Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2637B9ACA9CE11EFA0E8A44F762E951A.roa
File: 2637B9ACA9CE11EFA0E8A44F762E951A.roa (raw, json)
Hash identifier: n/TJsgySlejTn76qpmhG5URawfyeUqiribWYWcO4Ft0=
Subject key identifier: B0:DA:4D:2A:EA:C6:FA:44:CD:74:42:B5:6C:C3:EB:08:6B:71:E0:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011200
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2637B9ACA9CE11EFA0E8A44F762E951A.roa
Signing time: Sat 23 Nov 2024 19:07:14 +0000
ROA not before: Sat 23 Nov 2024 19:07:10 +0000
ROA not after: Mon 02 Dec 2024 19:07:10 +0000
asID: 9009
IP address blocks: 154.85.100.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70144 (0x11200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:07:10 2024 GMT
Not After : Dec 2 19:07:10 2024 GMT
Subject: CN=674227e2-490e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ca:d5:c8:28:51:d3:7a:66:83:4b:7e:19:7f:
1e:f0:81:16:fe:5a:c4:9e:f8:af:57:c1:51:21:96:
f6:8c:b1:48:84:09:f2:12:63:31:d0:e6:ec:45:5a:
58:fe:87:a9:40:8a:4a:e2:23:74:19:ad:ea:ea:b1:
98:c6:f2:b5:b2:42:79:19:83:aa:37:8d:fe:d5:49:
a6:16:72:c8:84:a2:ee:62:b0:8e:8c:11:80:3c:56:
a6:66:87:f0:0c:ff:d8:06:b6:90:89:51:a4:8d:96:
ee:98:dd:11:20:2f:fc:5d:f1:20:46:b7:f2:46:2a:
a5:37:33:2d:f3:ed:d0:db:4c:64:7f:5f:2b:6f:2d:
b8:90:74:72:c0:18:41:fe:32:a5:65:14:39:f9:f9:
72:eb:19:c9:84:ca:b3:8a:24:51:4a:56:94:9e:69:
48:38:5b:8f:85:ff:46:57:92:f3:81:09:7b:0a:12:
37:2f:c5:09:37:83:9f:4b:9d:b6:82:35:d8:da:07:
34:56:c4:71:bd:c4:2a:48:90:37:d9:60:69:f6:ea:
7d:ec:eb:0c:02:79:51:a0:5b:2e:fd:56:33:8d:d3:
04:4c:a9:17:22:88:9b:1c:3e:fc:1d:16:3b:fe:d6:
55:c4:36:88:ab:6c:83:dd:a5:84:8a:9f:a2:40:0b:
67:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DA:4D:2A:EA:C6:FA:44:CD:74:42:B5:6C:C3:EB:08:6B:71:E0:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2637B9ACA9CE11EFA0E8A44F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.100.0/22
Signature Algorithm: sha256WithRSAEncryption
93:25:54:40:e2:14:f2:e3:e9:23:0c:60:0b:ac:a0:31:46:f3:
e3:a2:e5:9d:09:ee:49:a4:ef:71:f0:6d:5c:dd:ec:84:a7:07:
cb:17:57:39:65:55:d7:a8:8f:38:a4:e5:04:9f:1a:cf:30:ed:
9a:36:02:1e:af:23:cb:7d:12:97:d8:5d:f2:54:f7:51:ee:73:
5e:36:54:b0:dd:0e:00:46:5f:d6:ab:b8:66:23:08:ff:32:30:
9d:f1:2d:a2:99:c7:52:d9:57:dc:56:0b:ed:c9:53:a5:e9:56:
bc:42:66:e8:f8:9e:dd:c0:35:42:eb:ab:b4:78:b3:b8:64:79:
97:00:bd:c2:9e:33:ca:be:81:19:3f:1f:df:b1:81:dc:66:bf:
12:9e:7e:63:bd:8a:f3:03:34:b5:e7:c1:ec:19:bf:18:63:88:
c2:6f:bc:a3:4e:e0:8b:09:fe:a4:46:25:9e:3b:bd:0a:96:40:
1f:e4:bc:11:45:a1:54:9f:c3:7a:a4:07:fc:86:c9:95:9e:69:
6f:a9:6a:57:3f:b3:88:b7:75:21:69:62:f3:48:ee:45:4e:b8:
48:86:42:c5:4c:a2:a1:04:02:aa:53:16:03:9c:ff:e3:92:8a:
9d:5e:17:37:5d:ab:ff:c7:ed:cc:bc:ac:fe:f7:d6:3c:91:dc:
df:58:b9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:00 2024 by rpki-client on console-ams.rpki-client.org