Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CAE8D56C7B2011EF8BCF7F9C762E951A.roa
File: CAE8D56C7B2011EF8BCF7F9C762E951A.roa (raw, json)
Hash identifier: K7uGyDsGcwu1vR1+f450LEa9paRkk5kxfRqqKdNTMPM=
Subject key identifier: 16:C4:D1:33:AD:9E:78:52:C7:83:93:1B:00:CE:E9:FC:74:27:A6:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F34C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CAE8D56C7B2011EF8BCF7F9C762E951A.roa
Signing time: Wed 25 Sep 2024 09:30:24 +0000
ROA not before: Wed 25 Sep 2024 09:30:21 +0000
ROA not after: Wed 18 Dec 2024 09:30:21 +0000
asID: 2914
IP address blocks: 154.214.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62284 (0xf34c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:30:21 2024 GMT
Not After : Dec 18 09:30:21 2024 GMT
Subject: CN=66f3d830-f639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:f1:a8:c2:90:3a:80:06:8b:36:97:e0:b3:
e3:6d:63:d1:a2:00:98:79:e4:d6:ba:da:8f:10:18:
43:f9:46:ad:13:0f:fe:34:94:e7:aa:14:fd:e3:44:
64:e1:1d:ec:1c:50:62:ff:08:f3:58:a2:5f:0f:64:
34:c5:1c:85:69:8d:cd:1e:fe:53:09:85:b0:22:f0:
5f:77:4e:03:5b:65:e3:89:f0:8c:44:dc:c1:05:71:
9a:2f:7f:c9:12:5f:ca:c7:df:a1:f1:e4:58:57:00:
6d:d8:8c:2a:73:c8:2c:4e:5b:66:50:61:db:85:97:
cc:07:c6:74:4e:8a:90:4a:5f:cb:f3:21:5b:ee:ee:
18:fd:7b:0d:ed:d4:70:51:68:5d:5b:aa:1d:5a:f0:
fe:dd:bc:2b:da:39:cf:2f:c1:55:c4:1f:b5:85:3a:
8c:7a:b8:d2:56:72:7f:8a:e3:c0:d7:c2:d6:fd:bf:
cb:2d:76:ff:e6:39:ec:58:1c:8e:05:9f:a0:fd:07:
ce:b2:71:2e:66:b3:1c:d0:f3:b8:0a:92:98:6a:32:
17:84:92:46:dc:2c:4c:db:34:77:86:41:6b:80:e0:
82:8c:0a:0c:89:89:3c:7e:a9:28:b1:1f:90:d8:16:
65:28:5c:0f:4d:36:11:20:9e:21:e3:16:9f:45:5f:
91:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C4:D1:33:AD:9E:78:52:C7:83:93:1B:00:CE:E9:FC:74:27:A6:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CAE8D56C7B2011EF8BCF7F9C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.192.0/18
Signature Algorithm: sha256WithRSAEncryption
6d:7b:66:fb:f6:cf:e2:bd:77:37:a9:70:b7:8b:ac:52:ba:cc:
33:e1:4e:53:fb:9b:6e:da:25:2f:2a:d3:b5:53:24:7c:6b:fd:
c5:bc:15:c7:80:db:c3:33:5d:51:bd:e9:e0:81:0e:9d:9e:28:
13:99:13:91:8b:15:98:fe:50:7a:8d:15:3a:25:2a:78:30:c4:
61:0c:f0:31:a3:76:b3:95:d6:7d:88:8e:0a:de:af:63:e6:a6:
0d:8b:00:97:fd:b1:67:15:f3:b9:84:78:99:3e:85:9f:e6:d1:
b8:8f:a4:86:ae:b2:55:da:77:17:66:73:d7:ce:3b:e5:68:5a:
4f:b7:e4:dc:8b:bc:c1:45:45:ed:e4:5d:ac:c2:c8:1b:7f:81:
30:63:26:cc:a8:b1:50:82:5b:12:b1:87:64:2f:8f:8f:53:94:
a8:f7:c7:b5:53:5a:02:ad:38:4b:14:22:95:5f:88:63:8b:da:
e3:ed:1f:99:51:04:a7:58:8a:a7:83:22:19:90:49:11:5d:2d:
bc:c4:ad:1b:2b:cc:51:fd:1c:60:a8:b2:a9:67:e5:7a:a9:52:
39:ca:79:77:91:aa:66:3a:28:9f:8f:5d:38:3a:9a:32:40:b9:
78:ca:cb:06:d4:60:65:5a:7d:8f:d7:25:1d:38:71:ca:99:a4:
15:4d:95:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:06 2024 by rpki-client on console-fra.rpki-client.org