Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30222E62A8F111EF8EBE6363762E951A.roa
File: 30222E62A8F111EF8EBE6363762E951A.roa (raw, json)
Hash identifier: EU4s+tgaL3p1namDneYg2XtyA9m/TAmOcQUE6xpzNcM=
Subject key identifier: D4:5F:40:99:19:90:38:EA:C3:FA:96:AC:44:9E:A9:6D:F7:70:5A:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011155
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30222E62A8F111EF8EBE6363762E951A.roa
Signing time: Fri 22 Nov 2024 16:45:32 +0000
ROA not before: Fri 22 Nov 2024 16:45:28 +0000
ROA not after: Tue 03 Dec 2024 16:45:28 +0000
asID: 62240
IP address blocks: 154.195.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69973 (0x11155)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:45:28 2024 GMT
Not After : Dec 3 16:45:28 2024 GMT
Subject: CN=6740b52c-37b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7d:31:99:bd:d6:c5:24:8e:e1:5f:c3:7b:e5:
ed:a2:d9:98:5f:ac:f2:64:5a:c0:93:70:71:dd:49:
70:a3:50:ee:25:56:99:f5:92:5d:b2:b0:c3:79:b7:
37:36:65:3a:37:ab:84:7e:6b:f4:cf:80:e3:44:5e:
3e:da:54:45:fe:e3:07:25:93:fa:9a:b2:02:7c:90:
a9:f6:4f:a8:82:7d:2e:c0:e1:21:92:2a:5b:95:70:
f8:3f:01:a7:eb:81:cb:b8:1f:e4:39:f5:98:13:98:
fe:e0:9b:45:64:20:85:37:6a:0f:4a:dd:d2:2a:1a:
cf:94:8e:e4:71:05:2a:dd:e6:45:48:46:7b:ef:c4:
9c:ba:f4:65:f6:e9:d7:9c:60:dd:91:f8:07:60:6c:
6c:86:c9:ae:b3:b2:09:a0:4f:c8:cb:87:aa:97:1c:
b5:3d:9e:60:59:c8:ee:11:62:a5:bb:ef:c1:29:1b:
45:d8:85:50:94:a1:78:b8:7c:f5:6e:28:ab:e8:6a:
41:a7:b9:f2:8c:81:c3:a1:ce:3b:8b:f0:da:9f:47:
cb:e5:02:7f:10:ab:7e:d9:8a:df:5b:9a:e7:a4:7a:
29:14:33:f8:4f:4a:71:21:72:4e:f8:5c:c5:32:18:
43:0e:35:4e:48:87:d5:61:a3:8d:90:62:c5:e1:cc:
bc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5F:40:99:19:90:38:EA:C3:FA:96:AC:44:9E:A9:6D:F7:70:5A:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30222E62A8F111EF8EBE6363762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.165.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:e1:fe:7d:d9:91:18:ab:16:c6:69:f0:8a:7b:21:2f:a7:41:
e1:9d:8f:9d:b2:84:a5:30:4c:df:18:e6:06:a6:10:a3:57:de:
5d:73:00:be:f8:58:ae:3d:90:03:c7:43:c6:0d:b3:b6:57:a5:
6a:66:83:d6:e8:97:b3:75:e9:c9:49:cb:4c:86:d1:f5:5c:5a:
32:90:21:95:45:0c:bb:63:da:19:d0:79:7a:db:07:d7:22:d6:
ff:f8:dd:ea:1f:d8:75:29:d8:c3:74:5c:1c:6a:e9:56:86:aa:
93:6d:57:ab:7f:ea:86:89:aa:d9:e9:c8:c9:c6:29:b7:b7:34:
0a:47:f1:87:8b:c0:74:ce:7a:11:90:1a:8e:db:64:08:5a:c3:
22:15:87:73:68:44:8b:3d:e2:73:0a:ee:46:d8:78:2e:8c:30:
6a:95:f7:58:ec:39:ec:2b:25:58:1f:1f:ad:d5:68:d2:b0:14:
04:36:78:f2:0f:1a:e6:e7:26:fa:31:ee:32:25:e0:98:3e:8a:
63:30:94:6c:20:02:00:fd:7f:c7:76:79:5d:05:95:31:0a:39:
1a:b1:ce:ac:e7:4c:e5:03:59:eb:a0:c2:ae:4d:b6:54:49:5c:
52:5e:db:ac:48:f0:36:e3:5e:94:d0:6d:1e:5b:37:71:90:32:
17:32:a4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:26 2024 by rpki-client on console-fra.rpki-client.org