Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F98B802CECAA11EE93EF717F775412E6.roa
File: F98B802CECAA11EE93EF717F775412E6.roa (raw, json)
Hash identifier: HGEHlGhqkpCHnfHu254WySrzyT4ZUUzQ5cauChhylsM=
Subject key identifier: 0F:10:AB:31:73:E1:A8:50:03:BE:EE:4E:F4:EA:E3:62:DA:CF:10:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F98B802CECAA11EE93EF717F775412E6.roa
Signing time: Thu 28 Mar 2024 02:29:17 +0000
ROA not before: Thu 28 Mar 2024 02:29:14 +0000
ROA not after: Sat 22 Feb 2025 02:29:14 +0000
asID: 45669
IP address blocks: 154.81.224.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42706 (0xa6d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 02:29:14 2024 GMT
Not After : Feb 22 02:29:14 2025 GMT
Subject: CN=6604d5fd-c583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1a:31:d0:cd:69:e5:2b:0c:e6:c6:01:fc:09:
a7:93:f3:72:09:3c:da:9c:c9:71:06:2e:51:ef:c9:
4f:1d:57:f6:a5:35:e7:a4:c4:bd:17:2c:2f:1c:47:
b3:d6:86:4b:f4:b3:41:60:40:bf:e9:07:77:83:63:
cd:22:15:a4:e2:12:4f:f3:dd:87:cf:49:9a:3d:db:
0d:a0:a6:9e:29:c8:0a:c8:38:03:8c:0e:2e:2e:9b:
e0:3b:d6:31:72:70:cc:14:44:4b:31:52:7e:97:8c:
34:44:8f:d8:61:6e:0b:3d:bb:23:24:a9:45:6e:33:
ca:41:0a:98:f3:de:f9:22:19:b1:76:14:2d:44:2d:
57:d9:fb:63:2c:6b:dd:3f:93:91:69:c9:2a:2b:bf:
05:03:f2:c0:6e:22:05:b7:50:9c:b6:6d:6b:ab:68:
8b:33:df:9c:7e:1a:dc:bf:32:22:1d:93:d9:e8:da:
9a:ea:64:9e:4d:4d:b1:76:3c:9c:c1:35:5f:d2:ad:
53:94:ca:f5:cd:19:3a:9c:dc:ce:64:3a:39:e5:10:
3c:af:55:7c:c2:b3:04:c6:ea:57:73:55:5a:2b:c9:
b9:71:a5:94:9d:cb:0d:58:93:41:ea:13:96:61:71:
bd:86:76:46:eb:87:e1:52:56:02:75:cf:d5:19:58:
d4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:10:AB:31:73:E1:A8:50:03:BE:EE:4E:F4:EA:E3:62:DA:CF:10:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F98B802CECAA11EE93EF717F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.224.0/21
Signature Algorithm: sha256WithRSAEncryption
47:30:4d:55:16:ae:b1:69:e4:0f:01:85:4c:fa:ef:00:de:20:
86:06:3f:21:b8:02:a5:66:68:45:f8:ac:88:54:54:28:c6:6f:
84:33:32:63:db:0c:f3:a2:e8:ac:0f:5c:44:9e:80:9f:64:ca:
67:58:85:dc:d7:3a:c0:b5:9a:b3:20:16:3c:f8:8c:4f:76:54:
ea:d7:c7:b2:cc:67:ab:58:a0:eb:81:58:9e:27:b6:81:dc:b2:
ff:ce:82:b5:50:6d:1f:e8:80:1f:b6:79:af:c2:f8:bb:04:d4:
9d:47:2e:56:e5:b3:5a:e3:83:0e:24:82:7a:2f:f9:dd:06:e7:
5e:77:0d:eb:e1:9d:8e:40:48:c1:06:ab:2c:dd:b0:58:e6:d2:
40:de:7a:33:be:2b:78:54:c8:e5:9b:b6:ae:12:ae:4d:85:1d:
b9:0c:8e:ba:fd:5d:31:b5:d4:22:c8:62:c0:14:ca:c6:d8:8e:
ae:cb:eb:00:38:f3:22:a4:94:a9:dd:6a:f2:56:43:17:c8:ce:
7a:ba:c7:85:f3:2a:a7:e1:21:e1:8c:1f:a5:70:d6:e6:03:27:
4c:37:c9:c7:db:b8:25:d7:ea:56:f3:57:c8:d1:82:e2:0f:a3:
08:14:6a:ec:43:5c:c5:67:f9:60:db:9a:71:d0:d6:01:1e:9d:
6d:87:fb:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:54 2024 by rpki-client on console-fra.rpki-client.org