9e:b1:50:70:5e:a0:86:90:
c6:d8:d2:be:a4:13:f0:6c:0d:2a:88:9e:d4:d0:b7:2c:19:f4:
7a:a2:94:5b:12:53:02:dc:66:9b:04:66:51:69:6e:fc:f5:5a:
75:d2:f8:f5:aa:7b:87:39:66:0a:11:49:63:13:00:ef:83:f8:
8b:11:25:93:dc:1f:2d:f6:14:13:94:ac:30:47:b2:82:4b:51:
39:13:5f:f4:34:1c:bf:22:cb:41:93:33:ba:1b:9f:5a:20:ed:
31:ed:fd:6d:e6:ab:5a:fe:06:89:d5:21:74:58:68:6a:ac:37:
e3:30:50:5d:71:37:e8:13:64:be:3d:99:06:f4:62:98:85:65:
d1:70:4e:3a:92:9a:00:14:fe:0a:ac:87:43:39:8c:f4:7e:a9:
eb:b8:a9:90:36:31:60:a3:9e:a6:e8:19:74:eb:3a:33:e2:9f:
2d:35:f3:f5:8d:c2:df:e0:86:85:30:df:1a:c2:7f:54:4b:d1:
2a:cd:26:54:48:11:ef:27:d6:ec:5f:ef:96:b6:6c:59:8a:92:
27:5f:d1:58:dd:83:35:97:8d:6d:1e:31:ff:0e:4f:5f:0f:3a:
b2:5b:00:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:24 2024 by rpki-client on console-fra.rpki-client.org