Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2DE942E8F05011EEB7E2EA77775412E6.roa
File: 2DE942E8F05011EEB7E2EA77775412E6.roa (raw, json)
Hash identifier: GBenxdZx6aEBeL1h9fe5p87DnQDStd1SWX74CBckZcY=
Subject key identifier: FE:CD:B4:86:97:8C:7F:03:65:BC:FE:4E:9E:6C:25:78:B0:FA:68:E3
Certificate issuer: /CN=F36FA15DAF/serialNumber=D8B6E18C65DD1F96F2A544CACFC98086AEF9296F
Certificate serial: 04FF
Authority key identifier: D8:B6:E1:8C:65:DD:1F:96:F2:A5:44:CA:CF:C9:80:86:AE:F9:29:6F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2DE942E8F05011EEB7E2EA77775412E6.roa
Signing time: Mon 01 Apr 2024 17:49:25 +0000
ROA not before: Mon 01 Apr 2024 17:49:20 +0000
ROA not after: Mon 01 Apr 2030 17:49:20 +0000
asID: 207990
IP address blocks: 154.73.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.mft
rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1279 (0x4ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAF/serialNumber=D8B6E18C65DD1F96F2A544CACFC98086AEF9296F
Validity
Not Before: Apr 1 17:49:20 2024 GMT
Not After : Apr 1 17:49:20 2030 GMT
Subject: CN=660af3a5-8104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:98:fe:eb:76:ac:40:e4:57:a0:ff:82:02:51:
ca:6c:e5:a5:fa:96:bd:27:af:dd:ef:b3:10:09:68:
95:48:4d:4c:76:d8:5e:c9:0a:77:57:7b:e6:e2:71:
e0:b5:9a:ea:3b:f1:c1:fc:ef:54:4e:b9:ed:e7:ea:
87:87:ca:37:e0:fc:90:81:43:4e:d4:2d:34:4d:de:
74:93:12:12:01:f2:ad:27:9d:01:f7:e1:da:a2:0a:
28:4f:fb:45:96:f9:02:b2:58:e0:c8:d0:59:37:4b:
fb:b0:f3:23:28:07:cb:28:96:7b:7c:4e:a3:f7:df:
6c:21:d6:f4:68:fe:4b:55:a6:2b:b7:91:8d:54:b3:
e6:01:06:e1:03:6e:c1:88:50:82:9c:f3:82:84:e8:
40:10:c3:0f:31:12:d5:17:2f:75:86:f5:9e:92:2c:
00:c1:fe:6c:2d:5d:f2:78:3c:54:c0:32:34:43:72:
75:9e:94:1d:5e:24:5a:38:d7:27:f4:47:a8:b0:8b:
ad:00:90:51:88:01:f9:d2:35:d1:39:40:f0:69:5c:
f2:2c:e1:97:73:5d:f3:f6:c2:42:88:b8:dc:47:fe:
53:0d:c7:5d:f3:4a:f0:62:f1:21:5f:2b:11:69:f4:
47:78:96:fd:89:38:c3:41:d0:e5:dd:3b:d6:3a:55:
1c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CD:B4:86:97:8C:7F:03:65:BC:FE:4E:9E:6C:25:78:B0:FA:68:E3
X509v3 Authority Key Identifier:
keyid:D8:B6:E1:8C:65:DD:1F:96:F2:A5:44:CA:CF:C9:80:86:AE:F9:29:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2DE942E8F05011EEB7E2EA77775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.73.249.0/24
Signature Algorithm: sha256WithRSAEncryption
46:8b:9e:a9:da:0b:a0:95:04:dc:eb:cc:d0:c8:8f:0b:da:fa:
d3:dc:d0:fb:8c:1d:3b:98:a8:ab:0c:99:bb:be:e9:f8:08:01:
04:98:4b:20:da:2f:f0:6b:0e:94:7c:67:e8:39:89:14:3c:2c:
63:f3:96:db:f6:c0:16:f6:77:15:47:c4:2a:12:bb:21:3e:bd:
02:20:09:31:af:86:75:46:a7:8a:1f:67:b9:eb:2a:e7:3d:95:
f1:56:96:42:2c:81:c0:20:04:fd:52:fa:65:21:41:24:7c:6d:
f3:7c:03:1c:6c:2f:9d:c4:61:5b:7e:db:ac:62:db:72:6d:e4:
54:21:04:8f:cd:d0:3f:c3:ad:90:d6:7a:3a:3d:4f:8c:3e:c5:
df:45:bd:4b:08:bd:55:7b:78:67:83:cf:40:81:1c:e2:72:1e:
5d:b5:db:e1:c9:fd:6a:4e:ce:21:ee:6d:fa:f5:81:0f:74:aa:
d6:98:c8:9f:0d:77:04:be:28:f0:95:a3:e0:d7:de:08:07:a5:
84:01:85:0e:55:32:1c:23:79:e4:8e:dc:45:bf:79:3d:96:a1:
16:dc:3d:6f:71:68:4e:5f:89:b4:0d:32:f9:c2:fb:4b:08:5c:
f2:cd:b2:54:e3:4e:5f:d7:20:c0:f0:b7:bc:e3:96:53:84:0c:
86:cc:bc:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org