Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36736E4292B811EF90A6C044762E951A.roa
File: 36736E4292B811EF90A6C044762E951A.roa (raw, json)
Hash identifier: wV0wEteq/HD6HV0DgIFf0ExjxdAHd/evTWv0Fq8rzlc=
Subject key identifier: C0:AF:F9:8C:49:B3:B0:97:7D:EA:1F:50:BE:AB:46:71:CB:44:D8:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010216
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36736E4292B811EF90A6C044762E951A.roa
Signing time: Fri 25 Oct 2024 10:02:16 +0000
ROA not before: Fri 25 Oct 2024 10:02:12 +0000
ROA not after: Sun 01 Dec 2024 10:02:12 +0000
asID: 49505
IP address blocks: 154.213.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66070 (0x10216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 10:02:12 2024 GMT
Not After : Dec 1 10:02:12 2024 GMT
Subject: CN=671b6ca8-bf46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:87:a2:f9:b0:35:47:e5:81:89:94:d6:eb:8f:
9f:7f:b8:eb:96:09:8d:c9:20:80:bc:04:e7:02:13:
b5:53:45:2d:83:aa:da:e5:75:e3:ff:b8:00:6c:78:
33:e4:a0:a1:03:9b:ae:de:08:47:40:94:ec:69:f1:
ca:8d:fe:e2:42:1e:aa:53:ee:28:b3:3c:0a:ef:b1:
c9:25:fb:32:a7:0f:07:80:40:f1:1f:24:b2:19:c1:
2e:76:cf:47:47:49:a6:35:79:4b:7b:e8:fa:7e:43:
d9:8b:ec:14:34:c0:a2:d0:37:ef:e3:17:08:39:50:
50:a2:87:f6:b1:0f:91:35:9a:e5:5c:e5:83:5b:c8:
e2:5c:b1:51:ee:cb:9b:c0:73:00:41:37:75:09:c1:
67:2f:ca:60:34:f2:af:d4:42:17:dd:76:91:a4:22:
e7:06:92:49:f1:3d:2d:35:79:92:b0:bf:00:55:02:
90:46:49:98:f1:9e:c7:ea:76:60:42:ea:23:3f:ea:
07:dd:ea:9b:3f:ea:57:65:29:7c:bb:34:c1:a4:ea:
45:7b:69:cc:d6:6d:9e:a2:4e:f9:f0:86:41:e8:bc:
ec:13:5f:cc:80:a7:e7:19:0e:56:63:8f:40:38:42:
aa:c4:1e:50:55:1f:09:fa:d4:d5:10:70:1b:a1:20:
a9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:AF:F9:8C:49:B3:B0:97:7D:EA:1F:50:BE:AB:46:71:CB:44:D8:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36736E4292B811EF90A6C044762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
10:36:cc:5f:31:ab:c6:74:51:91:96:9a:df:6a:78:17:88:ca:
24:ff:d5:a1:48:c8:54:5a:e1:c7:19:92:b0:a5:ae:63:6b:aa:
df:34:71:39:0a:7d:45:08:d8:b4:13:13:eb:ec:e2:65:cf:e7:
74:43:18:81:bf:61:11:61:4a:18:79:a0:0d:18:48:8d:bb:85:
bb:ca:89:ab:2b:8f:95:10:7a:e8:a1:1b:12:2c:a7:40:4e:d9:
5e:28:d0:45:ea:d9:40:74:42:fd:c3:66:88:e7:87:bb:85:3d:
dd:e3:cc:38:d7:f4:0f:d6:f1:99:af:e2:e3:84:52:4c:9c:a2:
0c:7a:3b:a0:47:b8:a4:ad:a1:eb:73:15:ba:c7:a8:e3:e7:71:
fb:f4:94:3d:f6:e8:08:72:46:a2:05:d3:24:9d:01:c2:ec:60:
c6:8e:6c:9b:f6:52:c8:98:9d:08:81:aa:b7:1d:3d:e0:b5:cc:
b9:38:f6:a5:36:d0:d8:90:a8:d3:f0:8e:26:47:93:6a:5f:84:
54:de:98:b7:14:9e:7b:77:7d:5b:d0:6a:7b:bd:f8:5a:99:42:
20:8c:aa:b6:82:da:b8:bb:d7:1b:ac:d0:2b:7b:9b:d8:24:d3:
a5:c2:06:0a:43:7d:a1:6e:2c:4b:2d:7e:33:ad:ee:9e:8a:8a:
9e:aa:82:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:03 2024 by rpki-client on console-ams.rpki-client.org