Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10B37AFE983411EF89B4B655762E951A.roa
File: 10B37AFE983411EF89B4B655762E951A.roa (raw, json)
Hash identifier: ERxzB7yN009gnMspJ3USfnEGb4Um2rjRlDz9Imlgt4s=
Subject key identifier: AF:1E:25:40:32:3A:B2:7A:88:E2:CE:FF:68:54:B9:DB:12:98:24:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10B37AFE983411EF89B4B655762E951A.roa
Signing time: Fri 01 Nov 2024 09:31:26 +0000
ROA not before: Fri 01 Nov 2024 09:31:22 +0000
ROA not after: Sun 01 Dec 2024 09:31:22 +0000
asID: 54600
IP address blocks: 154.219.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66749 (0x104bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 09:31:22 2024 GMT
Not After : Dec 1 09:31:22 2024 GMT
Subject: CN=67249fee-d067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:81:47:58:8a:b4:b7:94:ba:5f:3a:50:dd:87:
05:d9:a9:ef:30:97:5c:f0:99:19:04:db:1c:ee:58:
c0:69:81:a7:10:dc:21:29:01:d9:9f:78:49:b2:16:
5c:ee:65:99:c9:e3:7e:2d:65:9a:eb:30:1c:07:d0:
24:77:b2:bb:6b:4f:19:7f:eb:df:07:59:54:10:af:
b8:d4:f3:c2:20:2c:0f:3d:63:3b:11:97:68:b4:41:
53:1b:94:4d:f8:8a:1d:ae:92:6b:6c:1f:af:60:47:
76:84:b5:f7:9c:41:2a:9b:70:78:29:ef:56:e7:15:
db:24:31:c6:4f:f5:44:65:e4:a8:2a:de:bd:f4:5d:
6f:95:b5:85:1a:7a:a5:b2:04:bb:1f:ad:87:d3:7b:
1c:1b:d2:f4:3f:12:da:f2:81:ba:d4:f3:c3:aa:ad:
a2:60:51:6e:f7:da:25:5a:36:b3:39:23:3b:4b:3d:
22:8a:cf:72:94:93:d3:bb:3f:45:97:2a:63:a6:de:
5a:29:46:32:2c:77:27:ca:7a:b2:f4:2b:36:0c:a9:
a9:bd:79:b7:7e:58:c4:a0:61:ac:f3:9c:64:b8:a1:
d7:b3:64:73:09:78:0b:87:df:b2:d8:27:5f:da:5c:
b9:7c:7f:e3:12:c1:da:ef:f7:52:d2:f2:c7:43:f0:
eb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1E:25:40:32:3A:B2:7A:88:E2:CE:FF:68:54:B9:DB:12:98:24:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/10B37AFE983411EF89B4B655762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6e:78:0b:02:95:24:3b:94:b2:67:b7:6d:9b:92:0f:dd:dd:98:
f6:d6:2f:33:75:83:89:c7:e7:9f:36:0f:c1:25:37:51:27:8a:
65:6f:8a:c5:cb:6c:a5:1b:08:10:c2:66:4d:5a:0e:d7:6a:ee:
c2:fa:57:c4:19:c0:a3:aa:e8:6e:0c:97:43:95:c4:b2:21:09:
17:a7:b1:cd:a6:4c:82:a0:6f:ab:7a:d2:d3:16:8a:c5:72:df:
6e:d5:93:a4:2d:96:32:bd:3c:b3:7c:d9:70:0b:14:8f:98:cb:
97:1f:4e:ba:60:0c:86:48:3b:40:e6:27:a5:39:97:3f:0b:dc:
94:29:da:74:99:be:5b:ca:a5:04:44:36:78:2d:75:a6:a7:eb:
c2:5a:35:aa:81:72:04:43:54:4f:a6:8a:c2:d0:9e:34:71:ed:
ee:6f:8a:12:1e:08:67:7b:4e:0c:0b:a2:f1:85:d8:61:8f:5b:
26:50:f7:b8:7a:e9:af:06:10:c5:33:81:ae:a6:ea:f1:bd:07:
5c:0e:bf:96:66:23:bf:80:e2:d4:6c:b6:87:9d:c6:a3:e3:3a:
68:4f:3f:a8:8f:69:e8:ba:88:4b:bd:96:e7:66:8d:6b:51:6c:
f3:6c:90:c8:7d:51:fa:42:68:b2:f2:02:93:42:1f:3d:ff:4e:
66:f0:4c:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:59 2024 by rpki-client on console-fra.rpki-client.org