Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F243A0BC772211EFBE6BB771762E951A.roa
File: F243A0BC772211EFBE6BB771762E951A.roa (raw, json)
Hash identifier: 4Cx+EZj/F9jpXoItVq0Jej0YsRKSxX8g9V5PdaCCFcQ=
Subject key identifier: E7:26:75:40:0F:89:27:E5:76:5E:76:6E:3A:9B:00:31:5D:11:7B:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F158
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F243A0BC772211EFBE6BB771762E951A.roa
Signing time: Fri 20 Sep 2024 07:35:45 +0000
ROA not before: Fri 20 Sep 2024 07:35:41 +0000
ROA not after: Fri 08 Aug 2025 07:35:41 +0000
asID: 139659
IP address blocks: 154.204.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61784 (0xf158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 20 07:35:41 2024 GMT
Not After : Aug 8 07:35:41 2025 GMT
Subject: CN=66ed25d1-a727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:68:88:8a:d0:a4:1c:32:37:14:93:ae:35:
48:29:94:39:3a:51:46:0c:95:eb:87:a7:92:96:71:
fb:31:8d:7d:d1:bc:4d:55:25:86:f3:89:4c:bb:57:
40:41:d5:c8:cd:91:a9:05:78:8d:7b:79:2e:e2:55:
13:82:65:90:f2:a2:6c:3b:db:d5:d9:c4:8b:f5:80:
08:03:22:46:15:7e:02:2e:7b:60:44:61:a6:19:4f:
e0:9f:c2:4d:c9:39:24:93:b1:61:12:cf:18:8c:16:
0c:21:65:e0:b6:42:c3:d6:a0:26:f7:be:01:3d:30:
52:c2:91:9e:da:f7:f8:2b:1a:b5:9b:00:20:20:19:
2d:81:41:91:52:fb:f0:77:54:79:d3:69:4b:44:44:
13:73:4b:6e:c7:ef:0d:fc:2d:d5:05:3a:32:9b:4a:
dc:5d:3a:c1:b4:a4:b3:c3:67:7e:17:cb:29:6a:1c:
8c:49:7c:b8:72:c7:76:7c:10:9c:e9:ed:51:37:28:
af:f8:f5:d7:ba:16:1b:0b:9e:f8:b9:ed:2f:1b:02:
b2:8e:de:b9:37:42:af:64:f4:98:5c:5a:9f:85:ee:
2c:03:b9:5d:65:d5:cc:09:6d:61:ca:e3:75:78:70:
99:10:9f:59:e6:ed:c2:cd:5f:0c:99:42:7e:1f:03:
24:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:26:75:40:0F:89:27:E5:76:5E:76:6E:3A:9B:00:31:5D:11:7B:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F243A0BC772211EFBE6BB771762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:29:dd:c7:e3:37:f8:f9:17:7e:52:9f:52:93:cb:da:72:f0:
d1:77:d2:50:4d:d8:91:9f:b6:2e:5d:b9:a6:78:a4:41:61:ca:
9a:93:b3:79:93:d6:15:ce:56:af:4b:bb:61:1e:16:0d:37:54:
e2:9f:4c:20:05:8d:4b:b3:f0:97:d7:91:67:6d:ac:37:37:eb:
2c:40:d1:de:6d:d5:d3:65:b7:36:d3:5e:72:a6:9f:f5:52:6c:
a2:f8:20:f2:26:45:0b:4d:df:24:61:f7:61:c2:5e:9b:b8:18:
08:3e:6b:9c:66:d8:1c:20:f0:0d:89:f9:8b:16:9d:ed:23:71:
11:08:c7:93:34:92:61:4d:e5:ec:2d:dc:f7:10:02:52:3b:d5:
6b:7a:9c:13:03:60:33:c3:a0:5c:74:36:08:35:c7:ce:17:19:
68:c2:9f:5f:66:20:78:04:fe:df:85:9b:41:c6:e9:e7:57:cb:
eb:c2:e6:8a:54:d7:79:88:f3:6a:02:80:50:04:5b:be:d0:3d:
68:1e:76:33:64:66:0f:12:f8:33:f9:a3:68:61:8e:0d:f0:71:
d1:ee:68:04:dd:f6:ef:54:ee:03:4a:ca:00:1d:ac:84:e5:07:
87:e8:74:95:8e:47:72:dd:ad:21:a9:7e:1c:08:f2:96:80:fd:
6a:ef:72:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:16:43 2024 by rpki-client on console-fra.rpki-client.org