Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0D82CAC92B611EF8C1833BC762E951A.roa
File: F0D82CAC92B611EF8C1833BC762E951A.roa (raw, json)
Hash identifier: rSG6iyttSKZKvLNE3utE/CLJMKB+ynGo5e2uahQ1EsY=
Subject key identifier: 08:36:14:12:9D:C3:50:34:6A:33:5A:59:DC:10:AE:5D:81:A3:62:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010208
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0D82CAC92B611EF8C1833BC762E951A.roa
Signing time: Fri 25 Oct 2024 09:53:09 +0000
ROA not before: Fri 25 Oct 2024 09:53:06 +0000
ROA not after: Sun 01 Dec 2024 09:53:06 +0000
asID: 202656
IP address blocks: 154.219.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66056 (0x10208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:53:06 2024 GMT
Not After : Dec 1 09:53:06 2024 GMT
Subject: CN=671b6a85-6046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cd:54:f1:9b:19:4b:1f:b2:69:6b:c2:bf:1a:
a5:da:58:f1:8b:8c:8c:e9:71:5a:b1:86:b6:2c:22:
45:d1:56:cc:10:c2:db:94:8d:28:3a:41:dc:48:b6:
ae:3f:1c:40:1e:e4:87:3c:ce:f2:06:87:fc:ed:f1:
54:a5:9e:b5:9a:86:f0:c7:81:a1:ff:89:fa:43:04:
b4:ea:98:11:f1:d1:6c:f8:42:4d:1f:10:b9:eb:ea:
9a:d1:70:a4:89:f7:4e:44:35:9a:16:11:65:30:a6:
ac:43:5d:80:c5:07:b3:b5:79:6e:b6:c0:b8:35:7e:
44:ba:7c:02:68:8e:09:50:6e:ec:e9:82:38:62:73:
ad:0b:e9:88:be:ce:56:53:f4:66:35:3c:04:33:a4:
13:61:0e:78:0f:8a:76:eb:cf:c1:05:6e:59:f6:0e:
05:db:fa:b0:58:e5:15:41:b8:04:4b:d8:5a:fc:a6:
6c:6f:b5:e9:fb:9f:26:55:ee:40:81:39:dc:d5:47:
28:80:88:a5:5e:b0:cd:99:55:6c:7a:a6:c3:50:3b:
11:c4:21:1a:cd:f2:5a:0d:59:1f:09:9e:fe:81:9a:
0f:ad:cf:0a:db:68:75:f9:71:ab:71:83:68:29:1a:
2d:2d:5a:c8:42:a3:1b:09:76:91:03:b9:5e:9b:31:
3a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:36:14:12:9D:C3:50:34:6A:33:5A:59:DC:10:AE:5D:81:A3:62:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0D82CAC92B611EF8C1833BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.1.0/24
Signature Algorithm: sha256WithRSAEncryption
22:38:c7:af:6a:cc:e4:2c:16:87:0b:09:58:e9:b1:63:25:9a:
09:57:14:dc:54:33:da:be:b6:9a:08:82:0b:43:ea:7a:f2:e9:
70:bf:4c:78:cd:9b:2f:7d:68:79:35:14:04:b6:4f:9d:d7:06:
64:7a:10:75:82:01:ff:3f:b3:b2:5a:1c:d5:12:be:20:5d:51:
e9:c5:22:f7:30:f8:a0:53:27:ea:c0:47:83:98:26:f6:b7:7e:
dc:e7:c0:3e:9a:49:47:af:44:7b:02:f1:c9:1b:cb:91:bc:e1:
0c:22:5a:34:48:8d:46:fd:4e:f8:10:16:0b:fc:be:53:f6:31:
2b:3f:3f:14:51:6b:0f:2d:46:32:10:a8:5f:fe:fc:65:f6:af:
71:13:66:2e:3b:57:a3:7e:fc:5e:3a:7b:7e:e9:e5:ea:81:8e:
03:12:88:51:e3:84:13:40:f8:10:a3:65:32:a4:46:65:8d:92:
2d:b5:d2:b9:15:2b:9f:e6:cf:d9:8e:8f:34:45:04:93:3e:d5:
b3:22:65:12:25:a4:9f:e2:75:1e:11:c8:0a:02:db:6b:5d:d6:
43:5b:fc:6b:45:4c:52:dc:09:cb:96:25:f1:d2:51:c7:20:08:
47:e0:bb:57:5f:34:e2:f5:a9:95:2a:3d:12:69:fc:c1:f0:b6:
ed:6b:32:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:52 2024 by rpki-client on console-fra.rpki-client.org