Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D49B393EA75211EF818509B0762E951A.roa
File: D49B393EA75211EF818509B0762E951A.roa (raw, json)
Hash identifier: 5W+qklQ6OUrPV8MlWR/TaUlvvDX8+2hUIu9wg/IA/k0=
Subject key identifier: 58:C4:7B:F2:CE:27:AD:C3:FC:9E:92:51:D0:CB:8D:F2:EA:DE:37:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FC1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D49B393EA75211EF818509B0762E951A.roa
Signing time: Wed 20 Nov 2024 15:19:27 +0000
ROA not before: Wed 20 Nov 2024 15:19:23 +0000
ROA not after: Sun 01 Dec 2024 15:19:23 +0000
asID: 151800
IP address blocks: 154.197.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69569 (0x10fc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:19:23 2024 GMT
Not After : Dec 1 15:19:23 2024 GMT
Subject: CN=673dfdff-facb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fa:86:ff:a9:50:cc:d7:57:fe:db:50:d0:f7:
a4:16:95:da:7b:68:68:79:af:a1:43:29:7f:00:eb:
7d:6c:97:1d:dd:43:7b:3e:fe:69:f0:2f:4b:1e:0b:
a3:8f:32:0d:86:dd:ec:91:33:e8:2c:fc:29:ad:a2:
ee:ca:5f:34:58:0a:f6:2c:af:2a:40:43:0b:e0:a1:
d6:ae:06:1f:de:4a:0e:fe:eb:9b:51:0f:fd:d0:e1:
88:ad:7e:31:f4:2c:5e:ec:1f:a4:ab:53:b0:32:aa:
d2:58:c7:84:ce:6b:75:41:62:ac:01:3d:9d:86:6b:
d8:e0:67:9d:42:ef:fe:ea:79:74:1a:00:9e:be:d1:
f5:09:44:4f:3d:09:34:42:c1:3e:d2:2e:e2:39:79:
c0:bf:a0:e7:bc:24:a2:dd:4a:6d:5f:a1:17:31:dc:
56:3c:13:4e:58:23:e2:a1:e2:08:0a:0f:55:70:22:
63:80:dc:37:1b:b9:3f:de:c9:17:4a:c7:c3:8f:e9:
ce:c9:c4:05:12:5d:a4:54:e5:1a:34:1b:42:38:8c:
5d:c0:13:23:0e:64:98:c3:6a:ac:25:c6:bd:fb:fd:
00:cb:47:f6:da:c2:79:d5:5b:61:53:c7:33:1c:6f:
81:8e:ae:89:0e:72:c4:4a:50:04:0a:78:27:84:c7:
85:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C4:7B:F2:CE:27:AD:C3:FC:9E:92:51:D0:CB:8D:F2:EA:DE:37:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D49B393EA75211EF818509B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.66.0/24
Signature Algorithm: sha256WithRSAEncryption
52:71:48:3e:3a:36:45:37:a0:67:fb:ae:75:3a:56:14:77:c8:
4c:83:db:6d:b5:cd:6c:c6:16:2c:c5:bb:62:3f:cc:da:f1:f9:
7e:82:05:de:d0:d9:56:4f:f0:a7:45:fd:92:e3:30:60:0a:64:
32:0d:21:5c:61:b0:1f:ce:2e:c7:46:ec:33:c5:eb:11:ed:27:
df:39:d5:eb:b7:ef:e7:ad:f9:c8:45:48:c1:7b:fe:74:83:90:
39:7d:63:ee:ea:46:ae:d0:1b:51:34:95:10:f6:f4:e6:88:94:
f9:ce:ac:48:9a:a8:73:f8:de:5c:cd:b7:24:5a:b2:c5:d4:07:
e6:78:b5:71:be:8a:2d:00:b0:df:ab:24:27:db:24:d1:80:13:
ba:d1:a3:46:10:cb:d1:3d:10:cd:ff:ab:c1:e4:c3:09:12:0f:
55:72:9b:30:95:61:2e:33:0c:91:7b:74:be:32:89:13:12:44:
6a:06:55:31:14:68:22:a8:1f:f2:8c:0b:4a:10:ab:c6:85:e4:
de:b3:46:79:3d:21:b5:42:74:3f:ea:22:45:ff:d6:a0:5f:63:
64:4b:06:9a:44:8d:c7:96:67:ee:45:6e:a0:b8:9b:1c:0c:55:
d7:3f:4b:58:f2:b6:de:c4:58:8d:16:98:9b:58:34:79:c4:3e:
db:94:a0:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org