Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/386C9CC4986111EFBDFCE86E762E951A.roa
File: 386C9CC4986111EFBDFCE86E762E951A.roa (raw, json)
Hash identifier: 7kuknu7JcTbzBo9f+tT9kXfqk0BhgNClj9/Vb2DihRo=
Subject key identifier: 1C:C8:B3:91:1E:17:72:E2:94:D6:6F:F6:62:F0:28:B4:89:7F:1F:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/386C9CC4986111EFBDFCE86E762E951A.roa
Signing time: Fri 01 Nov 2024 14:54:40 +0000
ROA not before: Fri 01 Nov 2024 14:54:36 +0000
ROA not after: Tue 03 Dec 2024 14:54:36 +0000
asID: 203020
IP address blocks: 154.207.116.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66803 (0x104f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:54:36 2024 GMT
Not After : Dec 3 14:54:36 2024 GMT
Subject: CN=6724ebb0-030c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e7:e8:30:2e:79:40:04:fc:aa:07:d2:26:99:
99:1c:f5:b0:eb:6e:af:6f:30:c7:5d:e0:22:d6:92:
07:89:4f:2f:80:c1:43:2c:08:14:05:aa:0d:1c:c3:
fb:ce:a2:8f:fe:38:f3:55:b3:24:5b:3c:8c:9e:c6:
74:76:0d:29:a7:f6:45:90:68:83:bb:01:ee:8e:83:
f9:f4:b0:58:13:b8:63:18:64:59:93:01:22:a7:6f:
d9:30:c6:9d:a0:9d:44:f5:d0:40:17:34:18:11:5c:
80:85:2d:a5:50:45:ea:f5:ee:9f:b4:74:ba:49:f3:
2e:58:19:8d:94:4b:25:d0:e2:dc:a9:d0:2b:81:77:
71:0c:f8:6d:ea:fb:3b:2a:ee:ef:29:c5:26:40:da:
70:81:5f:99:46:37:d1:ce:4a:ca:59:cc:23:cc:91:
df:a7:5a:3e:dd:2b:19:b0:af:07:fb:06:68:34:3e:
ba:53:09:f6:16:d7:24:7e:08:7a:e2:55:73:8d:1c:
de:65:55:35:fe:9e:5b:aa:bf:1a:92:58:fd:52:f0:
d4:49:c0:99:b2:9b:1f:73:0a:43:57:14:02:db:43:
4b:86:99:3b:8c:db:f7:40:c3:a1:77:e7:1a:ac:b3:
c3:9d:0f:c3:69:6f:cb:5c:d6:0c:43:6c:10:18:f2:
d5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C8:B3:91:1E:17:72:E2:94:D6:6F:F6:62:F0:28:B4:89:7F:1F:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/386C9CC4986111EFBDFCE86E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.116.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:e3:51:3a:4b:df:cd:26:ab:c2:c1:f6:1c:4c:04:c1:05:5a:
09:b4:01:0c:a4:26:35:24:04:ef:b4:73:b0:b0:2e:61:3d:e1:
81:df:c8:e9:c9:e8:1a:ec:02:65:e0:a7:87:9d:1c:18:da:21:
a3:79:32:38:58:7b:b1:03:d3:a2:94:31:aa:02:fd:ef:64:f5:
37:24:aa:11:ac:92:10:f9:0a:74:fc:79:6e:df:f5:cb:14:9a:
2e:72:e9:77:d5:ed:36:2a:bb:c3:c5:d0:ae:05:64:a0:0a:6f:
33:c6:76:b6:c1:4b:20:21:93:ac:9e:fd:a3:f5:e9:00:0c:c0:
51:77:df:ce:b0:13:a7:84:a1:23:69:58:94:09:07:30:92:28:
cf:cd:e5:27:d1:cc:f6:f4:8e:7b:3c:67:d0:a0:d5:29:b8:84:
a1:59:ba:3f:89:be:91:9c:30:db:28:87:6f:52:26:07:8a:6f:
39:2f:46:2a:67:39:ce:12:5b:53:36:ce:39:7a:ac:e2:08:c3:
e9:ce:04:b3:73:f5:58:17:c3:ef:f0:27:16:4f:56:7c:d5:75:
b2:0f:6c:9c:fc:db:1e:8a:c7:0a:c4:df:a6:8d:9f:94:43:f0:
00:cb:f4:aa:86:10:83:db:84:a3:76:9f:fa:53:65:17:ba:3a:
e8:aa:4d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org