Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF34FAAC736811EF9813F04C762E951A.roa
File: CF34FAAC736811EF9813F04C762E951A.roa (raw, json)
Hash identifier: /Rsxjw/UBnXNKWPdoi2uEs6yL3Isx783XZX1wcd1HNw=
Subject key identifier: D8:8A:16:03:F2:67:F2:00:FD:BF:F2:BC:2E:5A:B8:74:F8:E4:C8:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF34FAAC736811EF9813F04C762E951A.roa
Signing time: Sun 15 Sep 2024 13:45:46 +0000
ROA not before: Sun 15 Sep 2024 13:45:42 +0000
ROA not after: Sat 30 Nov 2024 13:45:42 +0000
asID: 142403
IP address blocks: 154.92.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61232 (0xef30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:45:42 2024 GMT
Not After : Nov 30 13:45:42 2024 GMT
Subject: CN=66e6e50a-1aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:29:4c:3f:b4:bb:54:f8:fb:d9:4a:a8:9f:a3:
e4:b6:e1:4d:f1:9c:29:45:39:f8:fd:b4:d8:8e:e3:
2e:26:4a:9b:4c:35:77:ed:aa:79:c8:08:52:0e:cc:
b2:fc:dc:eb:ed:44:91:b2:ef:50:cc:c2:e2:6a:2b:
53:3b:c7:34:1a:58:9c:59:0c:51:3b:1c:f9:34:1b:
ac:08:e7:91:e8:4a:ab:68:15:6e:7f:02:d8:c4:69:
33:be:3f:2a:6c:97:5c:d2:cf:19:76:c2:41:2c:54:
31:8b:7f:78:4d:5d:02:0a:52:a6:29:8c:70:79:25:
14:74:76:f1:bc:a6:48:b0:d7:ef:d5:57:a8:e1:2c:
ed:a2:f9:90:ea:aa:62:ad:0c:78:70:9d:cd:84:5b:
24:94:a3:ed:86:ed:2e:2f:56:8f:ba:a3:ac:7e:45:
04:ba:6e:7c:5e:25:95:5c:e1:e1:49:18:a8:a0:d3:
f4:8a:82:fd:7f:83:0d:91:03:6b:e5:87:02:b2:b9:
b0:21:02:89:7d:0b:04:10:4a:93:ba:e2:21:32:eb:
72:05:a8:33:52:e9:e0:d1:b9:50:a0:40:81:25:3c:
f1:08:2e:18:0f:9e:5f:1d:2b:c1:9b:7f:25:e5:d1:
46:85:b3:de:79:1e:83:16:a5:36:a0:5d:ba:1d:bb:
46:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8A:16:03:F2:67:F2:00:FD:BF:F2:BC:2E:5A:B8:74:F8:E4:C8:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF34FAAC736811EF9813F04C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.17.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:f1:df:b0:bf:35:76:2b:51:a1:dc:18:a5:dd:1f:12:54:50:
48:3b:0d:1c:65:3f:bd:32:83:bc:db:2e:e0:ec:ff:d8:96:ca:
eb:dc:69:40:61:b0:84:38:6a:d0:8c:ed:20:13:4c:e1:cf:e0:
7c:ac:8e:cc:60:b1:b4:cd:77:c4:49:7d:07:a0:91:bf:93:74:
cf:fc:61:ea:57:d3:19:97:ec:c4:ba:a4:03:89:07:c1:92:2a:
87:51:18:e4:8b:ea:fb:90:9c:d9:82:36:45:c8:86:ca:c1:58:
2b:97:dd:4c:1e:73:3a:f6:b4:fd:4d:3c:6e:f5:58:d4:13:dc:
34:89:bc:47:c2:0b:3b:f8:3d:9f:81:c5:ba:70:44:62:e8:2f:
2c:af:78:a1:ce:6a:4c:8b:d5:2a:9d:9e:45:2b:f0:b0:f3:a9:
cd:86:5c:39:1a:bd:cd:83:74:ed:9f:82:23:04:0d:be:09:d8:
24:41:62:1c:3e:7f:ad:61:2c:a0:7a:e3:65:be:68:0c:10:c3:
61:62:e6:af:9c:a6:9f:15:ef:ba:33:cd:1b:e4:ef:12:a4:b2:
df:ae:fb:b0:44:04:9d:b9:7c:79:33:66:01:fc:55:00:6a:48:
d7:b0:d5:81:af:a4:7d:bc:9c:59:79:55:27:3d:2e:73:cb:ca:
5f:14:ff:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org