Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C431C8DE92B611EFB8EE5FBA762E951A.roa
File: C431C8DE92B611EFB8EE5FBA762E951A.roa (raw, json)
Hash identifier: wx/vgLEL9rCZvrgAKM8EdfhdSQeQLWhxdi6gzvUHzLM=
Subject key identifier: E8:25:FA:EE:55:45:EC:73:D0:3F:CE:06:A0:E0:01:41:ED:6F:E9:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010206
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C431C8DE92B611EFB8EE5FBA762E951A.roa
Signing time: Fri 25 Oct 2024 09:51:55 +0000
ROA not before: Fri 25 Oct 2024 09:51:51 +0000
ROA not after: Sun 01 Dec 2024 09:51:51 +0000
asID: 202656
IP address blocks: 154.219.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66054 (0x10206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:51:51 2024 GMT
Not After : Dec 1 09:51:51 2024 GMT
Subject: CN=671b6a3a-975c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:62:f9:7c:24:1f:f8:cd:59:64:c6:91:45:
0c:77:45:30:cd:44:7b:70:84:fe:60:b3:d0:e5:5d:
aa:e8:11:52:4e:a2:06:e9:99:b7:3d:42:5e:ec:17:
e4:e1:47:d0:b1:6c:0e:66:91:22:c7:27:ea:35:da:
0b:5a:98:52:14:66:1a:e3:3a:58:8a:92:7d:8f:06:
de:7e:b2:64:26:4a:cc:a5:f1:9a:14:02:80:52:20:
9a:3e:1b:0e:af:b6:4f:34:76:af:20:de:ec:25:a8:
57:ac:2a:c9:e6:8d:a6:31:fa:2d:bf:9a:64:aa:c1:
51:35:e7:af:40:a8:21:6d:33:5d:70:6d:44:7f:fc:
65:9f:30:0d:80:43:59:74:ac:13:41:82:ec:44:07:
f6:77:a4:81:43:a9:c8:e6:cc:1c:63:97:e1:a4:72:
d7:bd:94:c0:87:e0:71:4f:08:0c:5e:0c:01:2b:4e:
07:8f:08:ff:9e:07:b8:7e:58:93:36:ac:97:09:8c:
d5:ec:8d:42:11:da:22:23:ac:9a:aa:6c:ec:53:9f:
8f:2a:8a:f5:63:28:29:81:03:05:5c:e4:ed:3f:10:
07:50:db:fc:8c:04:a5:c2:3d:86:31:93:d5:b7:a2:
54:aa:42:bf:16:3d:dd:48:22:73:09:40:06:82:2f:
48:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:25:FA:EE:55:45:EC:73:D0:3F:CE:06:A0:E0:01:41:ED:6F:E9:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C431C8DE92B611EFB8EE5FBA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.4.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:fc:eb:b3:97:43:a6:c9:bb:35:ed:5f:7e:f4:c8:ea:35:a2:
f4:86:3f:87:d7:bd:a4:2b:39:f5:c8:4e:f7:bc:ff:43:e3:49:
e1:de:49:5d:9b:4d:2c:dc:2f:7c:85:31:64:ac:7c:88:67:45:
c4:ac:b3:b1:d0:b4:4e:75:1e:41:76:7b:df:14:92:5a:14:69:
3b:b6:52:f2:4e:fe:7e:86:db:ee:f9:a5:8c:d8:fb:7a:44:9f:
f7:ab:32:35:ad:28:9d:86:23:68:53:8c:66:c3:f4:31:a0:5b:
13:60:2c:f4:39:2e:ca:3c:8f:de:d5:30:6e:3c:9a:01:49:a3:
c4:d8:ad:fa:f7:b9:e2:32:45:ee:91:c6:4e:71:d4:3b:09:f4:
f2:01:6c:06:9b:cd:42:65:cc:c7:fb:a3:0c:bd:fa:db:83:31:
29:01:7f:95:ea:94:42:02:c0:69:cf:4f:ed:e7:85:6f:52:82:
27:2e:71:57:3e:05:2e:59:2b:30:75:d6:7f:d8:ac:36:45:dc:
e0:2b:bf:eb:68:3c:2c:71:3b:ce:48:16:94:ec:08:a4:94:61:
b4:c3:1e:0a:1f:7f:da:a5:81:bd:03:0e:33:8c:15:73:b8:71:
9c:c1:0a:64:b4:f7:3f:32:81:34:42:8a:5a:4f:de:c6:04:cf:
d8:9b:2c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:46 2024 by rpki-client on console-fra.rpki-client.org