Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/112C7C0C736711EF995AB442762E951A.roa
File: 112C7C0C736711EF995AB442762E951A.roa (raw, json)
Hash identifier: Kg53EKQZAWHpE1e8kCO3W2AAHNRMtPu8PXv5PcDhKww=
Subject key identifier: 19:1D:13:06:60:88:C7:B5:2D:4D:47:B6:9A:BE:D3:F4:B0:F2:83:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/112C7C0C736711EF995AB442762E951A.roa
Signing time: Sun 15 Sep 2024 13:33:18 +0000
ROA not before: Sun 15 Sep 2024 13:33:14 +0000
ROA not after: Sat 30 Nov 2024 13:33:14 +0000
asID: 136970
IP address blocks: 154.197.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61210 (0xef1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:33:14 2024 GMT
Not After : Nov 30 13:33:14 2024 GMT
Subject: CN=66e6e21e-ef47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ab:40:bb:0b:f5:94:04:f0:fb:55:01:ad:dc:
79:ee:83:7a:e5:23:63:86:9f:6c:cc:37:1f:81:b2:
b2:0d:14:0f:87:ac:ec:88:f3:4c:d9:02:2c:04:7a:
8e:4e:71:24:fa:63:7c:ea:b2:9a:c1:91:65:4c:94:
91:19:06:e0:ef:f9:7f:8c:4c:42:be:2d:ea:73:79:
47:3a:d6:94:46:4d:cf:5c:39:86:ee:19:77:80:38:
51:01:ba:77:69:50:bd:81:0b:5b:b1:b8:60:3a:7c:
15:46:f0:71:d6:00:bf:2a:0e:3c:ca:53:1b:41:81:
6b:90:61:fa:72:f1:38:f1:10:d7:e5:96:c3:fc:42:
b4:91:35:5d:b5:85:4f:5e:4a:59:ac:b0:86:a1:9b:
6d:e8:20:f3:e3:bb:ae:56:0a:3b:30:51:4b:d1:5f:
3e:08:9f:a9:ff:4d:3f:63:ed:bd:1f:43:55:b1:a3:
ce:3d:6a:a5:c3:b0:3a:50:39:39:29:fe:b0:83:ab:
a4:1a:36:f1:0d:a9:bb:f1:63:d2:17:76:9e:55:d9:
1e:1c:6c:b2:7d:7a:52:5d:ca:d5:c8:c5:f8:72:f9:
5c:b1:d3:3b:e8:da:b7:34:a4:f4:62:79:1c:ab:0f:
13:0f:70:8d:7f:61:57:5f:92:c8:8c:f7:04:68:9e:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1D:13:06:60:88:C7:B5:2D:4D:47:B6:9A:BE:D3:F4:B0:F2:83:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/112C7C0C736711EF995AB442762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.3.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:ac:e9:27:85:22:85:df:e3:cf:11:bc:be:11:5c:72:33:c1:
3c:97:38:63:18:f8:2b:01:31:3e:1d:20:b7:38:35:43:69:19:
81:22:0d:3b:85:4f:6e:d6:93:fb:4a:ae:5f:fd:3f:b3:1d:9d:
b9:43:f2:e6:d6:04:44:c2:55:81:2b:3a:13:14:c4:17:13:bc:
a7:3d:61:19:30:f3:15:40:7e:65:81:f6:ce:e5:64:c4:c5:39:
96:f3:c8:64:e3:a9:58:68:7e:61:8b:ff:27:e1:aa:bf:d4:7c:
b9:82:59:ed:b7:cc:63:2e:b5:3f:21:82:4e:e1:22:36:3d:3b:
42:68:4e:d1:3c:cc:28:ac:29:9c:3d:0e:8e:bd:0a:fa:9e:f1:
bf:45:d3:70:93:d3:f0:51:b4:65:53:8c:53:f1:2d:b4:28:7b:
63:ed:af:18:0b:f3:d0:3b:2a:ec:9c:b5:34:70:c8:15:52:9d:
cf:80:d3:9f:b7:6e:54:11:a0:8f:8c:08:a1:6c:4d:db:ae:3d:
58:c4:f4:ab:95:68:f0:8b:dc:8b:0a:c5:16:2c:0a:6d:81:a5:
c8:91:d9:3f:ec:d3:a7:c1:84:6b:c5:1c:3a:44:5a:f5:fd:73:
15:45:c9:f8:b4:b4:64:0a:43:3a:4b:d3:ec:7c:19:65:1d:ed:
83:88:cb:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:59 2024 by rpki-client on console-fra.rpki-client.org