Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34DF2114A64C11EFAF543E44762E951A.roa
File: 34DF2114A64C11EFAF543E44762E951A.roa (raw, json)
Hash identifier: 6eF/yBo2FrBUcUq077eqpzOtbAPQR6pgLjnYFl8oW9o=
Subject key identifier: 97:5F:E9:D9:4C:94:9E:1D:35:D3:D9:B2:BE:F9:F1:46:AB:BE:39:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F04
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34DF2114A64C11EFAF543E44762E951A.roa
Signing time: Tue 19 Nov 2024 07:59:31 +0000
ROA not before: Tue 19 Nov 2024 07:59:27 +0000
ROA not after: Sun 15 Dec 2024 07:59:27 +0000
asID: 215240
IP address blocks: 154.216.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69380 (0x10f04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:59:27 2024 GMT
Not After : Dec 15 07:59:27 2024 GMT
Subject: CN=673c4563-4745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fd:63:65:e1:e4:85:ad:05:29:24:92:c2:5e:
6a:df:7d:bb:13:a5:b9:6b:dc:73:c9:84:14:0d:08:
64:10:77:b2:35:61:aa:7f:40:a0:0b:c5:28:b4:62:
82:06:3f:2f:9b:14:a9:38:0b:a4:90:07:ab:03:ae:
69:c5:74:41:a0:89:94:0f:90:b4:ef:2d:c7:24:c1:
47:a2:a9:5c:2f:a7:1f:e9:2e:be:31:6e:c6:6f:af:
d5:22:46:ab:b3:fe:ce:f0:5d:2b:fc:d8:7b:64:3d:
71:78:d0:16:63:f6:d4:c6:e1:d2:13:f2:b6:0c:c0:
0b:c8:9a:d6:88:1a:90:70:11:96:3f:ee:cc:b6:a0:
3c:7c:a3:58:e7:a2:2c:f1:38:56:f8:93:11:96:c4:
38:6b:ee:84:ec:85:88:bc:5a:a0:31:b4:6d:eb:10:
21:1f:32:ab:1d:c8:85:10:e7:b7:c8:13:22:b6:5e:
f6:e7:23:5b:19:9b:6a:92:37:70:66:aa:11:55:a5:
db:74:15:4e:b9:35:27:d9:e3:81:c9:9b:bf:4e:89:
32:37:9d:36:aa:9d:6f:f8:50:5f:26:9f:f5:31:b3:
15:83:8d:b9:5e:41:aa:c7:5c:48:0b:63:6a:69:28:
3f:15:b4:dc:22:92:48:5c:de:85:07:78:5b:af:27:
9b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5F:E9:D9:4C:94:9E:1D:35:D3:D9:B2:BE:F9:F1:46:AB:BE:39:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34DF2114A64C11EFAF543E44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.19.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:04:9c:30:71:5e:0b:02:f9:95:40:5b:31:56:0b:36:c3:cd:
96:40:fc:3c:95:86:0e:60:9c:b9:39:0a:c4:85:28:c8:ca:a4:
14:0a:ef:30:89:ff:f1:2c:b5:99:7a:e0:25:f8:c3:b6:ea:2a:
dd:d3:83:45:fc:11:67:ba:68:e1:bd:bb:80:a9:69:ab:2b:2d:
2a:42:06:20:76:b7:a3:0b:ca:ba:a0:bc:fd:55:46:f0:93:ed:
ab:a4:ba:60:13:3f:fc:a7:87:5a:6b:39:fd:52:8e:d8:0e:35:
f5:c1:64:9f:d4:54:da:9e:ef:8c:7e:50:0d:80:6b:c3:a2:83:
2f:b7:07:85:4d:fa:f8:91:ad:f2:74:1d:e8:37:c6:4f:e9:aa:
c7:22:85:45:3e:75:60:67:dc:0f:cf:5e:f0:11:5a:ba:1b:32:
0e:8d:c4:8e:fd:df:af:62:df:a3:1e:bb:15:82:d7:64:1e:e9:
fd:d1:01:36:e4:bd:b9:72:f7:0f:c0:e8:10:ae:09:cc:c8:69:
1a:79:e3:e0:36:c1:fb:5f:d4:f3:f3:74:5a:b9:e6:b6:86:c0:
8a:a6:df:fc:54:56:c6:84:43:c5:f3:ac:fb:15:b1:d7:c4:db:
e5:11:cb:fe:74:ae:11:15:f3:61:62:8a:39:f7:43:7c:54:37:
52:e7:e2:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 11:16:14 2024 by rpki-client on console-fra.rpki-client.org