Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36A2D7F23AA411EFAFBE6D95762E951A.roa
File: 36A2D7F23AA411EFAFBE6D95762E951A.roa (raw, json)
Hash identifier: 4PsQoLlt27UrSQaDWJ9qmC+OS3vGQni823+MChBSfBo=
Subject key identifier: 35:EE:9B:6B:9C:18:57:B3:BA:CF:8C:41:B0:AD:AD:14:D0:2C:3A:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CD90
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36A2D7F23AA411EFAFBE6D95762E951A.roa
Signing time: Fri 05 Jul 2024 07:57:24 +0000
ROA not before: Fri 05 Jul 2024 07:57:20 +0000
ROA not after: Tue 07 Jan 2025 07:57:20 +0000
asID: 63199
IP address blocks: 154.207.96.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52624 (0xcd90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 07:57:20 2024 GMT
Not After : Jan 7 07:57:20 2025 GMT
Subject: CN=6687a764-b0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:43:bf:da:23:19:db:80:b4:42:ff:8b:ee:
06:dc:2b:2d:cb:39:fb:2a:43:53:b8:a2:b6:82:1c:
1f:21:4e:84:59:9e:be:15:e0:99:2c:44:d2:a9:ec:
b1:0e:15:4e:ec:26:b4:1c:67:e8:5b:44:df:f7:b5:
7c:00:f7:92:1d:00:c8:86:3d:fd:11:54:cb:af:b0:
79:38:3c:1c:5e:91:2b:d7:ac:43:27:d8:2b:d7:84:
51:63:92:61:c0:d6:f9:2e:3e:1b:ff:5f:f2:4d:0f:
e8:25:55:f6:23:67:b8:8f:bc:24:a2:8b:a2:a8:ee:
49:0d:76:3f:37:a6:14:e9:b2:53:bb:2b:db:df:41:
c0:4d:41:a6:89:46:8d:02:bd:dd:22:82:ff:be:8c:
61:aa:59:90:f4:85:be:eb:65:b2:c2:ec:85:54:4f:
ca:5c:d1:b2:7d:43:09:db:48:a7:01:62:c3:a2:4d:
64:3a:b2:97:b9:b1:47:7c:ae:00:f7:4d:a1:be:c7:
3e:07:fa:20:82:c8:34:5d:1f:be:8a:d3:6a:f2:d1:
db:77:5e:ff:01:ea:4f:81:a3:cb:0c:73:f0:9a:84:
cc:e4:43:5f:f3:46:8d:31:29:c3:28:40:fe:6f:a4:
f9:e3:75:1d:a5:93:08:b6:aa:66:1e:cb:92:5e:3a:
71:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:EE:9B:6B:9C:18:57:B3:BA:CF:8C:41:B0:AD:AD:14:D0:2C:3A:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36A2D7F23AA411EFAFBE6D95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.96.0/23
Signature Algorithm: sha256WithRSAEncryption
59:64:02:4b:e4:4a:4a:ec:79:bb:d2:4d:ca:8f:1b:f0:3d:a9:
92:54:81:ea:82:a9:6d:e2:dd:ea:6f:72:39:4f:8f:b2:95:a5:
24:02:79:65:d3:e5:15:c0:0f:ee:e5:f1:48:4e:ac:92:c2:1b:
9e:8a:19:f6:fa:a4:e8:82:d3:a6:aa:27:d2:1a:3c:33:64:88:
46:a4:1b:3c:6c:8a:b7:da:31:a9:37:06:ae:cd:35:9c:f9:c6:
55:0c:0c:ff:4a:45:83:34:ee:f2:0f:93:77:3e:06:17:17:83:
28:0b:39:e3:74:51:53:9c:f4:fd:db:7f:f1:de:e4:a6:08:1e:
0d:b9:5b:36:bf:3f:07:f7:e1:fe:40:6b:7a:47:9c:15:72:9c:
16:5e:63:d2:4d:58:f6:24:84:2d:bf:cd:a8:97:37:e8:15:f7:
f5:ae:48:2a:48:54:d9:15:45:7a:40:a2:27:d6:82:0f:02:52:
d2:66:41:e8:1d:e1:3d:46:49:10:6d:c2:57:f2:94:60:97:ea:
c9:b6:0d:d5:2f:28:06:d0:74:1f:c4:1d:6e:c4:cc:e7:4d:1b:
9f:b9:00:bf:c7:88:03:bb:21:2f:ac:df:b4:69:49:af:0d:d6:
57:77:47:e0:0b:54:e7:13:0d:96:84:45:2a:e2:11:cd:28:b2:
96:78:82:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:00 2024 by rpki-client on console-ams.rpki-client.org