Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD90198A32411EFB3BE8F74762E951A.roa
File: 1AD90198A32411EFB3BE8F74762E951A.roa (raw, json)
Hash identifier: EKlGXPWoPo6Z4RN6qq9Bv2rUSzokw+1u8GQYV1nyAvM=
Subject key identifier: 0E:6B:E3:C4:67:4E:BB:4E:0F:3C:B3:F7:65:DA:CC:BF:F2:FA:83:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D3A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD90198A32411EFB3BE8F74762E951A.roa
Signing time: Fri 15 Nov 2024 07:34:54 +0000
ROA not before: Fri 15 Nov 2024 07:34:50 +0000
ROA not after: Thu 12 Dec 2024 07:34:50 +0000
asID: 394432
IP address blocks: 154.196.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68922 (0x10d3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 07:34:50 2024 GMT
Not After : Dec 12 07:34:50 2024 GMT
Subject: CN=6736f99e-a53d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d3:8e:7b:dd:33:dc:0a:dc:82:f9:fc:a7:1e:
18:d0:90:41:78:e5:3e:84:ec:47:ca:a2:9d:07:b1:
b3:d4:1e:94:76:49:72:27:ec:1b:c7:1a:13:6b:7f:
a6:c6:48:fa:d1:dc:73:2c:fc:39:91:3d:57:cc:e6:
28:02:ec:8f:20:a6:a5:5e:ed:7a:88:53:50:85:15:
90:d0:3c:40:b3:80:00:af:b5:43:83:e1:8e:17:9e:
66:89:fa:0c:5c:0d:7f:08:86:ac:8a:89:44:fc:88:
39:6f:46:f1:5e:84:dd:66:3d:0f:0e:d3:af:f2:e5:
e6:fd:c2:ac:ee:39:9b:3a:6e:28:3e:b9:78:a4:c6:
40:97:6d:58:03:a3:c3:cf:7b:8b:43:4d:e0:13:9b:
04:16:c3:f8:6b:93:19:f9:0f:a2:1b:a4:ee:f5:af:
f8:a7:62:2a:43:8d:bc:95:1d:59:c9:4a:c2:7b:06:
01:13:08:72:79:64:4a:73:25:cb:03:ac:4d:56:45:
63:d7:c6:e6:60:eb:b4:d0:da:75:2b:11:3e:16:78:
fe:21:a3:fa:94:9e:bc:35:61:a8:b7:39:b7:63:38:
73:93:70:4b:1d:1b:dc:f4:63:b7:d1:b4:9a:69:64:
7e:3a:d7:41:39:29:28:be:cd:a6:63:66:ea:ef:d6:
a9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6B:E3:C4:67:4E:BB:4E:0F:3C:B3:F7:65:DA:CC:BF:F2:FA:83:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1AD90198A32411EFB3BE8F74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.198.0/24
Signature Algorithm: sha256WithRSAEncryption
20:a2:46:35:9e:be:98:91:0c:9f:cf:1e:7f:59:fa:b6:4e:65:
32:51:e4:ae:e1:93:5a:c3:bc:1f:79:e9:50:19:07:33:a3:e2:
fd:76:88:ad:ec:bc:12:5a:a9:d1:b2:f4:f9:5e:8d:e9:38:61:
4f:fb:93:ab:3b:6b:82:1c:a4:55:0e:3b:00:14:d6:9f:df:53:
b3:bd:9b:79:24:6f:11:25:18:f3:7c:b6:ef:55:32:54:7f:ba:
8a:16:95:be:31:0c:e2:a4:ab:a8:5a:03:29:d3:6a:ba:19:f9:
0e:64:98:96:1b:32:cf:c3:c3:5e:7a:68:2e:07:9f:b4:df:cb:
a6:cd:34:0b:9a:bd:62:0a:a9:b8:08:ac:f6:0a:3a:09:79:70:
15:31:2f:9d:50:50:4e:fb:4a:03:fa:ad:30:8a:79:72:cd:f2:
03:02:81:6a:34:0c:6c:ba:a3:9e:28:d9:fb:3c:39:dd:70:43:
24:3a:9d:b2:12:cd:ba:ed:9a:62:ee:34:45:ce:a8:29:d2:4c:
11:e0:91:1a:7c:02:59:6b:6f:bc:85:0c:b9:87:7a:de:b6:09:
8f:57:b8:1b:5d:a5:5a:ad:56:15:3f:fc:ca:25:dc:95:0c:2a:
16:42:04:42:99:9e:97:08:a3:55:a1:9b:bc:56:05:61:1a:53:
93:ad:c7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:33:34 2024 by rpki-client on console-fra.rpki-client.org