Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4015554977E11EFBD0C3F5E762E951A.roa
File: E4015554977E11EFBD0C3F5E762E951A.roa (raw, json)
Hash identifier: KTpAooJwNfWFFPQWJICTnv0zucuFRTjpYL1dzvy3xso=
Subject key identifier: 70:11:A1:83:59:64:01:E5:BB:C2:3A:27:F1:EC:0F:AD:54:0A:20:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010496
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4015554977E11EFBD0C3F5E762E951A.roa
Signing time: Thu 31 Oct 2024 11:54:32 +0000
ROA not before: Thu 31 Oct 2024 11:54:28 +0000
ROA not after: Fri 27 Dec 2024 11:54:28 +0000
asID: 152179
IP address blocks: 154.91.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66710 (0x10496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 11:54:28 2024 GMT
Not After : Dec 27 11:54:28 2024 GMT
Subject: CN=67236ff8-3348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b2:20:67:31:06:03:e2:e5:c9:09:9f:59:25:
0f:ca:2f:91:cd:e5:a1:62:b5:68:ba:f6:e3:1e:e4:
16:1a:39:c4:42:60:df:14:e9:93:f4:10:9b:1f:98:
dc:8f:56:05:65:71:25:b0:63:5c:b6:18:5a:b2:25:
fa:d4:c1:b5:79:e5:7c:34:96:99:54:34:55:c8:6f:
08:2c:1a:99:2b:ad:23:1e:4b:9e:38:49:b4:51:5a:
54:5b:1b:ba:3a:82:a2:4e:ca:4e:a4:7e:c8:94:c9:
d2:84:21:3a:e0:61:93:3d:c4:17:04:12:8a:39:d6:
90:c6:25:29:f3:69:ba:1c:38:3e:5a:ca:b6:6f:54:
30:79:44:40:f3:45:d2:e0:ce:80:e6:2f:84:4d:79:
dd:44:e3:fa:95:f6:df:6a:37:5f:0b:24:3f:01:a0:
11:1e:f6:a2:0c:c8:58:0d:91:46:4b:ee:b0:93:a3:
ad:a1:dd:ca:ba:a3:88:f5:8b:8f:78:f9:ab:94:31:
17:b8:d7:9b:f5:33:77:93:31:09:5b:04:d5:3e:e4:
08:13:dc:4f:13:3f:3a:14:ce:df:e0:56:21:56:73:
91:84:c6:ac:65:f2:2e:5e:53:30:45:7c:d1:89:57:
3f:ec:be:70:58:a0:1d:98:1d:4f:7c:a5:f0:a8:48:
2f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:11:A1:83:59:64:01:E5:BB:C2:3A:27:F1:EC:0F:AD:54:0A:20:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4015554977E11EFBD0C3F5E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.201.0/24
Signature Algorithm: sha256WithRSAEncryption
82:80:07:f4:37:34:57:21:8b:90:a6:4b:e9:32:e2:76:aa:6d:
bf:0c:ad:04:78:3e:f4:31:32:e3:9c:ed:a1:30:4b:7c:29:3a:
8e:7c:fb:e8:5b:99:80:c8:ad:7a:25:62:e9:d6:fe:be:55:d4:
a4:7a:57:e9:32:ac:2e:4d:be:00:12:f7:32:b4:eb:98:a9:46:
a5:83:84:d0:f3:d3:78:80:5c:d6:f8:f1:2d:9d:e7:06:3f:0b:
8b:8d:82:34:4d:17:57:c3:53:7f:40:2b:3c:f9:19:bf:50:b7:
eb:31:3e:55:b2:f8:60:f0:e9:aa:0f:c9:81:46:8d:4b:48:1a:
1f:08:c3:17:29:25:e6:8f:51:a7:28:15:b2:45:55:77:b7:fc:
12:0e:a0:67:b2:64:40:d0:1f:6e:83:20:db:47:e5:36:b3:27:
45:d4:2a:78:46:c8:7d:57:8a:a3:bd:b7:dd:ff:1f:bc:fc:a3:
ae:f3:a9:d6:3b:e8:86:c4:5d:8c:73:f4:28:55:22:6a:ed:22:
40:07:c2:18:e9:7c:9a:33:62:8f:e3:41:00:97:8f:ec:33:a5:
9a:38:91:94:4c:82:6d:8e:ad:d7:9c:a8:d4:60:71:31:08:2d:
7f:99:bf:19:75:27:ca:e7:94:de:f0:d6:5b:5c:77:35:ad:63:
17:71:81:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:50 2024 by rpki-client on console-fra.rpki-client.org