Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03D43468798011EFAA083B50762E951A.roa
File: 03D43468798011EFAA083B50762E951A.roa (raw, json)
Hash identifier: UVCByPEYOWX1rCqeze54ogSEC2r+LKalrAeJCkuZ+ZA=
Subject key identifier: 72:57:D9:0B:FE:44:A3:27:9D:B5:56:42:20:E7:F6:AE:27:43:A2:13
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F273
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03D43468798011EFAA083B50762E951A.roa
Signing time: Mon 23 Sep 2024 07:47:00 +0000
ROA not before: Mon 23 Sep 2024 07:46:56 +0000
ROA not after: Mon 12 May 2025 07:46:56 +0000
asID: 29684
IP address blocks: 154.91.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62067 (0xf273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 23 07:46:56 2024 GMT
Not After : May 12 07:46:56 2025 GMT
Subject: CN=66f11cf4-31fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:f1:33:16:be:9d:8a:f9:d2:52:39:c5:63:
f1:67:a1:73:72:bc:d9:e6:2f:5c:ee:33:b4:f4:80:
f8:5d:83:01:ca:29:11:4c:4d:c5:12:9f:ef:9e:42:
2c:fc:b9:a2:df:33:92:dc:2e:66:d3:0d:26:fa:1c:
a7:d0:85:53:55:8f:8b:16:56:1d:5b:01:e7:16:3c:
c6:84:80:87:7e:a6:99:30:47:11:76:d1:4a:aa:3c:
a0:88:36:04:e8:d4:39:07:ef:7b:2b:54:5a:cf:40:
dd:ec:d0:19:ff:fa:17:27:56:17:45:42:f3:cd:8b:
cb:8a:24:08:3f:25:3b:6c:a5:a5:fb:1c:7d:5d:84:
2d:91:f6:fc:3a:5c:61:cb:4f:95:2e:7a:3e:c3:f2:
73:c2:e8:25:ae:28:19:e6:b4:b5:77:f9:d3:a8:99:
43:9d:9d:4f:8f:c5:d0:1b:c2:27:a5:75:9e:c0:5c:
79:71:7e:fa:52:2b:aa:56:0f:76:2c:4b:91:26:b9:
11:10:ee:a4:64:57:8d:5e:0c:6a:4f:d6:8e:72:83:
f2:46:25:aa:0d:4f:29:32:84:3a:4d:38:1f:67:9a:
73:2d:2c:29:13:b7:e9:71:15:2d:99:8e:5e:ce:84:
52:d5:27:42:e3:9b:1f:cf:65:00:09:68:bb:9b:ef:
fe:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:57:D9:0B:FE:44:A3:27:9D:B5:56:42:20:E7:F6:AE:27:43:A2:13
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03D43468798011EFAA083B50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.36.0/24
Signature Algorithm: sha256WithRSAEncryption
59:96:cc:cd:8f:ce:4f:3d:ea:f5:a6:12:51:91:fe:8b:43:ba:
2d:25:b3:cf:a1:72:9c:24:d2:67:3e:19:17:60:d6:27:60:20:
49:26:ec:f2:dd:b6:27:a9:3e:07:9f:4e:78:d9:ef:0e:fc:d8:
a6:8b:c3:ce:23:7d:80:ee:2f:e8:de:11:e9:4f:89:a2:aa:3c:
97:34:aa:b6:34:1b:6e:be:52:cf:bc:e9:fc:0c:02:50:85:96:
64:c1:85:38:3d:b9:26:9b:60:01:e5:5a:21:04:4e:0e:0d:b2:
46:de:7c:ce:c4:75:46:cf:54:fe:ab:52:35:6e:0e:e3:2c:25:
73:5b:89:29:6d:34:35:24:fa:61:62:d2:56:e4:a4:9d:25:f1:
a8:05:0b:53:44:27:d5:35:b5:54:99:f2:05:cc:55:51:b3:2c:
d5:99:33:d9:41:80:5c:df:65:98:eb:8b:04:46:27:37:64:48:
c5:7b:bf:48:4c:46:16:8c:a7:7c:9d:eb:e8:9c:a6:5b:48:bf:
05:c7:57:ce:87:ee:75:fa:cf:ef:e6:db:76:ed:7d:33:e0:18:
e7:b6:60:73:1b:ef:d4:a9:49:33:07:dc:ca:a3:46:d1:05:22:
c9:04:f5:04:6b:ed:2d:0e:4b:81:34:d7:ef:fa:52:4c:0c:6e:
3f:a9:1e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:56:44 2024 by rpki-client on console-ams.rpki-client.org