Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/076DC81896B411EF8C0E875D762E951A.roa
File: 076DC81896B411EF8C0E875D762E951A.roa (raw, json)
Hash identifier: jSXtRUP41iwv6rqSYtJDYlk/Scagai5HFjrg4eyp3pQ=
Subject key identifier: 47:39:7A:80:79:23:80:2E:02:1D:21:88:1E:8C:FF:03:77:92:78:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010413
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/076DC81896B411EF8C0E875D762E951A.roa
Signing time: Wed 30 Oct 2024 11:42:24 +0000
ROA not before: Wed 30 Oct 2024 11:42:17 +0000
ROA not after: Wed 11 Dec 2024 11:42:17 +0000
asID: 138915
IP address blocks: 154.203.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66579 (0x10413)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 11:42:17 2024 GMT
Not After : Dec 11 11:42:17 2024 GMT
Subject: CN=67221ba0-b85e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f7:29:fc:92:9c:8e:13:a9:19:08:c0:83:eb:
e2:26:9f:ba:e6:8f:49:d3:5f:2d:7e:bd:2e:4a:57:
0a:a4:ba:b9:f3:00:80:c4:95:a5:49:f7:ef:32:27:
27:42:00:70:b0:fd:04:10:be:67:9b:d4:d9:bd:57:
a0:a6:97:7d:cb:18:06:60:ca:f6:4c:d8:73:b6:ff:
41:1d:1b:8d:9b:6f:b0:ad:d2:ee:f5:db:77:73:99:
d9:9d:a7:45:71:e6:7a:ac:8e:15:6d:6b:18:62:ba:
43:6c:c9:83:61:35:d8:ed:72:09:cb:91:ad:27:36:
3c:fb:ff:36:20:16:b4:5d:27:2d:c2:cd:b1:8a:e5:
be:78:58:fc:3d:d2:88:c6:a5:54:fd:7c:c5:78:29:
53:f2:a3:ed:5d:bd:f8:e2:18:c6:75:bc:86:6e:c6:
78:16:8a:17:89:e4:11:64:ce:dd:69:cf:84:be:92:
50:35:4b:5c:89:8e:9a:72:c0:c0:45:fd:05:f6:d9:
a5:bc:3a:29:ef:9b:89:91:e2:ca:b0:ee:c7:e7:e6:
7f:7b:8e:b1:7e:f6:27:46:21:27:8a:6d:76:61:f3:
29:ff:db:9c:f9:bc:b0:0e:60:49:6c:35:a7:e8:61:
f1:bb:99:53:08:00:c7:7e:8a:bb:b4:6b:fa:c5:f7:
08:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:39:7A:80:79:23:80:2E:02:1D:21:88:1E:8C:FF:03:77:92:78:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/076DC81896B411EF8C0E875D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.146.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:ee:1b:38:f6:ec:e0:82:13:ee:71:34:a6:c7:5f:45:ac:a4:
d1:7e:6d:29:9d:13:85:f1:d6:3c:40:79:e5:32:a4:5e:1c:f3:
36:32:6e:ed:36:04:5d:8f:e3:2f:a4:b3:6a:7c:d0:90:3d:e5:
c5:be:00:97:78:d1:4c:bb:3d:0b:b6:14:ee:4a:5f:5e:e6:15:
ee:12:55:4b:d8:aa:9f:87:df:13:8f:9c:27:d1:5c:db:9b:2d:
62:55:6e:a5:72:37:1b:27:f4:75:64:51:2e:fa:22:c8:27:20:
e8:f5:f5:a7:2a:fb:e8:e8:13:8c:b6:5a:fc:cd:f1:00:ab:19:
ef:0e:c5:cd:7e:c3:37:a2:f8:08:e8:63:c8:78:64:30:00:0a:
4e:b6:e4:6f:c0:b1:49:be:e8:ca:cb:80:8b:60:72:b2:1b:f9:
84:76:66:04:7c:0f:0c:e5:81:ec:02:8d:08:44:26:f3:64:69:
da:1d:de:8b:be:0e:31:34:5b:ec:40:44:2a:0a:07:a4:e1:e9:
1d:b3:7a:fa:6b:27:75:14:5f:c6:ae:2b:ac:12:03:48:b3:b4:
68:ba:cb:48:d5:80:76:0f:04:bd:df:27:ad:b6:da:3e:68:dd:
72:62:c9:e0:1c:50:a5:b3:48:13:24:92:af:ee:21:41:14:78:
09:a2:76:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:54 2024 by rpki-client on console-ams.rpki-client.org