Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2193BC34A4D311EFB7E24D86762E951A.roa
File: 2193BC34A4D311EFB7E24D86762E951A.roa (raw, json)
Hash identifier: zEtaXAZs2Wj+iGFXIENaE5rwDRZmW9mTVf86A4lq3C4=
Subject key identifier: 36:F6:71:63:1B:B5:3E:7E:63:A7:51:04:17:CB:0A:4D:E2:E5:F6:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010ECE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2193BC34A4D311EFB7E24D86762E951A.roa
Signing time: Sun 17 Nov 2024 11:00:18 +0000
ROA not before: Sun 17 Nov 2024 11:00:14 +0000
ROA not after: Wed 27 Nov 2024 11:00:14 +0000
asID: 137951
IP address blocks: 154.221.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69326 (0x10ece)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 11:00:14 2024 GMT
Not After : Nov 27 11:00:14 2024 GMT
Subject: CN=6739ccc2-663b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:b1:67:f4:2f:86:93:71:54:0f:8a:32:30:
1e:b9:96:d5:1d:82:86:52:9b:30:d0:2a:0b:8d:7f:
61:2e:a9:a6:8b:62:dd:d5:94:e1:c9:ca:c0:f2:94:
31:3e:10:b2:7b:22:b0:1d:0c:e7:00:ac:9b:f9:90:
5d:e1:1a:cb:df:78:37:ea:54:b4:66:bf:ee:bf:c1:
08:65:3a:d5:29:48:77:b8:d2:a3:17:14:3e:af:b7:
61:b7:8e:9f:2e:a9:77:b2:38:69:9d:f7:65:df:bd:
a3:ca:78:4e:8a:c6:75:44:ce:8f:fe:f9:05:98:f2:
1e:fd:01:7b:27:68:54:81:a2:da:3f:5b:85:5a:a5:
6a:b8:d8:88:ad:97:96:36:53:a3:92:84:6b:63:51:
d4:e8:d6:98:fd:0d:f1:23:e5:ec:cc:a1:bc:1c:02:
d1:dd:3c:bf:b3:49:a5:69:04:59:78:3c:bf:1e:56:
7f:0a:27:6e:d0:76:db:24:9a:33:1e:09:72:2d:cc:
5c:5a:e3:01:44:8b:44:11:fa:ec:57:cf:72:e8:f9:
23:1e:a4:12:25:95:d9:37:cd:bb:0e:b1:6d:be:8d:
6b:42:39:ee:56:2c:5a:f1:75:a4:8f:0e:d0:8f:34:
33:25:79:c5:fe:4b:5c:af:56:01:8c:fe:4b:b1:aa:
7d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F6:71:63:1B:B5:3E:7E:63:A7:51:04:17:CB:0A:4D:E2:E5:F6:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2193BC34A4D311EFB7E24D86762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.4.0/22
Signature Algorithm: sha256WithRSAEncryption
81:1e:96:f7:8a:bd:60:0c:9d:bb:b7:30:36:b0:dd:2c:d6:5a:
61:98:77:1f:7c:2a:22:db:c5:8b:ef:e0:0f:9e:1b:cb:67:02:
15:51:30:f3:b9:a8:d6:66:97:02:e9:97:53:4c:d1:8b:29:21:
0c:42:4c:dc:79:c1:8e:77:b5:49:d6:a6:bb:df:b2:b8:c9:b3:
8f:b2:f4:50:90:50:5c:da:9f:1c:fa:9d:93:04:33:01:7d:dc:
ad:26:90:6a:cc:40:bf:9f:3e:0d:91:57:18:cf:1a:6a:cf:70:
9f:46:1b:5f:13:c0:19:a2:c0:ba:7f:04:4b:90:f4:93:8b:1a:
ee:9f:de:1e:28:15:a3:70:41:d0:2e:27:2c:3b:9f:0e:0a:59:
8c:e0:4c:d5:00:c4:88:a5:5f:94:db:bd:8a:54:17:38:f7:62:
dd:62:6b:6f:5e:f3:4b:eb:9a:4e:0e:86:9c:07:64:ff:17:fc:
a2:f7:ca:01:02:b0:0b:8f:4b:a1:0a:92:10:bc:d0:5c:9a:26:
58:18:e4:02:52:70:b5:f0:4e:94:5b:1f:80:ae:aa:2a:1f:b0:
1a:f1:1c:23:f7:10:30:44:34:b1:54:7d:cf:35:9a:78:b0:87:
93:57:44:2d:be:6c:35:8f:68:55:79:05:25:0d:89:5a:92:75:
a0:bb:c3:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:01 2024 by rpki-client on console-fra.rpki-client.org