Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36A0A07E9B8C11EFB772126C762E951A.roa
File: 36A0A07E9B8C11EFB772126C762E951A.roa (raw, json)
Hash identifier: zoaHCY6jLtVF6EzHUZB3dC7q3KzK3TUefnnlLBUHqBc=
Subject key identifier: D9:EE:9F:07:31:E5:A8:EB:36:86:85:5A:71:E1:27:97:8B:45:3B:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010829
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36A0A07E9B8C11EFB772126C762E951A.roa
Signing time: Tue 05 Nov 2024 15:39:59 +0000
ROA not before: Tue 05 Nov 2024 15:39:55 +0000
ROA not after: Wed 04 Dec 2024 15:39:55 +0000
asID: 200373
IP address blocks: 154.213.196.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67625 (0x10829)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 15:39:55 2024 GMT
Not After : Dec 4 15:39:55 2024 GMT
Subject: CN=672a3c4e-9d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e7:28:d2:44:c8:63:f8:80:d6:cb:1f:61:b4:
40:4b:6f:e6:ba:df:ce:3f:bf:4e:30:c6:60:c6:46:
fd:32:76:bc:dd:3a:66:30:ce:48:bf:74:c1:31:28:
e5:c3:f3:a7:22:bd:26:d6:e6:d9:bc:89:bd:ed:45:
a2:11:43:9c:b8:cb:7a:81:5d:bc:20:57:2d:b4:a5:
19:cb:9b:a1:70:ab:9c:69:a8:24:c9:7d:3c:f7:5a:
cd:da:8b:fb:b8:d5:b3:80:78:ab:6e:bc:e8:ef:70:
56:8f:eb:8e:18:59:b5:b4:8a:3b:e5:2e:94:2f:88:
be:90:bb:83:e7:58:55:11:fc:68:f9:ce:b2:13:c4:
26:76:25:a8:64:73:3d:94:f4:a8:88:47:6c:2c:30:
ef:9f:08:e3:00:b8:1c:de:b2:e4:18:5a:e8:e8:f3:
07:ba:d2:19:fe:99:ef:d6:86:17:1b:bc:d8:2f:75:
88:62:4b:46:22:cf:8c:02:62:91:89:ff:bf:bf:d9:
e7:4e:85:77:da:43:1c:e8:3a:84:76:ce:7d:e3:44:
d0:ba:a9:32:55:50:af:2c:60:15:57:c5:d1:c7:e7:
b0:ee:c3:f6:4e:db:c4:a7:f5:a8:d6:35:3b:6c:f0:
4d:19:07:6b:da:3c:33:29:bd:2b:39:79:99:7d:0a:
85:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:EE:9F:07:31:E5:A8:EB:36:86:85:5A:71:E1:27:97:8B:45:3B:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36A0A07E9B8C11EFB772126C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.196.0/22
Signature Algorithm: sha256WithRSAEncryption
72:c6:fe:35:5b:4a:a7:77:5c:c7:9d:53:7b:9e:d4:61:0d:e8:
b3:7b:20:2e:8b:3f:45:d0:7f:7d:02:65:86:bb:67:8a:82:24:
ca:d9:e5:6b:76:95:d4:8f:8a:6a:16:79:62:37:37:52:57:12:
b3:83:96:42:72:a5:4f:37:19:23:ef:1d:d6:02:c1:4d:17:7a:
cd:52:b1:a9:3f:3b:9b:f1:8b:39:6d:21:9c:54:fa:d7:ec:23:
62:7d:2a:a4:7d:20:31:8c:0b:c7:fc:30:a1:ff:a8:50:f3:9d:
60:6a:8b:d0:dd:30:8b:17:32:75:21:a3:fc:64:c7:c7:78:bb:
e0:5c:20:cf:f2:57:de:bc:9d:a6:90:18:4f:19:08:5b:85:cb:
bf:9c:7b:72:bf:9f:42:5d:8d:5b:e0:94:c1:68:c2:5b:30:1c:
b2:e0:d7:ce:e6:b4:15:d0:9a:75:ba:d8:b5:ee:f1:3b:58:9c:
d0:ac:da:91:16:8b:87:9e:7d:38:01:1a:a5:ac:04:d7:7c:ab:
af:a9:18:12:39:43:18:53:3b:30:f2:6b:6f:8d:5e:4f:e0:45:
96:71:0b:20:52:9c:fc:76:ca:54:af:c2:71:fb:26:9a:fb:c3:
5d:c1:a9:d9:d1:11:3e:7b:9c:29:5d:79:10:1e:25:27:46:80:
3d:d5:ce:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:00 2024 by rpki-client on console-ams.rpki-client.org