Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2D1952C2E1711EF86865BB0762E951A.roa
File: C2D1952C2E1711EF86865BB0762E951A.roa (raw, json)
Hash identifier: QT9Iq6KttWBuXJ+jm8pKz6ZMSYj95q3XdtYhfwDq+8k=
Subject key identifier: E1:A6:7F:13:57:88:D1:B5:0D:1F:DB:B5:DB:61:32:34:BA:85:3B:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C4B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2D1952C2E1711EF86865BB0762E951A.roa
Signing time: Wed 19 Jun 2024 08:41:46 +0000
ROA not before: Wed 19 Jun 2024 08:41:43 +0000
ROA not after: Sat 21 Jun 2025 08:41:43 +0000
asID: 137443
IP address blocks: 154.212.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50357 (0xc4b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 19 08:41:43 2024 GMT
Not After : Jun 21 08:41:43 2025 GMT
Subject: CN=667299ca-3e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e9:58:fc:8c:03:7e:b4:4e:99:f5:8c:c4:aa:
2d:d5:3b:1d:82:88:5c:80:5d:7f:41:7e:97:b8:87:
4a:f5:0f:7c:a0:26:75:b4:34:7c:9a:3f:6e:be:12:
eb:d3:0c:72:98:f6:ac:1e:bf:f2:d8:e8:a1:b6:80:
df:ef:ad:99:1c:b5:fa:b3:57:21:0f:13:2c:6f:e3:
dd:45:f3:f6:ba:c3:ee:41:01:3c:16:00:86:ed:b1:
c7:c1:8f:84:9a:ac:e4:2a:3c:4b:42:c6:d3:de:d8:
48:4b:9e:2d:73:9a:bb:5a:0f:08:c8:21:e1:ba:47:
c1:ba:5d:18:59:83:70:0c:f3:c9:75:d3:84:41:44:
06:71:e2:40:2c:f6:94:8d:c2:5c:13:d8:a1:12:5e:
ab:d0:9b:2c:2d:02:68:38:d4:f3:24:f8:f0:89:00:
9c:69:b3:dd:a6:ed:e6:9e:2d:05:ef:db:90:f8:b7:
52:97:11:0a:00:d5:39:5d:98:7f:70:d8:7c:80:e5:
96:53:7a:44:8f:6a:60:a6:77:d8:f7:65:25:58:30:
bd:23:52:7f:07:8f:8f:9c:cf:44:3d:82:42:44:55:
db:b7:c1:62:e5:3a:ab:cc:37:c9:2c:fa:98:f5:e0:
76:35:ef:cc:2a:72:e8:11:53:7a:1c:6b:42:89:15:
fd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A6:7F:13:57:88:D1:B5:0D:1F:DB:B5:DB:61:32:34:BA:85:3B:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2D1952C2E1711EF86865BB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:96:ae:76:fa:68:61:e1:e3:17:73:17:09:d6:40:23:24:6c:
5a:03:52:b6:df:bb:4d:7b:29:80:25:7d:c9:24:4a:1a:54:2a:
4e:d7:1c:cc:d1:50:0c:de:e2:5a:0a:ac:ff:22:14:a7:1e:a5:
24:49:b7:f0:d8:b7:e7:b5:53:f4:a4:ad:48:d2:59:aa:76:0b:
a5:cd:33:4a:49:52:1a:11:72:36:e0:51:44:ee:e8:6a:5d:58:
ab:7c:8b:c7:57:bb:58:5a:4e:a2:f4:93:e5:6e:a2:25:48:ad:
12:70:fc:20:a5:97:da:dd:1d:f4:65:16:79:1b:a3:13:2e:9e:
c6:ca:62:8b:84:76:43:ec:5e:c9:ae:b7:19:31:2a:90:7d:3f:
1c:e9:22:8d:bd:60:ad:2d:45:f6:c3:c8:13:08:11:9f:ab:4c:
f1:1a:e3:af:45:ce:d2:45:67:83:8b:61:11:3d:ae:ec:28:f9:
16:d2:02:02:3c:9d:c4:ba:90:46:e0:37:3c:d1:57:26:9a:76:
b0:9e:07:38:77:c0:22:f5:c1:51:ad:11:a7:9b:61:0a:80:53:
ef:12:d5:50:78:eb:67:74:c7:00:d8:20:e6:cd:43:fc:80:a3:
70:c8:69:2b:f9:0e:24:e9:0d:e9:2a:2d:c2:b4:0c:63:49:98:
db:52:f4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:24 2024 by rpki-client on console-fra.rpki-client.org