Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/013F0298736611EF8E7A59BB762E951A.roa
File: 013F0298736611EF8E7A59BB762E951A.roa (raw, json)
Hash identifier: gWApZK+8PPmjq/SOzp7AWX+U+liYMpLuHJ3LiJA3XSI=
Subject key identifier: 9C:7F:4A:5D:2F:7A:E2:69:27:70:7B:07:13:76:16:B2:7F:C3:5F:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/013F0298736611EF8E7A59BB762E951A.roa
Signing time: Sun 15 Sep 2024 13:25:42 +0000
ROA not before: Sun 15 Sep 2024 13:25:34 +0000
ROA not after: Sat 30 Nov 2024 13:25:34 +0000
asID: 142403
IP address blocks: 154.211.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61196 (0xef0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:25:34 2024 GMT
Not After : Nov 30 13:25:34 2024 GMT
Subject: CN=66e6e056-669e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:18:9f:44:8b:a9:6b:9b:60:b3:e0:25:48:f5:
4e:4c:34:00:97:b1:f2:f3:13:5b:d0:ce:1c:b0:0f:
2a:88:d3:59:3e:db:28:ec:87:3b:36:82:ba:21:86:
c4:68:97:33:64:b6:ee:7b:f0:c5:bb:0f:e9:e0:c8:
90:33:bc:51:87:7d:fc:28:32:aa:3e:c5:00:6b:d3:
21:6c:b2:66:30:d6:66:b8:eb:16:6b:db:e2:66:e3:
70:66:5f:91:71:41:f8:d9:b0:a7:76:e5:53:b2:16:
2d:86:2c:d2:c9:71:d2:df:97:e8:83:54:77:df:4f:
5e:04:80:d0:c8:70:39:f3:87:ed:f9:d8:d2:84:9f:
c0:a9:14:41:5e:3b:f9:88:32:4c:84:8c:1d:9c:3b:
3a:7d:7b:73:5c:33:47:3d:38:56:9e:1c:17:53:12:
e0:c1:97:ba:68:ba:31:08:0a:92:5a:0c:7b:82:25:
ee:19:c3:7e:01:05:0c:b1:b8:fe:f7:e6:2e:56:8b:
57:f4:3e:3c:18:da:85:0c:42:ea:47:1a:d1:8f:e4:
85:f6:79:83:d5:57:0c:9e:fe:1a:a8:5b:b5:fe:76:
e0:80:11:a7:e7:ba:e4:a3:11:3d:31:ec:93:82:12:
09:52:3e:42:78:92:42:72:41:72:ad:21:44:f4:8b:
77:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7F:4A:5D:2F:7A:E2:69:27:70:7B:07:13:76:16:B2:7F:C3:5F:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/013F0298736611EF8E7A59BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:57:ce:28:35:82:d5:00:d4:05:ba:ab:95:2b:4e:d9:17:f0:
a5:34:f6:8b:1b:46:90:9a:eb:09:52:ee:49:eb:b3:1f:00:b8:
0f:39:8c:f6:2b:ba:c4:b6:d4:ef:f6:42:88:41:91:95:04:91:
89:f5:40:5d:5a:4c:ce:4c:c9:bd:40:09:ef:90:41:97:51:06:
a9:a5:1d:9f:d8:f0:33:b0:0c:42:68:b3:07:bf:4d:b9:91:40:
d0:66:b1:26:de:e9:a4:29:ad:0a:4c:2d:b4:7a:e0:20:b7:05:
eb:90:a6:1b:b2:bf:eb:a0:dd:f4:78:33:95:65:01:62:b9:e2:
6c:f9:49:86:10:f3:44:74:d5:a1:54:17:11:da:b8:89:94:00:
0d:97:41:67:53:43:4c:bf:49:5b:85:f2:a2:d7:4b:04:6e:a3:
c8:ed:5c:f6:d5:20:91:61:cc:25:e6:d0:63:84:0b:9a:6e:a3:
d0:b2:74:31:e1:50:78:d9:fa:91:54:ad:21:f1:36:28:68:02:
ac:01:ee:d7:3d:c1:61:b2:3c:1b:05:74:da:6e:e1:01:62:f2:
8e:3a:29:5d:9d:c8:7f:3b:d0:fb:7a:c4:f6:37:67:5a:e2:1b:
35:49:5b:ec:dd:a9:98:97:f9:41:97:50:32:e1:1c:b8:80:6d:
31:9c:d1:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org