Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D41FB2C0B22D11EE9CD3FC74775412E6.roa
File: D41FB2C0B22D11EE9CD3FC74775412E6.roa (raw, json)
Hash identifier: dLt789FiG4sX3/FDSvhOQGihn6HWx8LzPsr/JglFsB0=
Subject key identifier: 89:AB:E5:81:60:D6:A3:27:DE:43:F6:9A:13:C8:01:DD:3F:68:E2:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7500
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D41FB2C0B22D11EE9CD3FC74775412E6.roa
Signing time: Sat 13 Jan 2024 16:07:20 +0000
ROA not before: Sat 13 Jan 2024 16:07:16 +0000
ROA not after: Fri 13 Dec 2024 16:07:16 +0000
asID: 140227
IP address blocks: 154.205.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29952 (0x7500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 13 16:07:16 2024 GMT
Not After : Dec 13 16:07:16 2024 GMT
Subject: CN=65a2b538-5654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:49:a7:11:69:89:5f:5c:ad:cf:b7:64:f2:d4:
c3:af:d9:50:aa:1a:43:ed:81:a6:a3:f4:ad:d5:45:
ea:78:0b:75:fb:d3:92:ec:18:f5:c6:d2:64:c6:1c:
aa:33:8f:2c:71:65:40:8a:76:0e:c6:1d:8a:2e:1d:
8d:d7:71:45:0c:f6:e9:c8:e7:c4:f0:b1:17:35:f0:
e9:c8:02:d8:39:3a:6c:6c:c0:34:5a:06:09:f1:92:
d9:c2:17:03:6b:c6:4d:0f:52:ff:49:e4:f5:e9:a7:
3f:43:f9:fd:fd:23:71:88:6c:14:46:bd:1c:79:07:
59:4a:fa:55:ed:9d:e5:0b:1a:54:f1:1c:22:d6:81:
6f:f6:14:66:77:99:09:e3:de:d9:aa:9b:c3:81:8f:
7d:9b:62:f1:61:3c:8c:f6:48:de:25:20:f0:6a:8b:
24:5c:b9:38:28:68:3e:f0:3a:b6:27:39:0a:dd:48:
c2:0d:02:58:d9:cc:98:7b:57:c2:ee:7d:41:be:52:
b5:5e:c5:e1:55:00:8f:e5:fc:37:80:ad:0b:a6:d2:
e3:07:92:6d:1a:6e:d5:e1:08:73:28:fe:77:3c:95:
c3:c2:4a:b0:e5:fe:e8:c6:d3:c2:90:75:79:d4:6e:
ff:12:6d:d7:15:31:df:6b:be:f8:d7:51:d5:08:c4:
32:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AB:E5:81:60:D6:A3:27:DE:43:F6:9A:13:C8:01:DD:3F:68:E2:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D41FB2C0B22D11EE9CD3FC74775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.218.0/24
Signature Algorithm: sha256WithRSAEncryption
62:20:92:b0:ee:1e:6d:85:8e:01:8f:89:30:30:48:ce:65:4b:
86:7a:4d:f0:d2:83:31:f2:e5:ce:10:5a:e1:d4:2a:b7:21:eb:
cd:bc:22:74:c2:b7:52:11:f1:03:98:a9:ca:1b:51:e5:1b:91:
06:c1:0d:f4:ef:5f:84:88:41:7c:be:0a:e8:5a:a7:18:05:dd:
6d:d1:54:77:54:dd:26:4d:8b:b8:f8:46:9f:98:fd:20:65:87:
cd:b4:32:61:a8:e9:c6:50:17:cb:fe:8b:8d:5f:08:ec:10:ad:
16:2b:40:37:f7:b6:70:9d:e6:0b:00:72:a4:c3:37:d7:66:53:
80:d3:0c:cf:6f:b0:84:53:46:b4:72:20:6f:16:6f:58:90:55:
fb:e9:3d:58:52:a5:b3:93:2a:52:c4:f6:1c:b1:38:76:df:b5:
54:49:3c:7f:09:1b:3e:d3:3b:33:e0:40:d6:0c:c6:ab:be:56:
17:79:06:1f:15:bd:45:49:c2:e6:e5:4d:1c:86:e3:ff:23:01:
e8:68:05:d0:ef:37:9e:db:41:66:e1:ce:c5:4f:73:88:6a:ad:
87:c5:db:c2:d5:45:d1:f9:6b:e5:4b:d6:70:63:e5:f5:4c:e2:
fe:16:64:64:41:4a:78:13:f1:fa:8b:35:48:85:36:41:d7:dc:
e7:fa:b8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org