Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37A8BF407E3811EFA9C41D8B762E951A.roa
File: 37A8BF407E3811EFA9C41D8B762E951A.roa (raw, json)
Hash identifier: kNs2TlMSRU+S20TOKTmXg0gKBxhVjhw8B2crz4n6uoM=
Subject key identifier: 4D:6C:6E:F7:52:34:78:D2:7D:75:47:74:A7:E5:5C:0A:6B:7B:C5:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F474
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37A8BF407E3811EFA9C41D8B762E951A.roa
Signing time: Sun 29 Sep 2024 07:55:39 +0000
ROA not before: Sun 29 Sep 2024 07:55:35 +0000
ROA not after: Mon 30 Dec 2024 07:55:35 +0000
asID: 17561
IP address blocks: 154.197.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62580 (0xf474)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 07:55:35 2024 GMT
Not After : Dec 30 07:55:35 2024 GMT
Subject: CN=66f907fb-e3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:54:5b:70:af:e2:2a:4a:b8:43:c3:d5:ee:f5:
32:81:58:08:5e:8e:ff:ab:94:28:9d:a7:22:90:29:
f6:e4:de:0e:0a:db:0c:ab:c5:4c:c1:d4:cb:e5:45:
9c:96:74:a1:60:6d:85:ff:5a:37:ef:4c:2f:df:4e:
13:01:b6:c7:32:e9:41:55:e5:2f:5d:fc:2a:9a:66:
ef:87:51:73:28:6a:f3:52:d2:f5:f0:ac:7f:bf:2f:
b1:d7:20:2c:0b:2a:a3:cd:33:3a:87:20:7a:04:36:
fa:cb:2d:5b:39:16:5f:14:42:3b:b7:78:98:d2:0b:
e7:d6:4a:72:54:e2:44:05:58:82:6e:4b:db:fe:2b:
40:c3:a8:cd:7a:c1:ad:cc:31:17:b2:32:d5:86:4b:
56:d5:d3:13:ee:f2:35:62:ca:a4:9e:8c:4d:13:f9:
d9:72:3f:8b:70:29:f1:71:4c:85:c2:55:99:07:4a:
c0:cb:e0:25:61:3b:9b:ed:05:05:34:11:3a:fe:2a:
be:fd:ba:4d:f9:e4:4c:87:b9:26:c0:71:05:a3:3e:
00:5d:16:b1:8f:d3:8f:a4:78:f3:ac:42:53:3e:48:
20:ed:bd:a1:e2:18:62:a7:dd:45:5f:32:a0:e3:ba:
47:8d:20:29:6a:a3:e2:e0:98:d0:8f:31:42:6f:44:
79:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6C:6E:F7:52:34:78:D2:7D:75:47:74:A7:E5:5C:0A:6B:7B:C5:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37A8BF407E3811EFA9C41D8B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.80.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:7d:a6:5e:17:77:91:e5:ed:52:d7:a4:8c:c3:8f:95:ad:31:
9f:ea:85:a7:ae:b3:e6:85:bd:9a:5f:ac:9d:0a:9b:01:a8:86:
ed:c9:3b:df:c2:16:48:99:0e:f1:9a:96:0c:53:f8:48:64:f3:
be:6d:60:f2:fa:aa:d0:2d:08:a0:1c:6e:a2:98:1f:f1:fe:3d:
55:f1:37:36:d7:66:fc:cc:4a:49:e9:8f:ac:44:1b:ec:00:b6:
93:ed:c7:2c:85:e1:8c:98:da:b0:d9:3c:e6:f4:f0:b5:de:f3:
57:9b:ef:f3:8e:a1:8c:d5:ef:bf:ba:1f:15:5e:f1:2c:b1:57:
70:29:5f:6e:ae:ad:7e:30:58:32:4f:5c:be:73:ed:21:c3:d3:
d1:af:49:10:4a:07:ea:0a:4d:c3:80:91:0d:ba:15:b1:5c:33:
41:51:18:07:3a:77:69:ad:63:ff:cd:96:ed:d1:3a:fb:b4:1b:
b6:11:b9:c7:7b:09:55:61:43:72:08:8f:75:d6:9e:2e:e3:37:
26:42:46:8a:ab:47:d9:91:c8:4f:be:0e:c2:32:5e:4c:e7:ba:
e0:1c:f6:03:47:7a:31:77:36:59:57:f6:62:2e:0a:b9:8d:87:
ea:7d:54:d0:2f:6b:16:59:9c:98:6b:f0:3b:f7:e7:e1:e8:e4:
47:a2:c6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org