Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1741EF9AA9AF11EF9864CC8C762E951A.roa
File: 1741EF9AA9AF11EF9864CC8C762E951A.roa (raw, json)
Hash identifier: 9UJl8KqdY8nXWUy0UYHr+TkcD9+A0BhW4Y3MdnUm4+Y=
Subject key identifier: 7E:BD:06:9D:C0:E1:96:45:BE:43:CC:C9:AA:3D:A3:AE:AA:92:BE:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011196
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1741EF9AA9AF11EF9864CC8C762E951A.roa
Signing time: Sat 23 Nov 2024 15:24:55 +0000
ROA not before: Sat 23 Nov 2024 15:24:51 +0000
ROA not after: Thu 26 Dec 2024 15:24:51 +0000
asID: 18013
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70038 (0x11196)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 15:24:51 2024 GMT
Not After : Dec 26 15:24:51 2024 GMT
Subject: CN=6741f3c7-2bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:1e:4a:49:e8:3e:86:be:63:70:a1:ea:57:0d:
a4:b8:d8:27:63:4b:ab:b7:06:7d:1b:f1:7c:04:4c:
b9:b6:99:e3:02:40:91:da:f0:12:68:e9:48:3c:88:
d2:16:28:cf:fe:10:d3:91:55:93:46:35:e3:63:79:
5f:5e:f0:c2:75:3a:a9:da:ec:10:87:20:a9:92:e0:
81:03:70:d7:84:5d:86:46:2d:68:53:38:67:3b:6a:
0f:e6:81:7d:e3:90:f8:29:48:b8:ea:c2:34:51:66:
53:7e:d8:45:13:55:20:a1:b9:82:38:5c:d1:8b:c8:
6f:9e:e8:f2:89:ea:ef:5f:ae:db:cd:16:3a:55:e2:
df:e1:70:62:92:f7:95:36:3b:38:d2:cb:b9:96:63:
5d:6c:1f:06:c4:44:65:d5:5c:fb:8d:47:f6:64:c2:
5c:bc:5d:99:8e:bf:9b:e9:a0:bf:86:3a:54:26:1b:
4b:20:18:c5:51:3b:55:bd:e1:4c:73:87:4d:26:b7:
8c:a1:38:52:45:ab:3a:a6:2b:35:29:24:66:6f:88:
a1:97:94:31:f4:18:98:67:8a:a2:43:95:6d:37:db:
d5:dc:bd:fb:9c:83:0f:27:39:8d:ca:cd:b4:c2:5a:
41:72:5d:1d:5d:b2:cc:06:e9:4b:e3:2f:f1:b7:32:
a5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BD:06:9D:C0:E1:96:45:BE:43:CC:C9:AA:3D:A3:AE:AA:92:BE:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1741EF9AA9AF11EF9864CC8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
75:3e:96:68:69:c1:3b:66:4f:f9:41:f7:a4:e1:a2:8a:d1:1b:
67:c1:cc:6d:71:84:c9:e3:2c:26:54:cf:b5:be:b5:54:19:1d:
ca:6e:35:75:0e:b8:be:8c:1e:1e:9d:03:b5:36:76:f9:df:be:
5d:da:dd:21:5a:42:33:d2:18:f5:03:69:61:57:9e:be:02:97:
a7:dd:c0:ff:a5:54:92:f3:b4:e7:3c:81:01:53:40:71:32:5b:
83:0f:65:43:e8:ac:26:3e:71:49:15:ae:67:0d:6d:b9:d6:e9:
0d:c9:e3:85:d6:dd:a1:f5:dd:39:37:8c:a6:72:9f:48:81:e4:
51:7a:da:08:29:7f:b4:b6:b5:51:5b:92:dd:bc:1f:b4:8f:08:
68:ba:b4:3c:2f:a0:09:a5:50:ff:ef:79:72:b7:54:05:ff:77:
ad:d2:1a:bd:04:6a:ac:01:bc:11:c5:74:ec:f6:ef:8d:0f:80:
9a:d2:bb:16:40:2a:15:c0:75:95:bf:77:9d:9e:19:54:71:fb:
1e:26:d4:8e:79:70:03:a7:2b:44:10:f8:df:05:20:90:52:cf:
1f:d9:0c:cb:40:c4:b4:41:04:ce:9a:fb:d8:67:91:9a:27:aa:
08:9a:f1:ea:12:83:c3:ef:2c:af:99:66:55:dc:49:0c:c0:79:
0c:51:89:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:22 2024 by rpki-client on console-fra.rpki-client.org