Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11459CBEA8D711EFAE5756BD762E951A.roa
File: 11459CBEA8D711EFAE5756BD762E951A.roa (raw, json)
Hash identifier: vw8qy0Ph9BT4r+uDkaVBpU/qL0RmDcd8EFmrvBgOr1I=
Subject key identifier: CC:19:3D:53:14:41:79:A5:C5:35:BF:C6:23:A8:C5:CF:7C:78:45:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011031
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11459CBEA8D711EFAE5756BD762E951A.roa
Signing time: Fri 22 Nov 2024 13:38:33 +0000
ROA not before: Fri 22 Nov 2024 13:38:29 +0000
ROA not after: Sun 01 Dec 2024 13:38:29 +0000
asID: 54467
IP address blocks: 154.223.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69681 (0x11031)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 13:38:29 2024 GMT
Not After : Dec 1 13:38:29 2024 GMT
Subject: CN=67408959-4988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:00:60:d6:c4:fa:d6:9b:9c:8f:75:79:54:c2:
dd:b9:89:4c:06:d7:64:6b:12:ba:79:fa:99:93:b8:
15:1e:dd:b7:55:bd:d0:a2:f8:25:71:20:21:7a:68:
a7:56:ac:04:ca:13:e4:8f:7a:40:52:1d:07:84:dd:
50:1a:92:7b:56:9c:46:60:5b:75:31:87:b1:24:de:
cc:38:40:79:94:fc:ac:94:6e:1a:11:f7:21:68:a1:
aa:d5:63:eb:31:e0:f8:62:0d:43:07:0f:d5:f2:fc:
93:7e:fe:dd:1b:58:a5:9f:de:9b:6a:06:3f:01:af:
dd:79:7c:f4:26:62:4a:96:e9:27:8f:ff:d8:7b:05:
96:c2:3d:18:81:8e:3d:be:a3:0d:22:57:5e:83:c6:
a1:62:0c:4c:ba:a4:ec:a7:8c:d7:2e:9e:6d:45:b4:
da:4b:d3:40:3b:ba:9c:31:ed:5d:ed:07:0c:93:2e:
0a:97:cd:0a:f3:bc:e2:34:83:5d:e6:c4:0c:2e:a0:
7b:1d:10:80:1f:88:75:03:3a:d0:0a:43:fd:d7:a5:
01:4e:29:e4:66:58:85:97:1c:d4:80:2e:4c:cd:bd:
d0:63:a8:85:74:02:ce:bd:a1:ee:be:30:1d:83:2d:
00:86:02:27:53:0d:0e:96:cd:27:63:d5:db:f8:c6:
dd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:19:3D:53:14:41:79:A5:C5:35:BF:C6:23:A8:C5:CF:7C:78:45:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/11459CBEA8D711EFAE5756BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.96.0/19
Signature Algorithm: sha256WithRSAEncryption
75:da:1f:d6:64:c0:fb:c1:45:63:dc:f8:eb:79:92:71:75:ab:
6c:b4:ef:92:fa:7b:3f:be:0d:45:60:8e:02:f0:db:ac:07:f3:
34:cb:57:ee:6c:96:a1:83:f4:84:23:ab:01:84:c4:69:df:cd:
cf:8a:15:69:df:06:2a:11:85:50:42:f4:01:9a:9c:e4:6e:90:
a6:20:e1:20:1b:79:c6:85:4b:f5:1a:14:f3:51:f9:3a:6b:cc:
7a:5a:39:7a:8e:93:12:6b:7f:55:af:fb:fb:be:c2:4a:6a:49:
46:89:90:6a:87:97:a1:ea:17:dc:8a:e9:b8:66:5f:6e:cd:d7:
4c:af:87:62:5e:70:1c:0c:db:b2:08:de:8e:72:47:07:a5:5e:
5b:82:63:fc:5b:02:a1:7b:32:51:51:3a:7b:09:d7:a0:19:2b:
05:9f:23:45:6e:10:2c:0f:0a:7d:50:12:cb:db:07:95:ac:0a:
bf:09:32:80:58:bf:0f:39:70:09:99:a6:a4:a1:f5:27:4d:f1:
24:95:61:ef:64:71:6b:28:bb:6c:4d:13:b6:74:8b:67:e5:7e:
3f:af:fd:58:f0:b9:ab:4b:dc:d1:51:83:64:cb:5d:2b:ad:c4:
28:ce:aa:1b:aa:f7:ec:ab:c3:44:97:f6:5b:fb:c4:29:ef:4d:
7b:e6:86:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:22 2024 by rpki-client on console-fra.rpki-client.org