Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D310F58E96A611EF99ABA28B762E951A.roa
File: D310F58E96A611EF99ABA28B762E951A.roa (raw, json)
Hash identifier: Ub9lo9lrn1/fVbaiZgnxYDm8H9TVVE5lHR76Tw8VVmg=
Subject key identifier: F1:90:28:EE:D9:05:9C:BD:7C:5F:D5:E8:0A:BB:13:97:5B:38:3D:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0103EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D310F58E96A611EF99ABA28B762E951A.roa
Signing time: Wed 30 Oct 2024 10:07:52 +0000
ROA not before: Wed 30 Oct 2024 10:07:48 +0000
ROA not after: Mon 02 Dec 2024 10:07:48 +0000
asID: 5068
IP address blocks: 154.83.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66539 (0x103eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 10:07:48 2024 GMT
Not After : Dec 2 10:07:48 2024 GMT
Subject: CN=67220578-d6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9d:3d:d2:78:b2:82:c5:ad:bb:d2:76:75:5f:
2e:b5:26:54:95:8a:3e:fc:a0:46:b6:b2:72:d6:76:
1b:28:4a:3c:0b:1b:23:ca:2b:30:e1:40:2c:de:a6:
23:ef:4b:d4:af:13:b7:36:4e:63:e1:74:2b:57:9e:
25:7c:c1:5a:a5:b7:59:39:b3:e4:bd:a6:a5:03:37:
70:e7:00:5e:a5:1c:1c:b2:3b:0b:0b:50:3e:40:75:
a7:1c:fb:96:b3:f3:f0:a9:48:ef:73:60:15:2c:f7:
05:a7:ff:18:fd:e5:d9:6d:b6:b5:da:b8:f5:a8:39:
aa:0f:c2:d0:f0:15:1d:c7:b6:19:cb:76:74:04:30:
03:11:75:0e:26:f5:32:07:c2:f2:25:3f:d2:26:6b:
f4:4a:f5:85:2c:5d:b2:2a:42:88:33:4a:13:34:44:
50:3a:06:a9:fe:93:e9:fb:3a:0f:63:2d:79:08:80:
b6:0b:28:72:4c:d2:52:70:50:7d:ef:12:0b:2e:8f:
66:13:06:7b:d2:98:e0:89:45:24:cf:66:c9:1a:01:
00:fe:86:e0:3f:a2:39:64:33:37:8e:ef:4d:0e:83:
72:2a:9d:f6:73:af:3f:f4:01:c4:65:ae:af:86:af:
31:1c:d8:e3:a0:77:cb:81:8c:12:84:7d:29:1f:f5:
e2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:90:28:EE:D9:05:9C:BD:7C:5F:D5:E8:0A:BB:13:97:5B:38:3D:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D310F58E96A611EF99ABA28B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.78.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:41:58:f8:ad:25:67:ba:dd:be:dc:da:e9:2f:d8:41:ad:f5:
be:2f:91:19:c1:b4:ef:44:07:99:7d:aa:9c:f9:3c:00:3f:f5:
98:78:16:09:57:23:90:6d:39:41:93:fb:4d:a8:d6:1e:a4:a8:
48:5c:e6:f2:f4:4a:be:f1:39:22:f4:05:53:7a:96:72:d3:69:
da:b6:fc:1d:c7:bb:05:c5:b6:f6:c3:be:92:73:d9:14:9b:10:
37:bb:d0:6c:5c:73:4e:33:e5:c2:9a:97:9d:11:b3:f2:da:ef:
2f:5b:46:04:8b:60:1a:97:29:4c:a1:f4:b6:a5:b8:55:76:f8:
68:3b:27:a7:5c:a5:b6:5b:b2:2b:c9:f7:ba:d8:73:fb:bb:12:
f9:80:b6:2f:5d:85:64:9a:41:d5:66:82:72:82:e7:5e:ec:19:
c0:2a:85:72:9b:3a:af:07:e1:4b:29:1a:88:6a:e3:d3:e6:32:
7f:ea:ba:63:13:d8:22:34:cf:e2:80:12:81:57:db:49:14:1a:
38:43:f2:29:d4:d0:1b:bb:e2:1c:f3:39:00:5c:3d:37:24:46:
74:02:39:f1:5e:f4:8d:6d:14:93:d1:b2:68:fb:40:ae:8f:32:
8d:0c:00:5c:82:67:65:da:43:c3:eb:f6:ad:dd:d0:4f:d7:34:
8c:76:ff:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org