Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07D98D88A4D211EFA576C97C762E951A.roa
File: 07D98D88A4D211EFA576C97C762E951A.roa (raw, json)
Hash identifier: nYbD6EImLy3P4Y90JKsF8xKfW2shsB85b46gSkhfaGc=
Subject key identifier: 46:06:83:32:59:A9:59:D2:38:CC:85:05:A3:67:57:B1:CA:5A:CF:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EC2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07D98D88A4D211EFA576C97C762E951A.roa
Signing time: Sun 17 Nov 2024 10:52:25 +0000
ROA not before: Sun 17 Nov 2024 10:52:22 +0000
ROA not after: Tue 26 Nov 2024 10:52:22 +0000
asID: 139880
IP address blocks: 154.215.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69314 (0x10ec2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:52:22 2024 GMT
Not After : Nov 26 10:52:22 2024 GMT
Subject: CN=6739cae9-b88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:80:b9:12:0a:86:56:d9:ee:d3:40:7d:99:52:
2e:32:88:9d:ca:46:42:c6:11:41:57:ca:e2:03:75:
74:6b:6f:14:6d:b3:3e:d1:8d:17:aa:44:e7:d1:53:
48:cb:80:28:ea:8b:c9:1d:9b:41:6b:71:72:c1:6f:
95:b6:3a:0a:4e:89:10:1e:d4:cb:03:3e:da:da:dc:
50:9f:2b:46:eb:52:a9:ae:b8:63:a0:28:5c:57:2a:
1e:e8:0a:c9:e6:72:79:2e:42:d7:f8:b0:77:7a:39:
af:59:43:a1:53:81:59:0f:62:18:74:d6:73:eb:fb:
4d:72:dc:26:d2:17:a3:3e:44:da:94:4e:da:61:36:
3d:46:41:81:6d:ee:1b:65:72:9d:6f:ee:99:04:e2:
74:fa:28:66:cb:dd:89:a0:a5:86:a7:44:3b:7a:f7:
93:58:21:07:2d:95:62:f3:e3:b3:77:9f:2b:c9:4e:
6c:7c:8d:5b:55:e3:2a:aa:12:1a:41:7f:95:c0:79:
f1:fe:d4:36:a3:64:72:1e:7b:b5:02:f7:c9:ae:17:
57:c3:f2:b5:68:75:a6:44:c3:bf:ac:75:42:7f:3c:
86:de:30:2c:51:7f:61:b9:e0:52:5b:b4:72:1c:eb:
fd:bb:fc:41:c7:a2:58:38:61:2a:a6:3d:0b:c0:3f:
85:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:06:83:32:59:A9:59:D2:38:CC:85:05:A3:67:57:B1:CA:5A:CF:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07D98D88A4D211EFA576C97C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2f:15:2d:42:94:f3:1c:f4:fa:d7:36:a9:43:16:1b:62:d4:80:
4c:d9:dd:ec:9e:d2:53:c6:a0:00:f4:50:f9:6d:89:0c:7a:dc:
36:e4:5a:09:12:1c:2c:32:0a:ef:3c:0e:32:73:9a:b6:39:9e:
32:4e:62:f8:cc:b5:3f:82:4a:0a:4d:5d:2d:e5:8e:5c:1f:70:
51:fc:eb:d1:cc:55:36:29:94:51:95:64:44:27:14:45:45:82:
c1:3f:93:03:22:fe:e0:64:fc:0f:b1:69:18:ce:b5:26:6e:68:
63:a0:ac:89:b7:f0:f3:8c:88:89:f5:9a:ee:87:86:f9:de:43:
c8:a8:03:3a:94:ab:ef:b7:94:2a:a5:b4:ec:c0:7a:f4:c9:f7:
52:27:b5:39:96:ac:11:39:9a:ab:20:ec:15:41:30:15:d7:a5:
e1:d4:8d:56:40:2d:8f:5f:ee:3d:8d:11:ef:98:fa:0a:17:59:
ae:af:ef:6b:b2:56:ca:b8:39:0f:9a:27:48:6c:e4:21:26:0b:
8a:29:1f:ee:8b:ea:26:75:46:a9:09:b7:3c:4e:0e:35:0d:e6:
7f:1c:a2:74:7a:77:95:b1:64:a5:dc:20:c8:d3:91:cf:7e:29:
bb:71:17:3c:d8:ea:bc:75:6b:3a:2f:62:28:5b:4f:52:ad:f1:
74:9e:7b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:49:07 2024 by rpki-client on console-ams.rpki-client.org