Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D62FDD607B1D11EFA69C138B762E951A.roa
File: D62FDD607B1D11EFA69C138B762E951A.roa (raw, json)
Hash identifier: Oo4nHVCkkxPrFDrf7BgWz2QUEM1ZVYzJL7qHpuwoXH4=
Subject key identifier: F6:02:1A:C4:AB:28:2D:B0:86:02:A1:AD:1F:B5:AD:30:68:70:2B:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F324
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D62FDD607B1D11EFA69C138B762E951A.roa
Signing time: Wed 25 Sep 2024 09:09:15 +0000
ROA not before: Wed 25 Sep 2024 09:09:11 +0000
ROA not after: Wed 18 Dec 2024 09:09:11 +0000
asID: 328608
IP address blocks: 154.214.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62244 (0xf324)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:09:11 2024 GMT
Not After : Dec 18 09:09:11 2024 GMT
Subject: CN=66f3d33b-1715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9f:ae:ef:4e:52:d7:83:be:b5:d0:90:e8:31:
39:c8:13:53:ce:2e:bc:fa:7a:ad:57:9c:df:bd:d9:
be:46:1c:96:8b:6e:a2:ed:50:e0:6d:8c:7d:f5:a0:
51:7c:7a:fc:43:6f:59:70:6a:91:0b:78:86:06:48:
66:0d:82:a6:82:60:e9:08:50:7e:bc:c5:a8:ea:1b:
5a:f4:23:d6:8c:ba:c7:aa:08:c9:00:80:a9:a3:d4:
6d:8f:8b:d7:06:a9:0a:79:e1:9b:3f:9e:d4:b1:b0:
47:0f:a7:a3:d9:dd:70:5b:82:9c:ea:d8:7f:99:70:
54:e1:18:fe:61:92:0a:39:05:86:b4:b2:ac:af:a2:
31:1e:03:8b:92:cc:31:ca:69:60:00:87:0a:bf:ad:
e0:1a:48:b4:71:17:5f:84:51:57:34:c8:4b:95:2d:
70:6c:a3:8d:2c:76:64:b4:d8:a8:95:4c:bf:a7:08:
5a:4a:3c:57:a8:ca:91:a2:81:c9:06:87:a0:42:0e:
25:96:a2:59:f2:c1:55:4d:12:03:62:1e:f6:d4:51:
1a:e0:3e:64:d2:48:bc:5a:05:ad:80:f5:77:46:5a:
67:33:98:3d:e8:16:03:93:2f:d5:1f:ec:86:4c:6a:
d7:c2:34:25:42:b7:72:d1:41:8c:70:1e:c5:68:19:
6f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:02:1A:C4:AB:28:2D:B0:86:02:A1:AD:1F:B5:AD:30:68:70:2B:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D62FDD607B1D11EFA69C138B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.204.0/24
Signature Algorithm: sha256WithRSAEncryption
09:66:02:a3:78:79:19:12:2e:14:b7:60:92:11:c7:f1:71:99:
ab:51:d8:53:2b:eb:99:d6:a5:0c:f0:9d:d6:0c:b1:70:c8:0f:
af:02:14:14:53:fa:59:7b:73:ae:0e:5c:76:87:74:48:6b:18:
b3:6d:84:2c:ac:bc:6b:d0:23:37:97:05:3b:f6:96:06:e2:a9:
38:8e:d5:9e:fe:fe:29:54:4a:04:e6:ab:ca:f2:86:d4:48:73:
ba:07:62:0e:53:a8:b2:21:b3:f5:f5:fb:62:e3:12:ad:2a:a1:
fe:bd:f8:67:45:d9:1f:cd:62:75:0d:80:12:17:23:5c:ec:73:
46:bf:b8:f4:a5:69:12:3c:be:b6:58:fe:bf:04:52:eb:f4:13:
e3:7a:bd:00:92:0e:d7:82:a8:cd:64:02:66:8c:1b:c2:62:a4:
57:b2:1f:c5:57:97:a0:2d:5f:81:f8:39:a4:a1:c6:20:d3:88:
bf:ef:09:15:b7:1f:4b:b1:0a:7a:06:f9:20:50:43:34:98:59:
c9:64:fa:18:ba:e4:9d:f3:cf:8c:d8:a9:02:66:c9:b1:2d:9d:
d5:c8:da:f1:33:64:19:1b:9e:24:4c:e7:c3:bd:8b:30:ce:ac:
ff:97:68:0a:73:6a:08:f6:9a:09:85:6b:36:31:a7:7e:1a:f5:
84:b4:71:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org