Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C91E253A9B7211EF9EEACC4E762E951A.roa
File: C91E253A9B7211EF9EEACC4E762E951A.roa (raw, json)
Hash identifier: 8cnD2K4lkMXQlAAjfMfScDt19y7UEmetGjhelAUODq4=
Subject key identifier: BD:31:95:C8:67:F2:1F:C6:BE:35:22:50:1A:3E:55:E4:9C:DA:5A:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107CD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C91E253A9B7211EF9EEACC4E762E951A.roa
Signing time: Tue 05 Nov 2024 12:37:58 +0000
ROA not before: Tue 05 Nov 2024 12:37:54 +0000
ROA not after: Mon 13 Jan 2025 12:37:54 +0000
asID: 212238
IP address blocks: 154.202.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67533 (0x107cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 12:37:54 2024 GMT
Not After : Jan 13 12:37:54 2025 GMT
Subject: CN=672a11a5-62dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:24:54:e9:c5:ea:87:6f:43:26:ee:5b:2c:2c:
85:47:ed:c3:51:0d:5a:80:cd:bb:08:db:80:54:67:
37:93:ba:09:90:31:08:c0:9b:9f:df:76:16:ee:ef:
76:94:fc:ba:8a:46:3d:bf:b5:9c:fb:52:b7:dc:2c:
e6:00:93:73:cd:ad:4a:82:4b:64:15:b8:76:db:09:
a7:65:e9:65:9f:86:46:cc:ac:58:fc:ac:1b:af:6f:
57:e0:e1:5e:62:fe:99:35:20:08:63:b4:57:02:a2:
df:71:3a:1f:fa:fb:99:66:8a:2b:e2:9c:a6:69:55:
79:e7:03:3c:8a:f9:aa:f2:50:03:87:55:31:c1:47:
ff:21:64:85:80:86:31:ef:f0:17:df:87:b7:a4:8d:
21:3d:61:02:90:ac:d0:28:de:c5:2d:a0:72:56:bc:
2c:9a:0e:ef:b5:eb:55:57:e0:b2:e7:3f:50:ee:a7:
30:b6:06:92:ac:36:70:9e:ca:79:58:81:c5:f5:36:
b8:f5:4f:1f:cb:68:fd:4b:48:4c:69:ee:aa:84:1b:
06:95:f5:66:d2:9c:f9:2f:bd:a9:ef:e0:a1:7b:92:
f4:80:c8:f4:a8:b0:6c:39:c8:01:c1:6e:21:8e:0b:
f9:32:fb:aa:83:83:c1:9c:b3:39:da:74:03:fd:d7:
42:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:31:95:C8:67:F2:1F:C6:BE:35:22:50:1A:3E:55:E4:9C:DA:5A:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C91E253A9B7211EF9EEACC4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.27.0/24
Signature Algorithm: sha256WithRSAEncryption
95:f9:9c:a8:83:aa:4b:bf:93:dc:61:5d:d5:6d:57:64:c2:67:
34:7e:41:bc:05:df:25:5e:eb:bc:a2:34:42:4f:88:b8:eb:9f:
ce:61:e1:3d:9e:a4:8f:23:de:99:a4:c7:91:ce:d8:b6:30:f7:
70:5d:98:fd:56:48:8f:9a:49:77:10:56:5f:15:14:fb:ab:c9:
88:91:16:45:36:5b:67:fa:d9:d1:a2:18:89:a3:d7:af:1a:60:
1e:18:33:cc:24:38:73:f9:0e:e2:4a:6c:0a:98:12:d4:2f:07:
fc:89:94:5f:8b:71:db:42:72:aa:1b:ea:c8:78:eb:df:f9:34:
3a:cf:37:fa:9d:e0:1e:53:90:30:88:76:f9:30:5a:86:16:96:
de:40:72:92:3c:17:01:2b:cf:24:94:39:02:33:d8:e9:a5:73:
90:d6:3a:7b:0d:71:d1:e6:e5:5b:1b:62:bf:42:bd:e5:34:60:
8e:db:96:d8:6a:7c:1b:50:3f:00:5e:77:0b:12:24:1a:38:68:
b6:6a:2a:6a:b8:52:cc:0d:fa:f0:33:aa:e2:7f:58:78:4d:e4:
27:70:92:35:b8:a6:20:07:65:79:39:78:e0:5b:a4:ab:20:f1:
03:c0:2e:6f:8c:25:5a:74:1a:47:b3:ff:1e:a8:12:d4:00:04:
a7:ca:96:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:27 2024 by rpki-client on console-ams.rpki-client.org