Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A369D78A75511EFBA0039BF762E951A.roa
File: 2A369D78A75511EFBA0039BF762E951A.roa (raw, json)
Hash identifier: i6vGzrT9Jsmk9m/TRXX5hMiMWr5g/drrJuWIhdCXT5A=
Subject key identifier: 99:D5:6B:9B:9A:6F:58:99:FF:13:5A:E7:35:40:98:0D:C9:EA:92:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FDD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A369D78A75511EFBA0039BF762E951A.roa
Signing time: Wed 20 Nov 2024 15:36:09 +0000
ROA not before: Wed 20 Nov 2024 15:36:06 +0000
ROA not after: Sun 01 Dec 2024 15:36:06 +0000
asID: 139880
IP address blocks: 154.209.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69597 (0x10fdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:36:06 2024 GMT
Not After : Dec 1 15:36:06 2024 GMT
Subject: CN=673e01e9-9032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0a:a8:fa:e0:40:d7:c6:ab:18:52:29:c4:4d:
b6:1a:de:94:58:9b:0b:4b:d1:94:6d:e2:18:c7:1c:
80:51:53:91:1b:fe:76:28:da:22:52:31:0e:b7:ba:
c8:f4:cc:7a:19:82:06:b1:f3:0e:9a:78:76:fc:e5:
a2:af:6c:e2:23:2f:f5:65:c8:9a:60:06:95:69:b1:
95:14:04:98:88:20:33:60:b4:ec:6a:84:7a:b3:ce:
09:f0:b8:de:15:84:80:ec:13:15:0a:b2:0f:f4:e0:
dc:e0:3a:83:1f:72:9e:4a:67:ac:1e:26:ec:7a:28:
6c:d5:f4:de:53:b7:9a:f7:17:8a:ab:a0:6c:d2:d5:
81:95:ce:11:1d:8c:83:e6:c4:47:8c:3c:01:69:64:
fa:7e:8d:6e:d8:8a:61:bf:01:4e:f1:0f:6e:e9:71:
9b:cc:44:9c:3a:62:18:06:e4:0f:d5:86:fc:ac:56:
1a:c9:15:42:5f:81:23:77:42:12:a7:d2:01:89:1e:
64:27:8f:e0:91:88:6e:f2:9b:b3:0b:67:18:b1:53:
96:d9:a7:50:28:cd:e5:ff:8e:db:2f:17:e8:27:9c:
4d:93:91:b8:0f:cf:a5:13:89:ce:53:d6:f6:a0:bb:
a8:e2:71:21:c5:ac:b7:e2:5b:6f:21:6e:30:a4:33:
04:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D5:6B:9B:9A:6F:58:99:FF:13:5A:E7:35:40:98:0D:C9:EA:92:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A369D78A75511EFBA0039BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.160.0/19
Signature Algorithm: sha256WithRSAEncryption
ae:65:ce:54:a1:85:00:0c:a8:ab:c5:03:f2:56:dd:06:23:ca:
5c:33:b4:f5:25:07:a3:d8:d6:22:32:ea:8f:e4:dd:de:fb:78:
51:c8:c8:26:15:d7:1a:f2:25:09:78:04:25:3c:42:db:99:4a:
44:01:ce:87:9f:54:8e:39:6f:00:2b:3f:16:2e:ac:b2:14:e9:
10:72:20:c0:8a:8c:80:1b:72:49:d6:1d:32:d9:83:a7:bb:7d:
d1:a9:9d:0c:e9:1f:b8:75:ab:af:69:25:94:49:00:1e:1f:01:
f8:9c:38:14:73:68:93:ab:b2:b3:c8:dc:77:3c:b6:17:e9:75:
86:6e:92:4b:02:89:c9:e8:ea:bd:29:a1:33:ce:8d:fc:30:f0:
fd:e5:7e:32:fa:b7:8f:13:1a:38:04:0a:82:6c:11:c9:e4:1e:
9b:4e:61:2c:c9:d0:50:49:26:60:be:63:c8:0f:ed:30:04:32:
34:e0:6e:8a:b0:d8:cb:38:37:01:2e:af:8d:1f:13:5b:46:d8:
57:ec:90:e0:83:24:60:59:65:2d:1b:bd:29:0b:b4:88:2b:9b:
21:20:4e:c2:f9:d0:a2:da:d4:c0:88:26:ab:a6:6c:f0:99:d8:
29:16:86:93:2e:9b:dc:5e:0a:e1:c2:90:d6:e6:84:ad:67:91:
3c:23:01:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:54:15 2024 by rpki-client on console-fra.rpki-client.org