Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC7A2292768711EF913CFE9A762E951A.roa
File: DC7A2292768711EF913CFE9A762E951A.roa (raw, json)
Hash identifier: c9aY+K8fih5MN+9jwqjUu5GJgJynWB0CJLjbhAfV/GM=
Subject key identifier: 4F:45:EF:24:E2:4F:E8:00:78:82:D2:57:0C:49:A9:12:2C:C9:FA:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F089
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC7A2292768711EF913CFE9A762E951A.roa
Signing time: Thu 19 Sep 2024 13:05:36 +0000
ROA not before: Thu 19 Sep 2024 13:05:33 +0000
ROA not after: Fri 08 Aug 2025 13:05:33 +0000
asID: 133861
IP address blocks: 154.204.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61577 (0xf089)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 13:05:33 2024 GMT
Not After : Aug 8 13:05:33 2025 GMT
Subject: CN=66ec21a0-46a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c1:e7:d2:b3:8f:9d:f8:52:b2:bc:73:02:35:
b0:1f:fb:9b:3b:fb:9b:6a:a5:35:39:8f:bb:0e:f2:
ad:cb:db:94:70:f3:15:55:6c:82:b1:4d:75:8a:94:
8d:81:63:7d:1f:ca:55:8b:e7:95:54:db:d8:00:af:
49:38:6f:e7:41:9b:86:cb:b3:a4:eb:e7:67:aa:ac:
be:5a:bb:8d:e2:c6:fc:cc:c4:ca:00:f6:95:5a:cb:
73:f1:64:4a:a4:ad:47:5b:69:44:af:2a:67:8d:11:
5d:af:9b:6f:1f:14:b3:d2:46:b6:47:35:4d:c8:76:
68:17:ea:2b:28:20:fd:8a:eb:33:8f:91:57:18:41:
d1:27:55:62:f4:2a:2e:3b:f0:f9:e1:d4:36:69:c5:
ce:b8:93:a3:83:18:6a:8d:40:57:34:44:90:b8:69:
e8:30:66:8f:83:d2:3e:0a:8c:af:47:6c:a1:96:cc:
e8:28:5f:a6:36:f1:41:7b:c4:ab:bf:2f:eb:60:e6:
ea:2a:c1:dd:00:50:61:76:06:2d:6f:e6:95:6a:28:
7e:0c:00:8d:a9:68:2c:31:39:b1:33:f0:7f:bf:d2:
46:18:8e:14:01:db:33:0f:bb:86:83:57:40:65:db:
31:f8:02:a7:99:80:dd:04:77:69:4c:07:3d:d2:97:
a7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:45:EF:24:E2:4F:E8:00:78:82:D2:57:0C:49:A9:12:2C:C9:FA:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC7A2292768711EF913CFE9A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.49.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:ab:53:27:ad:03:6c:04:e7:58:3d:99:18:7b:d9:4e:f0:fa:
a6:8c:09:a6:d0:7d:f7:6b:8c:23:45:c0:76:72:ff:ac:88:85:
fa:4a:52:b8:e4:e6:8d:d3:76:1c:97:b6:a3:45:53:57:af:31:
e1:d7:0e:c8:b7:29:e3:bf:6f:4c:a8:bc:0d:79:ac:d2:27:ce:
80:c7:be:4a:7c:fc:13:df:85:f1:cb:55:1a:87:e6:b8:bc:a8:
67:1e:45:a6:1c:26:38:94:96:2b:b9:2f:40:3d:0c:51:fc:d3:
0d:73:ca:39:3c:1e:ac:c7:61:cf:95:a9:de:f4:36:bd:34:f9:
84:45:97:21:a3:67:ca:90:6e:d2:82:ec:a9:b6:02:6a:97:c8:
ec:ef:4b:91:10:e8:95:fe:ed:5a:6a:d5:0b:c6:aa:53:de:15:
de:10:33:97:0c:6b:46:8d:52:57:df:2c:39:be:d3:65:b8:50:
25:0b:d6:99:50:c0:52:2c:e3:68:5c:16:c5:3e:53:27:7e:86:
40:22:29:e5:f5:fd:5b:50:a5:ea:a4:0d:d9:00:d6:d6:8d:ec:
91:03:59:23:53:3d:73:35:84:3d:f6:50:7c:b7:74:df:6f:99:
0f:d0:1b:c0:74:b6:9f:c3:ba:bc:3b:2a:54:91:cd:e0:af:09:
fe:87:35:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:27 2024 by rpki-client on console-fra.rpki-client.org