Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2757B2FEA0D911EF8E7DA84E762E951A.roa
File: 2757B2FEA0D911EF8E7DA84E762E951A.roa (raw, json)
Hash identifier: jyC6fmH9sBzHXDjL/SENCxmgW/22BVmORt367UzPENU=
Subject key identifier: 33:E8:09:2C:F3:65:17:54:B2:36:D5:F6:EF:BF:5B:22:1A:38:80:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2757B2FEA0D911EF8E7DA84E762E951A.roa
Signing time: Tue 12 Nov 2024 09:33:20 +0000
ROA not before: Tue 12 Nov 2024 09:33:16 +0000
ROA not after: Sat 07 Dec 2024 09:33:16 +0000
asID: 138915
IP address blocks: 154.223.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68634 (0x10c1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:33:16 2024 GMT
Not After : Dec 7 09:33:16 2024 GMT
Subject: CN=673320e0-b75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:63:b6:8c:f5:fb:5a:13:81:c8:b9:ce:70:53:
4b:11:06:3a:e5:bf:63:37:c2:e6:3d:af:68:09:61:
ae:22:1d:1c:3f:00:61:4b:62:ce:4d:4b:9f:21:7e:
e9:6c:91:ba:dd:f3:39:55:88:70:71:58:f6:bb:25:
fd:8a:e5:07:6d:b8:21:65:93:6c:c5:1a:4b:5c:53:
f5:f8:0e:df:58:c8:6d:47:aa:ae:48:11:2b:a8:bd:
2a:0d:a2:c9:28:cc:d1:b6:a6:a3:f7:d8:75:88:41:
89:02:52:ce:a0:82:66:49:63:bb:3d:72:84:29:b1:
af:c5:92:4c:28:78:b2:d9:91:5f:3b:7b:7e:5a:22:
cb:6a:3f:0f:21:c1:c1:72:82:e8:e3:33:d6:04:fa:
35:15:70:18:ba:e1:e2:f1:2a:e2:9c:84:67:6a:f7:
43:8e:ec:87:5f:6a:09:5c:78:c4:1d:fb:87:37:6b:
a3:32:01:7c:9b:ae:ff:30:dc:32:e9:df:c2:8b:91:
14:cb:d8:48:85:d1:32:9a:f6:78:88:14:43:d5:fb:
78:ce:bd:c3:a4:db:ec:00:82:5b:c4:df:e4:95:38:
69:ea:3c:18:96:86:f9:bd:89:1f:fe:5a:ae:e4:48:
fe:21:c0:6c:78:87:a3:db:2f:92:5e:f3:b0:f9:4e:
b6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E8:09:2C:F3:65:17:54:B2:36:D5:F6:EF:BF:5B:22:1A:38:80:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2757B2FEA0D911EF8E7DA84E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.52.0/22
Signature Algorithm: sha256WithRSAEncryption
47:c2:6c:e9:9d:7a:ae:90:76:4f:4c:6a:35:03:81:c8:72:67:
f7:a6:f6:a2:5b:e2:a7:32:21:3c:5b:00:84:40:f5:61:0c:1f:
47:1b:01:72:29:9a:79:a0:89:84:62:5a:65:f0:8f:96:60:d7:
e3:c4:50:0a:a1:01:17:22:f9:80:d6:91:31:75:ff:2b:6e:95:
de:b3:bd:08:38:57:9f:24:00:0d:e3:bc:2f:6a:60:bb:1c:42:
5a:a0:8a:df:9d:bf:dd:30:36:eb:5f:10:96:f2:c3:6d:ea:40:
8f:97:c9:93:2c:ea:f3:03:d5:a9:35:71:2f:bf:2c:65:d6:fd:
03:45:12:4b:7b:73:87:fc:db:46:8e:0d:11:ac:36:aa:76:78:
72:54:fe:2b:61:0b:71:e5:61:85:62:63:e8:5b:79:75:98:3f:
5f:54:25:d7:40:f6:55:69:cf:50:61:99:ee:ef:e0:50:8d:13:
41:87:85:63:fb:80:4a:47:31:9c:5e:d3:b6:fd:f5:5d:12:40:
98:bc:54:c3:39:d2:64:eb:1b:dd:df:7c:16:e2:cc:cb:2a:4c:
1a:71:f7:09:d5:15:93:14:27:6c:92:35:ae:68:a3:20:9c:81:
a2:13:4e:2b:24:10:cf:cb:67:ab:08:30:d1:fe:e5:68:ae:d6:
63:89:89:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:00 2024 by rpki-client on console-ams.rpki-client.org