Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32BD5214660211EFA407405F762E951A.roa
File: 32BD5214660211EFA407405F762E951A.roa (raw, json)
Hash identifier: /MWrmhyNlBZTdBOCZe/HSvYSiHR7p0sjwyd3O8DB5S0=
Subject key identifier: A1:F0:E2:BD:49:B7:EF:55:C0:99:16:72:2F:A3:BD:65:71:97:34:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E66D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32BD5214660211EFA407405F762E951A.roa
Signing time: Thu 29 Aug 2024 12:28:30 +0000
ROA not before: Thu 29 Aug 2024 12:28:26 +0000
ROA not after: Sun 31 Aug 2025 12:28:26 +0000
asID: 209824
IP address blocks: 154.197.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 18 Feb 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58989 (0xe66d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Aug 29 12:28:26 2024 GMT
Not After : Aug 31 12:28:26 2025 GMT
Subject: CN=66d0696e-2821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:07:be:90:4b:63:4a:ca:63:d3:58:5e:03:3a:
11:26:aa:9e:f9:ed:79:e2:e2:56:db:04:1c:fc:ad:
d4:4c:61:9e:38:1b:9d:5d:90:05:dd:6f:ba:c6:73:
b0:db:8e:b6:6d:fe:d6:74:11:e8:5a:cf:5e:10:84:
11:8c:db:bf:b9:88:79:34:06:55:50:d4:ca:10:5d:
d7:f4:af:eb:bf:73:5a:6c:45:0c:d1:3e:58:06:5f:
24:33:17:bf:2f:6b:e6:a8:69:e3:cf:0f:b4:b6:bd:
67:68:d1:67:1e:92:ee:c8:7d:6e:e4:ce:b1:35:5c:
58:34:5d:b4:03:49:07:3d:54:16:18:de:29:66:52:
72:e8:17:d6:00:ff:9f:f1:93:12:7d:9d:c3:e9:a9:
d6:f3:df:55:8d:da:e5:22:33:3a:45:2a:83:fa:17:
97:1b:e1:73:5a:09:a5:5f:17:b5:93:ec:ff:d4:ba:
82:38:86:f3:0e:24:5a:00:f2:b0:39:ff:8e:c5:5b:
80:40:cf:06:98:f4:6d:21:62:f4:95:33:a8:df:09:
34:34:1c:8a:c4:2f:61:12:8d:d5:0b:9a:43:8b:2a:
38:65:d4:e0:d0:a5:ae:8c:58:19:b3:63:a8:1b:6b:
d7:34:15:61:f2:34:fb:86:4d:69:fa:9d:a4:ff:ab:
61:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F0:E2:BD:49:B7:EF:55:C0:99:16:72:2F:A3:BD:65:71:97:34:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32BD5214660211EFA407405F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.70.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:8a:a1:9b:6c:bb:84:06:1e:d9:dd:43:ce:54:0f:0d:1c:aa:
8a:e9:51:93:3f:c6:2c:ef:41:a9:10:b9:a6:08:4e:b8:56:01:
0f:32:7b:12:fd:0e:95:62:32:85:e5:14:34:d9:58:0a:a4:48:
ec:62:32:e9:81:23:cd:e3:57:37:e1:b3:ae:e2:fe:52:08:2e:
2f:78:99:eb:a4:81:ef:32:6b:98:d8:78:e7:1e:bb:11:b8:84:
17:20:4b:65:e2:a7:ac:f6:96:2c:44:ce:13:da:96:ca:11:41:
74:28:b9:ba:ad:22:d0:bf:81:f1:c8:6f:c5:32:30:4d:19:a6:
6f:c8:b4:3c:78:9e:05:85:e3:1c:7a:e0:42:24:75:62:fe:55:
6f:0d:11:71:7d:0f:3d:f6:55:38:5d:0d:06:df:ff:bc:6a:e6:
9d:78:2a:7e:0e:dc:5f:6c:54:4e:68:9a:8d:8f:93:1b:57:ff:
40:ff:8d:c7:7e:5f:46:1c:12:a7:c7:d6:8f:93:c8:a9:20:8c:
82:49:1f:aa:5c:6b:1a:d6:36:8f:83:4a:3a:cc:a9:89:2f:f8:
70:f9:48:69:f7:4f:af:59:c4:90:a2:0a:97:97:d3:8a:48:4c:
2c:93:a6:97:49:58:a6:85:39:60:98:14:7d:8e:7e:e9:b3:e4:
92:73:fc:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:20 2025 by rpki-client