Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3869C86EA8CE11EFA9370788762E951A.roa
File: 3869C86EA8CE11EFA9370788762E951A.roa (raw, json)
Hash identifier: tAmD/ecQ7yJTx73bPsdl2lvPIwJSFIdeJUpyaF9wT9g=
Subject key identifier: ED:A0:36:2E:3D:E8:14:93:94:16:12:63:C7:7D:21:36:C1:10:C4:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01101F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3869C86EA8CE11EFA9370788762E951A.roa
Signing time: Fri 22 Nov 2024 12:35:13 +0000
ROA not before: Fri 22 Nov 2024 12:35:10 +0000
ROA not after: Sat 30 Nov 2024 12:35:10 +0000
asID: 137443
IP address blocks: 154.223.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69663 (0x1101f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 12:35:10 2024 GMT
Not After : Nov 30 12:35:10 2024 GMT
Subject: CN=67407a81-4f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f5:f6:cb:c1:85:49:fd:fb:6f:64:23:1c:b2:
b3:18:9e:14:5d:41:9f:49:d9:24:d7:b9:5b:0f:a1:
d5:80:5e:42:69:d6:3e:fe:02:c6:7b:87:59:08:fe:
f3:be:53:84:dd:ef:56:ad:87:df:78:0d:89:2d:a7:
d0:95:c8:d2:2d:2e:66:13:fc:fa:00:ef:96:8b:40:
51:1e:44:1c:93:fb:a7:94:b9:90:1c:fb:da:33:30:
66:f6:27:60:e0:c0:fd:2f:53:cb:6f:42:2d:bd:6d:
1d:50:f5:56:94:d2:ad:94:4e:d7:1b:7f:49:4b:09:
62:70:8c:58:83:7e:1a:13:9c:0d:1e:eb:97:0a:95:
66:d6:2f:f3:e6:e4:06:84:f7:9f:c8:cf:f2:c4:40:
49:a9:aa:5a:20:70:17:21:83:dc:02:ba:88:11:31:
c0:37:f4:95:bc:93:a3:35:4e:2e:da:b2:79:4a:ea:
94:ab:19:05:cb:6f:9a:c3:a6:88:dd:ec:51:25:92:
58:66:b2:11:e9:a3:0e:78:0f:df:7b:1e:c8:1f:2b:
13:06:a2:ab:26:89:a6:2c:5d:65:cb:41:62:47:fc:
30:17:a8:ad:d0:ce:ad:30:94:7c:68:2a:e9:1c:3b:
e6:cd:d2:3b:1c:81:98:70:c9:9a:52:c5:72:26:52:
15:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A0:36:2E:3D:E8:14:93:94:16:12:63:C7:7D:21:36:C1:10:C4:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3869C86EA8CE11EFA9370788762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.177.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b1:98:aa:83:2d:03:79:f3:40:b0:4a:9e:3f:d2:90:1f:db:
9f:43:b9:66:d4:41:3b:a0:e4:28:0a:09:b3:b5:36:0e:4e:2d:
23:57:98:74:fc:73:76:c7:d8:57:58:68:94:b2:49:93:6f:32:
f5:0f:52:76:7e:da:fe:93:4b:50:38:8d:96:7f:d8:23:c3:d8:
4a:98:6c:7e:a6:ae:2b:80:c8:b7:f7:dc:44:85:57:ff:80:d3:
e1:c9:93:2a:a3:2c:f7:2b:c0:16:b5:88:59:70:e8:7d:1b:7b:
9a:35:73:46:b9:eb:97:1f:9d:06:4b:32:ec:b4:1b:c9:14:99:
3d:8a:e2:8d:96:03:96:d6:d0:72:30:f5:74:46:1d:0d:72:a4:
7d:db:d9:2e:53:d1:5c:c3:8c:d1:0d:7f:23:ef:d8:aa:dd:35:
6b:35:a3:11:be:00:c0:7a:67:e2:f0:55:c7:8f:58:51:b1:8d:
d0:c8:8a:98:e7:85:93:b2:7d:53:33:d2:8c:83:00:83:f5:e5:
16:41:bd:38:22:e8:ca:09:7d:29:8c:ba:b7:5f:6d:4f:14:b0:
f1:c0:9e:17:99:79:34:cc:68:c9:bf:b7:d3:55:6f:be:46:99:
10:85:31:3a:e7:58:17:b9:9b:46:5b:bb:2c:4e:82:22:26:6c:
90:3b:ec:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:04 2024 by rpki-client on console-ams.rpki-client.org