Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F97DE5AA44C11EFB3360DA9762E951A.roa
File: 2F97DE5AA44C11EFB3360DA9762E951A.roa (raw, json)
Hash identifier: epAXuKmtNlKa/X8Iok0hYoUTKa6lwIA83UGB1R5l/8c=
Subject key identifier: D5:D6:BF:BB:41:C8:12:79:B3:28:C0:5F:A5:56:FB:AA:EC:45:2D:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DFB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F97DE5AA44C11EFB3360DA9762E951A.roa
Signing time: Sat 16 Nov 2024 18:54:19 +0000
ROA not before: Sat 16 Nov 2024 18:54:16 +0000
ROA not after: Mon 25 Nov 2024 18:54:16 +0000
asID: 9009
IP address blocks: 154.194.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69115 (0x10dfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 18:54:16 2024 GMT
Not After : Nov 25 18:54:16 2024 GMT
Subject: CN=6738ea5b-2f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:01:96:8d:82:04:9e:08:c6:49:52:d2:50:0c:
91:87:47:49:5d:7a:1e:ed:26:ca:13:9a:3f:0d:8f:
32:ff:12:c0:06:a5:fd:b7:9d:77:94:bb:a3:d7:ea:
b6:39:a8:9b:86:3d:5d:96:6d:c4:98:f1:53:62:4c:
56:58:8c:08:09:1a:41:b3:af:fd:6b:31:fe:da:f3:
b9:50:b1:fc:1d:b4:ee:86:60:6c:43:50:ab:e0:b7:
42:2a:07:c7:b3:6d:d7:be:43:6c:55:3a:2b:a9:88:
c1:c4:e8:2b:2e:67:d6:05:2d:41:48:26:eb:9d:e4:
d1:c4:db:9b:49:fd:7b:38:aa:97:b8:e8:4f:ba:37:
de:22:7f:21:bd:d5:38:76:0d:85:7a:40:ad:ee:45:
07:09:48:6e:db:87:e2:80:bb:29:8e:9e:af:1e:82:
34:9c:ae:61:43:fb:da:d2:fa:22:40:98:ed:96:e4:
5e:06:46:9a:73:a7:e5:3d:c7:fb:50:07:ec:df:a8:
7d:98:60:95:d4:58:6b:7f:da:7d:f7:ed:13:55:ea:
38:c5:2d:0b:5f:f0:d0:4b:cc:43:9f:a3:9e:b8:c7:
6f:b0:79:49:42:a3:07:1b:b4:42:57:04:28:20:70:
85:25:5b:89:5b:90:b1:b4:82:0d:a5:06:21:3d:7b:
ef:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D6:BF:BB:41:C8:12:79:B3:28:C0:5F:A5:56:FB:AA:EC:45:2D:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F97DE5AA44C11EFB3360DA9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.10.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:70:d5:61:56:ad:d1:b7:66:fd:f2:46:2b:1c:a4:d1:10:b4:
c1:55:ff:ce:1f:7d:89:00:10:87:08:7f:41:37:96:ff:e6:52:
a6:3a:b1:3a:c4:70:5d:95:bc:61:a4:03:65:64:d5:21:47:f1:
1f:56:bf:c9:01:2d:89:1d:b9:3b:09:ff:a4:ff:66:c2:1f:55:
52:7b:16:5c:a6:24:2d:59:7e:7f:c4:b2:af:e4:06:7f:bc:af:
38:b7:b8:0d:e5:bc:09:5c:26:e5:cf:a6:3b:28:ef:67:1e:b0:
5f:48:dd:bc:9c:42:4e:a0:32:c4:7e:5b:b1:b3:e6:a5:de:91:
20:6f:f8:38:e7:c2:bd:62:ec:b0:d7:cc:e4:67:38:cb:e4:de:
77:0e:e9:d5:9d:25:08:34:90:da:ae:83:cb:ed:c2:a0:c0:c1:
f1:70:3f:a7:02:d6:1f:18:a0:ca:de:24:06:d2:ba:f1:8b:9d:
7d:df:fc:aa:8b:c4:29:71:60:29:dd:4a:59:86:04:29:a6:0f:
a0:40:fd:c3:34:59:ef:53:cc:d4:c5:f4:bb:f5:a0:ee:f6:03:
bc:13:80:2a:77:da:84:16:86:e3:2e:2e:a6:32:87:05:0e:d1:
11:27:b6:6e:e6:4f:32:df:2d:7c:62:c3:b9:f3:92:bb:8c:ab:
50:d4:3a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:35 2024 by rpki-client on console-ams.rpki-client.org