Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0119E6EC8F8C11EF96751149762E951A.roa
File: 0119E6EC8F8C11EF96751149762E951A.roa (raw, json)
Hash identifier: oZAiPKK95UjE9d5CV6Yb1+4LW2rt8Ir/ZUzlzJY7CtU=
Subject key identifier: 4A:61:EB:A2:0E:07:60:9A:A9:0F:3E:CA:EA:BC:15:79:8D:0C:6E:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01003C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0119E6EC8F8C11EF96751149762E951A.roa
Signing time: Mon 21 Oct 2024 09:08:15 +0000
ROA not before: Mon 21 Oct 2024 09:08:11 +0000
ROA not after: Tue 26 Nov 2024 09:08:11 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65596 (0x1003c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 21 09:08:11 2024 GMT
Not After : Nov 26 09:08:11 2024 GMT
Subject: CN=671619ff-cc2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:28:87:63:62:bb:34:95:b8:7b:05:c1:dd:fc:
9d:24:b0:88:2b:80:ac:18:8b:b2:21:7e:1c:ec:34:
18:4a:47:6b:3b:f1:52:eb:ab:e2:08:49:f5:d6:55:
f1:05:cf:5b:3e:91:1a:c6:2f:48:46:fe:3a:9c:53:
e5:0c:67:c3:b6:b0:f3:c6:f9:b2:66:f0:01:8a:07:
05:3f:f0:19:29:43:9c:9f:af:a1:5c:ff:39:12:b6:
4d:bf:66:32:f4:e1:7d:cd:b4:4e:b1:fd:ac:18:cb:
1f:f8:69:4c:53:d9:7b:fc:a7:3b:2e:93:ce:83:55:
5f:17:2f:bb:5e:5e:90:68:7a:6b:7b:75:f5:ee:76:
e9:63:98:82:37:94:38:84:72:80:77:26:c0:15:cc:
43:45:8e:5b:28:6a:ba:21:36:05:de:ad:6c:14:80:
11:80:ba:70:b8:59:36:8f:98:51:84:bd:68:1f:16:
90:48:e3:08:6b:b7:f3:89:52:f3:2f:e2:76:2b:f7:
9b:ff:28:ba:4b:59:3b:63:cf:02:09:a9:16:c0:66:
c9:84:57:9f:61:3b:fe:96:69:a4:5c:3d:8b:53:fa:
1f:48:ae:a5:a7:55:c9:a3:ff:90:c3:48:16:f1:1d:
46:c0:98:8e:c3:ac:fb:fd:54:20:b6:6e:c2:38:38:
23:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:61:EB:A2:0E:07:60:9A:A9:0F:3E:CA:EA:BC:15:79:8D:0C:6E:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0119E6EC8F8C11EF96751149762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:8a:c3:63:66:a9:05:ba:59:0d:12:45:92:98:c3:e9:82:a5:
15:a5:5c:58:b5:5e:3e:02:7a:bd:df:ad:92:b1:df:10:d0:cb:
9f:61:c6:9e:0d:7d:e5:17:33:92:0a:b8:e0:9c:70:2a:1d:49:
44:17:b2:01:86:00:92:57:cd:ea:47:fb:b7:86:9b:28:93:77:
6e:23:47:33:61:0f:8c:ee:b0:97:eb:73:03:71:ef:39:74:a3:
bc:0f:97:10:f3:b5:40:14:ef:08:d8:40:b3:4c:51:e9:ff:ef:
02:ca:88:13:7a:f2:38:be:89:0f:aa:7c:c0:3d:68:2d:13:ba:
7e:75:24:70:41:06:cd:be:3d:aa:7e:3c:2f:84:7a:b1:7b:ee:
f5:02:7a:e6:62:44:7c:7c:16:35:52:a4:4e:59:06:0b:8b:54:
c8:a3:80:78:f2:34:d3:82:94:44:f5:d2:15:3d:8c:b8:19:ef:
96:2c:87:fd:47:08:1a:f9:85:43:d0:ff:b6:bc:24:9f:85:2c:
1a:84:ae:bf:a6:74:eb:56:a2:43:1d:d7:4d:2b:1e:8a:8b:44:
5b:25:60:f2:2e:bf:f6:86:5e:24:ce:a5:bc:15:77:73:a9:56:
47:53:48:33:5c:3b:83:60:bc:09:62:f0:f4:44:95:e1:55:c3:
00:fc:1e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:28 2024 by rpki-client on console-ams.rpki-client.org