Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C72276A96A711EFAF96058E762E951A.roa
File: 2C72276A96A711EFAF96058E762E951A.roa (raw, json)
Hash identifier: QcAEM4WUEYrKjKWuQ/EGVBMSN9W6FbXqnUIYYVdmevo=
Subject key identifier: 1F:E3:F1:0E:2F:32:3C:92:CB:DE:32:24:42:16:F4:D0:D3:01:14:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0103EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C72276A96A711EFAF96058E762E951A.roa
Signing time: Wed 30 Oct 2024 10:10:22 +0000
ROA not before: Wed 30 Oct 2024 10:10:18 +0000
ROA not after: Mon 02 Dec 2024 10:10:18 +0000
asID: 5068
IP address blocks: 154.83.72.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66543 (0x103ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 10:10:18 2024 GMT
Not After : Dec 2 10:10:18 2024 GMT
Subject: CN=6722060e-c2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:f1:9b:85:5a:7e:30:4d:8f:a0:66:c8:2e:
48:2e:37:c4:af:e5:34:6c:6f:3b:34:ff:e6:53:f3:
5a:01:9c:d3:49:38:6a:03:39:21:f2:91:6e:55:31:
92:77:df:ef:1f:06:5d:0a:91:fa:85:84:72:49:95:
d6:ba:9d:4c:d8:50:a4:37:7c:78:b2:f8:29:3e:bc:
76:3a:60:8b:b1:91:20:70:d8:c1:98:8a:d1:32:38:
07:b7:4d:e1:08:89:bc:06:78:1a:c9:5d:10:33:1b:
b3:55:35:78:dd:03:2b:fb:67:89:27:23:cd:01:1a:
b4:26:0b:7d:7a:a6:b6:e8:34:cd:4a:79:e6:d0:0c:
52:3c:34:99:c9:f2:8b:77:72:d0:61:c4:ba:6c:68:
3f:b3:fe:d6:7c:ba:90:8f:72:88:4b:fc:9c:66:5b:
ad:44:54:c6:33:cc:5d:56:52:53:b7:fd:80:bf:9a:
66:e2:98:86:85:76:ea:ad:c7:94:61:45:7d:30:71:
ca:f3:a1:82:52:73:fd:6b:83:a2:c0:43:9a:c1:0f:
a5:d5:44:5a:93:23:43:83:be:7d:4a:5f:f9:ca:6d:
4d:7f:dd:b6:65:1a:16:37:e8:d2:4a:da:f8:0b:fa:
29:96:f9:e7:56:af:14:3e:b7:e2:e0:02:42:7c:2d:
cd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E3:F1:0E:2F:32:3C:92:CB:DE:32:24:42:16:F4:D0:D3:01:14:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C72276A96A711EFAF96058E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.72.0/22
Signature Algorithm: sha256WithRSAEncryption
42:19:1f:d1:fa:29:12:78:04:bf:c2:e0:d0:cf:0f:41:2e:5f:
a4:fb:68:d8:24:79:30:52:f9:2f:c7:6d:dc:fb:1a:9d:57:75:
95:6c:84:42:43:43:71:a7:db:8b:00:ad:6d:7e:c9:85:7b:18:
6a:03:22:3e:fc:d6:9e:ff:5f:18:74:c9:e2:41:dc:1c:e1:f6:
3e:26:f7:ee:69:81:11:d8:41:81:23:a3:fb:b3:34:08:6c:cb:
ea:93:12:5d:df:85:bc:e5:45:f5:b1:ed:ae:e9:3f:a1:37:5d:
b5:83:c1:40:1f:2e:8f:2c:8f:47:e7:60:ee:e5:29:79:d3:55:
90:64:ac:75:c9:38:d8:fc:e6:6a:e3:a2:dd:97:2a:c5:45:0c:
3a:84:a7:2f:2c:46:3a:79:6b:bd:c3:db:53:7f:3a:1d:1b:7b:
fc:63:e7:ba:f2:8a:a3:47:b9:5e:56:a5:df:f7:f5:e6:b7:71:
34:84:e7:7b:35:e3:c5:0b:ef:9e:d9:12:f0:b7:b5:eb:bf:6a:
32:61:bd:51:76:c2:be:f8:c5:3d:16:86:e3:d9:5b:4e:15:4a:
af:94:76:db:e4:19:c4:61:0a:2d:fb:da:d7:bc:62:8f:e6:00:
af:89:69:68:6b:72:d2:f9:9d:eb:b1:b6:73:b5:8a:ba:b0:80:
a5:e8:05:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:02 2024 by rpki-client on console-fra.rpki-client.org