Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B928238C92DB11EFA3BAB59E762E951A.roa
File: B928238C92DB11EFA3BAB59E762E951A.roa (raw, json)
Hash identifier: cJnstEmocRM4/h+zlxzPmDkUngCQbvCFeLOh45rmoFI=
Subject key identifier: 7E:18:DA:E8:DF:26:94:26:ED:5F:62:0F:9D:25:1A:53:D9:C7:0F:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01021A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B928238C92DB11EFA3BAB59E762E951A.roa
Signing time: Fri 25 Oct 2024 14:16:27 +0000
ROA not before: Fri 25 Oct 2024 14:16:23 +0000
ROA not after: Sun 01 Dec 2024 14:16:23 +0000
asID: 49505
IP address blocks: 154.211.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66074 (0x1021a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 14:16:23 2024 GMT
Not After : Dec 1 14:16:23 2024 GMT
Subject: CN=671ba83b-0a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ea:77:14:f4:09:01:70:d7:31:3b:83:ab:63:
35:22:45:45:94:f9:fe:bc:be:62:35:26:ba:2b:f9:
c3:4f:b5:7f:72:5e:6e:42:49:23:e6:ad:80:e0:a0:
8f:bd:7f:f6:12:d0:4d:c2:94:d3:c1:3b:12:91:3d:
4d:99:fe:38:47:7b:7b:9b:68:ab:b7:83:33:22:6d:
47:fc:17:5c:6c:ff:9f:b4:6a:f6:8d:24:58:44:c0:
67:94:aa:a6:11:a7:ac:0c:d7:4c:43:4b:64:4e:21:
47:e5:21:f6:fa:18:fb:fc:52:8b:37:a4:b4:c2:a7:
b3:d4:b0:5b:37:ef:7e:7d:ab:79:22:27:9f:2c:99:
67:d5:4c:ab:28:30:1d:3d:bc:52:1f:1b:24:fd:a7:
3d:e8:c1:94:01:fc:c9:b1:fc:10:bb:26:2d:87:d9:
e4:c3:a7:56:4d:37:bf:b5:da:7e:f8:f8:a4:6b:ee:
63:cc:a9:d1:89:2b:7b:08:8e:98:57:9f:cd:dd:f6:
88:e6:32:57:e6:56:44:14:42:3b:ad:b4:19:51:ef:
2f:85:be:f4:7a:ab:3b:f8:5b:3a:f3:e7:cb:db:4e:
a6:71:b2:5f:1e:83:be:30:cc:e8:d8:6a:d8:2d:a6:
13:61:b0:4a:92:0d:29:5b:1a:70:ac:94:6d:e6:19:
7e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:18:DA:E8:DF:26:94:26:ED:5F:62:0F:9D:25:1A:53:D9:C7:0F:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B928238C92DB11EFA3BAB59E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.16.0/22
Signature Algorithm: sha256WithRSAEncryption
84:ca:eb:f1:76:7b:f3:19:1a:84:f7:af:10:70:3f:87:31:76:
aa:f3:c3:90:a8:9f:88:5c:ec:59:9a:bf:b6:66:e0:dc:d2:f6:
c9:39:2b:91:8d:85:a5:f3:07:61:91:99:d8:60:a6:ce:42:9e:
0d:80:7b:65:50:76:0f:da:1a:d5:0f:81:dd:01:c0:87:e8:30:
7e:ba:5c:28:fc:0d:2b:c9:ff:d1:e6:aa:45:ba:8f:5d:57:47:
52:1b:0f:7f:c2:fc:8f:f1:03:51:28:da:f2:22:39:d4:8f:57:
6a:f8:70:4a:a6:54:01:0d:c6:15:a4:b9:ec:08:57:45:78:e7:
b0:74:06:8b:1d:06:ca:db:33:26:50:b4:9a:bf:1c:ee:13:75:
41:d3:80:a0:34:52:d0:4f:3b:32:ab:b6:87:ba:f1:83:4d:53:
e3:32:c1:fc:7f:55:54:90:96:d0:d1:75:1b:05:9e:74:c9:c0:
04:1f:be:8b:f8:92:c6:ae:79:1e:54:de:19:5f:c6:9d:e2:90:
3b:76:73:63:be:a3:b9:19:1b:1f:5b:1d:47:7f:9f:52:d1:1e:
8d:8b:f7:48:60:99:52:1e:4f:fa:00:97:0e:1b:62:ad:7e:1e:
31:d1:a2:40:41:dd:c9:cc:cb:d2:80:2b:9d:cf:4a:98:58:8b:
33:5b:40:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:44 2024 by rpki-client on console-fra.rpki-client.org