Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2F854A4A9BF11EFB3678974762E951A.roa
File: C2F854A4A9BF11EFB3678974762E951A.roa (raw, json)
Hash identifier: cWKnFjl6kF2jd45qQpv3Aa9HGeuJTE2M46e6L+SJc4Y=
Subject key identifier: 3A:11:32:82:D4:0E:0A:DE:F5:D6:F7:B3:0B:5B:38:A0:B8:6B:AB:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2F854A4A9BF11EFB3678974762E951A.roa
Signing time: Sat 23 Nov 2024 17:24:15 +0000
ROA not before: Sat 23 Nov 2024 17:24:11 +0000
ROA not after: Mon 02 Dec 2024 17:24:11 +0000
asID: 44559
IP address blocks: 154.94.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70076 (0x111bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:24:11 2024 GMT
Not After : Dec 2 17:24:11 2024 GMT
Subject: CN=67420fbf-fae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:57:3d:cf:e9:68:f4:37:18:fa:02:e7:6d:74:
79:7d:fa:52:0f:fb:1a:f2:8c:9a:5b:dd:64:c2:4c:
67:91:cd:45:b8:3a:ce:22:0c:a2:0d:f5:18:57:82:
c5:f5:ec:bb:08:6a:a1:a9:17:79:da:07:ce:c1:e7:
29:8c:93:c8:59:c2:ee:59:06:41:f0:ef:d0:d4:d8:
4b:44:40:44:b9:b0:08:ee:9c:63:0a:0e:a9:b2:cf:
af:ba:bc:85:dc:03:83:6f:44:81:41:f1:5d:da:97:
07:23:10:ac:25:41:39:14:11:f3:4e:5e:a8:cd:80:
1e:50:c9:0c:e4:df:a9:4a:dc:30:f0:18:33:ee:5b:
71:61:07:c8:43:60:d4:e6:dd:8a:0a:e8:3e:5e:86:
20:57:e2:f7:d6:a1:7d:25:40:5f:89:df:09:6d:ad:
d0:2d:d7:f6:95:a4:91:9f:71:93:d5:d6:50:1b:a0:
72:24:90:5e:01:c5:24:e1:89:9d:0f:a1:8b:57:af:
43:a6:be:f1:e2:79:a2:62:66:0f:e4:5a:88:af:92:
6a:a1:c1:48:f0:d8:76:b3:fd:b0:74:eb:50:35:85:
80:0e:99:9a:ac:e9:e2:3b:52:3d:d7:ba:39:38:ac:
e9:74:2a:31:88:65:f9:5c:73:2f:ac:0e:f9:07:b9:
2d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:11:32:82:D4:0E:0A:DE:F5:D6:F7:B3:0B:5B:38:A0:B8:6B:AB:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2F854A4A9BF11EFB3678974762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.237.0/24
Signature Algorithm: sha256WithRSAEncryption
20:47:cc:97:a6:bb:0b:e8:50:fa:42:8f:a4:94:80:19:e2:8f:
5c:70:9f:9c:44:c3:41:68:ab:93:81:97:03:ae:a4:72:d7:ac:
37:f8:96:94:f6:a0:6d:9d:3f:f2:78:78:12:e2:c8:11:c2:f1:
4e:9e:59:09:cd:86:63:3f:3d:cd:1e:1f:51:d0:4d:75:58:ee:
a6:e0:a2:6b:59:42:fb:a0:25:b8:e4:b2:23:02:f6:a2:86:f0:
33:0c:50:fa:fe:cd:2a:1e:ac:4b:3f:e2:32:f2:b0:8a:d9:fe:
a9:4c:ba:ee:1a:37:4f:c5:ed:e3:4b:eb:dd:72:66:4e:6d:db:
37:f4:d4:c3:8f:0b:e5:95:e4:90:61:3d:7c:09:58:b1:b4:19:
74:5e:dc:d2:ec:0f:db:9f:1f:00:96:7a:77:5e:dd:17:98:7e:
45:51:ae:83:fa:94:85:77:a2:36:3a:69:c7:96:4a:ce:07:fe:
d3:c9:a1:6d:bb:84:e4:87:67:1b:04:b4:c4:f8:ac:c6:5a:d1:
89:c7:72:59:a1:66:e1:a1:d5:87:8f:91:8f:44:59:e8:4b:3c:
17:24:0b:98:be:e1:ad:ba:f5:1b:3d:18:7d:61:28:28:a7:62:
18:e9:e0:72:3b:46:01:f6:a1:a0:79:1d:d2:84:5b:4e:39:5b:
c9:24:d1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:45 2024 by rpki-client on console-fra.rpki-client.org