Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36C4CD06A45011EFB6245745762E951A.roa
File: 36C4CD06A45011EFB6245745762E951A.roa (raw, json)
Hash identifier: ao9T4AuU00SVSkeKAmk+gGeBm7eVkodl0KdXGhmWjKc=
Subject key identifier: DC:A1:4F:48:0C:37:9A:BF:11:C5:53:0D:E8:F7:5B:2E:BE:01:EA:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36C4CD06A45011EFB6245745762E951A.roa
Signing time: Sat 16 Nov 2024 19:23:10 +0000
ROA not before: Sat 16 Nov 2024 19:23:05 +0000
ROA not after: Mon 25 Nov 2024 19:23:05 +0000
asID: 3561
IP address blocks: 154.197.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69145 (0x10e19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:23:05 2024 GMT
Not After : Nov 25 19:23:05 2024 GMT
Subject: CN=6738f11d-9a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9d:6c:52:61:21:3b:de:c6:f9:80:40:a6:d2:
9a:35:eb:eb:ab:d3:4d:c5:fc:8f:18:71:81:04:97:
fe:f2:18:28:ad:54:bc:29:c3:0a:65:b5:05:e2:5a:
cb:51:a8:52:3a:9a:70:c9:3e:4a:6c:5c:6e:9d:13:
d7:60:44:6a:d4:6b:6b:0d:0b:4c:ef:5a:bf:87:cf:
9a:e9:53:7f:5d:01:65:1c:84:65:5f:42:4f:21:0c:
c5:c6:97:d6:16:76:b8:cc:4f:d9:99:a0:ee:14:23:
96:1f:d6:95:14:39:4c:b3:cf:8c:d4:61:23:82:84:
e6:5f:b2:22:1f:7d:f0:b0:6a:2d:cf:d6:d8:0f:28:
53:e3:c3:14:0e:46:63:8a:39:d4:e4:31:cd:61:c0:
5d:59:ce:b6:47:bf:0e:4c:0d:90:1d:00:c7:67:61:
37:ae:f6:17:60:9a:e4:01:40:01:87:0b:b6:5c:70:
c2:3f:87:4f:1c:5a:60:2d:5a:52:74:2c:c1:78:a8:
41:02:d1:0e:32:b5:fd:fa:c0:31:d7:dc:5b:7c:da:
ff:9e:5e:f4:ea:ab:40:43:dc:92:09:e0:ce:c3:7b:
7c:e7:d8:2d:38:9f:26:0c:52:93:43:6b:4e:ab:a1:
7b:ff:f3:5b:48:8d:3b:3b:78:97:ee:16:99:40:f9:
9c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A1:4F:48:0C:37:9A:BF:11:C5:53:0D:E8:F7:5B:2E:BE:01:EA:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36C4CD06A45011EFB6245745762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.8.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:47:09:4c:eb:2c:fd:76:7f:60:1e:49:b0:89:ae:41:d6:41:
75:25:b2:92:da:5b:88:f6:9e:77:0c:5a:88:7e:11:99:10:2c:
01:06:64:fa:c7:ac:66:d3:c5:ae:c9:43:c1:5c:03:e5:50:69:
fc:fd:5b:53:1d:63:b8:f5:e2:b7:69:6c:12:cf:86:2a:1c:51:
b0:7e:54:47:2d:5c:5f:c4:d3:bb:3a:33:87:d5:a1:48:ac:02:
4b:7e:11:77:9c:c2:01:a8:22:67:34:98:91:74:c3:f3:0a:89:
dc:52:8b:83:67:a0:e3:47:06:9e:f7:9f:0a:d6:9e:2a:bd:cf:
81:e7:fe:46:27:e8:5a:10:c5:ca:19:2d:f9:37:be:12:6e:c1:
15:67:5a:8d:65:0e:2d:fc:f4:d9:91:55:a3:8f:35:c0:a6:0e:
8d:2b:a1:1b:5a:ef:9f:0b:df:a6:d7:55:97:29:62:7e:61:0e:
bb:96:46:b2:74:8b:4a:04:f2:d4:78:94:fe:25:c7:61:87:3c:
a4:ac:de:dd:fd:90:7c:62:dc:d6:6a:d7:3f:87:43:bd:b8:29:
6a:2b:dd:b1:5f:3c:0f:bf:d2:ab:c4:bf:da:7d:13:eb:1b:cb:
b2:11:61:20:dd:99:a2:ac:36:46:14:17:7b:f3:ae:9a:5a:66:
f3:2b:d3:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org