Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03C85C4CA44611EF8D72BD84762E951A.roa
File: 03C85C4CA44611EF8D72BD84762E951A.roa (raw, json)
Hash identifier: cYYdhP7Pflgf5EohvDEJXeEJVqkpn2BM5Gqq3GjEUj4=
Subject key identifier: EB:80:F3:EE:3A:44:ED:33:CC:5B:20:F7:77:B0:7C:7E:8D:30:67:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03C85C4CA44611EF8D72BD84762E951A.roa
Signing time: Sat 16 Nov 2024 18:10:09 +0000
ROA not before: Sat 16 Nov 2024 18:10:05 +0000
ROA not after: Mon 25 Nov 2024 18:10:05 +0000
asID: 5065
IP address blocks: 154.207.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69101 (0x10ded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 18:10:05 2024 GMT
Not After : Nov 25 18:10:05 2024 GMT
Subject: CN=6738e001-b175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:80:5e:23:ca:c6:23:4a:28:3d:eb:49:df:b0:
aa:6b:59:13:b8:ee:9a:45:76:89:32:b1:20:56:43:
1c:6b:90:3b:3c:64:52:1b:6d:aa:97:75:66:8f:4b:
cc:20:3d:4b:56:77:97:f2:da:9b:3e:06:d8:73:3f:
6b:7f:33:45:86:c5:a1:ef:c2:f2:89:e4:81:2c:7e:
81:91:07:6b:87:b9:db:99:74:5d:9f:50:5b:09:3c:
cb:54:85:68:f2:2c:02:93:94:c2:4e:a3:1b:e1:c2:
76:cf:9d:00:50:ba:75:6e:42:de:57:25:16:df:49:
e9:4c:93:e4:41:1c:95:54:b0:85:b9:de:3c:ca:83:
ed:0a:d1:8d:9d:75:fa:59:21:73:94:3e:c0:24:67:
39:8c:d2:27:3d:b1:09:fc:18:5f:15:fa:91:ae:cf:
3d:a0:9b:34:ea:ce:c8:d1:77:8f:df:54:86:5a:1b:
c8:06:dd:6a:e6:a4:78:f2:46:66:7f:0a:43:58:0a:
d6:77:33:7a:f6:31:50:e0:77:65:05:51:46:6c:5c:
f1:fe:30:a8:41:57:56:cc:9b:81:eb:61:9a:87:1d:
95:5c:ab:62:d5:7d:11:48:46:cf:fb:0c:19:b2:d9:
6f:59:34:4e:d2:57:2f:2b:1f:03:63:79:e0:8f:b3:
f2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:80:F3:EE:3A:44:ED:33:CC:5B:20:F7:77:B0:7C:7E:8D:30:67:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03C85C4CA44611EF8D72BD84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.176.0/21
Signature Algorithm: sha256WithRSAEncryption
57:92:3c:a9:df:47:bf:fe:29:50:73:2d:55:4e:8f:5b:a5:43:
07:35:4b:9a:a6:ff:8c:f1:33:b4:91:ec:88:f3:f2:45:25:2b:
f4:f7:21:62:65:9b:69:0d:45:67:bc:45:57:c0:93:c7:ba:f4:
61:a0:ac:8d:a0:ee:7b:59:61:f4:a0:64:fe:2c:8c:2b:ee:c6:
74:54:42:1f:d8:22:44:a3:e9:93:7e:14:fd:8a:07:1c:83:5b:
ad:0a:d3:d4:4d:bf:d3:60:97:2f:12:21:cf:e3:b8:4d:27:52:
2d:2f:d9:25:82:45:4b:67:2d:43:bb:be:71:89:67:bb:98:41:
f9:45:a2:67:64:08:d1:54:d8:66:a4:39:15:97:3d:97:ef:2b:
e9:16:30:17:d1:6b:97:08:af:a1:a1:10:fd:77:ed:85:f1:5f:
a9:5c:4e:50:c6:c3:8e:e4:41:6a:a9:52:18:76:bb:68:06:cc:
28:92:1c:e3:d1:4f:41:5e:18:5a:85:68:75:85:4d:61:07:77:
3c:1e:c8:d4:fc:3b:08:70:b2:96:55:51:d5:b9:b9:6a:2e:66:
ea:f0:64:f1:48:d2:b5:b6:a1:b4:a7:d1:b8:7d:5c:63:cb:9e:
1b:b1:a5:a9:38:a6:79:4a:bc:c6:b0:fb:3e:eb:15:7b:5d:40:
41:d3:71:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:35 2024 by rpki-client on console-fra.rpki-client.org