Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1686AEC8A4C411EF9F0134A5762E951A.roa
File: 1686AEC8A4C411EF9F0134A5762E951A.roa (raw, json)
Hash identifier: NCbbG3W3cgdbmtHLoJgwP5NPt1xVuQbfG8y/T3253sY=
Subject key identifier: D5:52:98:97:2F:9E:67:67:79:0F:1F:46:A4:31:4D:7E:5F:2B:31:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E70
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1686AEC8A4C411EF9F0134A5762E951A.roa
Signing time: Sun 17 Nov 2024 09:12:37 +0000
ROA not before: Sun 17 Nov 2024 09:12:33 +0000
ROA not after: Sun 24 Nov 2024 09:12:33 +0000
asID: 55933
IP address blocks: 154.198.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 09:12:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69232 (0x10e70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 09:12:33 2024 GMT
Not After : Nov 24 09:12:33 2024 GMT
Subject: CN=6739b385-7792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:50:7b:97:ea:d4:d4:29:d9:4e:12:e4:20:95:
56:c9:65:00:5f:48:89:73:9b:84:13:1a:8a:55:69:
5d:96:09:0d:e1:19:1e:df:b6:61:b5:8f:d4:d1:b1:
34:a4:55:be:1a:5a:cc:09:3b:16:6e:0c:e1:22:b2:
c0:6f:cf:a5:57:73:61:a2:85:b5:11:a9:8a:60:29:
e0:3a:1e:de:c4:8d:72:c2:5b:01:fa:22:0e:fc:4e:
11:d5:64:4a:c2:f5:e2:4e:c7:d7:2e:0e:15:ec:3a:
b4:df:39:f6:6d:24:38:77:c1:1a:13:5a:87:97:ca:
3d:c2:ec:87:8e:85:71:eb:60:c4:e5:2a:ef:5d:32:
50:d5:db:4d:3a:2d:de:5c:42:71:49:3b:f4:74:1e:
84:5e:53:36:93:fe:4f:6c:c7:96:a8:e8:ad:47:92:
89:cf:ed:92:3f:a0:22:a6:f3:ab:95:5e:bb:74:14:
6c:80:62:70:f4:f2:ae:d9:9a:49:0b:43:57:79:c8:
cb:97:74:72:78:20:e1:f9:12:45:32:48:eb:81:bb:
b6:d4:7e:d0:b2:b8:26:30:68:97:0c:0d:35:4d:ac:
ff:f2:c7:d0:2e:83:88:c6:a0:ee:a7:0b:04:b9:db:
b2:b4:cd:02:dd:b5:d2:ed:93:a5:af:98:55:7a:33:
b7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:52:98:97:2F:9E:67:67:79:0F:1F:46:A4:31:4D:7E:5F:2B:31:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1686AEC8A4C411EF9F0134A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.128.0/19
Signature Algorithm: sha256WithRSAEncryption
08:e1:39:ca:06:f0:19:8f:24:48:1e:95:c0:56:ce:a7:5e:48:
5f:fc:61:2b:87:54:ab:8c:6c:9c:64:35:d6:53:93:84:02:08:
d8:f2:5a:1d:cf:22:e8:7a:a4:bb:64:5f:86:89:62:57:ea:63:
7c:ea:6e:16:ab:5a:93:d1:22:bf:91:91:88:37:8d:a6:49:0e:
fb:68:45:d6:fe:62:48:15:51:64:41:a8:e8:94:e9:29:7a:45:
20:de:ea:99:4e:cf:c2:81:14:1d:e6:8b:97:a7:ed:9e:4f:41:
44:0b:10:e0:f9:a8:5c:cf:a7:96:19:1e:3e:f4:28:70:1c:2d:
61:93:a2:87:b3:33:53:83:f0:49:d6:67:8c:b7:0c:3e:5e:82:
fe:c1:cf:7b:dc:1d:fb:0b:0b:13:46:f1:7b:bd:dd:a7:fa:21:
ca:b2:b0:5e:2c:db:82:48:5b:10:cc:18:0a:69:65:52:a5:aa:
20:f8:1e:eb:20:e4:0a:4e:79:ec:50:04:b1:7a:60:3d:64:f6:
58:8c:78:56:90:33:7d:c6:f8:f7:a2:27:fa:52:e6:05:d9:33:
6b:6e:17:7c:44:9f:65:f1:3c:7f:80:00:af:53:03:9b:fc:6b:
d9:9c:5d:14:61:2d:7c:df:9f:bf:92:b6:62:c5:d5:75:22:98:
bf:0c:65:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:57 2024 by rpki-client on console-ams.rpki-client.org