Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38DFDE1E736811EF86000C49762E951A.roa
File: 38DFDE1E736811EF86000C49762E951A.roa (raw, json)
Hash identifier: aX4DdVXXcrn4PONIXD0Gc6l9auZqZG5lt85TmmjlFgY=
Subject key identifier: 8A:8C:81:50:AC:EA:DB:C7:2D:CB:94:C6:12:B7:89:AF:77:43:7A:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF2A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38DFDE1E736811EF86000C49762E951A.roa
Signing time: Sun 15 Sep 2024 13:41:34 +0000
ROA not before: Sun 15 Sep 2024 13:41:31 +0000
ROA not after: Sat 30 Nov 2024 13:41:31 +0000
asID: 136970
IP address blocks: 154.92.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61226 (0xef2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:41:31 2024 GMT
Not After : Nov 30 13:41:31 2024 GMT
Subject: CN=66e6e40e-5d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b0:02:6a:5d:35:5f:90:87:3c:fe:d7:de:2c:
1f:cc:d6:15:33:aa:34:d5:24:86:05:82:c9:61:b1:
3b:a1:21:6f:07:f5:f5:a6:3c:68:70:7b:92:42:b7:
3c:8e:71:61:22:82:4e:03:ac:b7:80:5b:6e:93:db:
00:a7:06:c8:7a:14:dc:59:ab:e3:37:9e:a9:91:cb:
21:a5:fa:b7:66:46:72:1a:89:42:67:1a:d4:7c:c6:
c0:e2:01:30:8e:85:95:20:74:ea:13:71:0c:b7:6b:
e8:08:0a:11:36:86:f7:9a:2d:1c:26:64:89:ff:b6:
e8:d7:40:e9:d4:b9:32:1c:10:22:65:25:ed:e1:45:
57:a5:e0:e9:01:c8:0f:cd:c0:d6:8e:54:b2:5e:bd:
d8:ef:07:58:d6:9e:41:70:99:b4:57:af:bb:a4:4a:
e6:54:f6:82:e0:44:8e:54:88:c4:c7:3a:5b:85:09:
7f:25:68:22:4a:56:b0:be:61:d7:36:fe:7e:55:f6:
79:1c:37:6d:7f:c8:5c:ae:b2:19:d8:2e:23:3e:9b:
21:b9:51:45:b9:a5:22:df:bf:aa:97:73:a7:2b:d1:
76:13:7a:be:a5:de:c1:48:89:40:6e:9f:25:a5:25:
c5:0e:58:e4:97:4d:0f:a9:8b:4a:aa:75:20:cd:05:
b5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8C:81:50:AC:EA:DB:C7:2D:CB:94:C6:12:B7:89:AF:77:43:7A:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38DFDE1E736811EF86000C49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:bd:49:43:8e:7f:77:99:59:90:b4:77:02:34:9f:b3:5e:6e:
48:1c:e7:21:af:6a:0b:c7:d9:5a:c3:8e:17:85:d5:36:f5:fe:
b2:dc:6b:1c:9a:f2:3d:84:38:9b:64:0d:54:dc:7a:6b:b5:c9:
f2:67:88:a2:6d:ef:e7:58:ca:9d:47:fd:36:0a:a4:21:bc:36:
22:d7:5a:77:c4:b0:f6:29:db:c8:42:df:08:94:aa:0d:59:6a:
3c:a7:9c:b4:41:2d:4a:b6:65:87:f6:4a:06:1d:c8:e0:00:00:
a2:a2:a4:c4:4d:63:d5:80:26:06:b8:19:0e:21:8a:2f:98:8b:
03:86:f1:d7:8c:c7:0a:bb:ea:6b:d7:3a:7e:f6:3c:51:6a:ca:
da:7b:40:45:f9:25:54:d5:1f:e4:e3:c6:75:63:f0:12:8d:3a:
4c:51:fa:eb:22:7e:61:a7:a7:1c:87:6a:66:64:24:bd:a0:18:
da:c3:c4:a1:55:c9:3b:73:3f:d2:41:80:3b:6a:5e:32:8a:c0:
e5:af:09:c0:9a:94:1c:b6:39:2a:4a:3c:0e:b7:c9:1e:e8:53:
05:73:97:32:cf:06:8c:37:f4:9f:b2:35:dd:8a:4e:2e:ae:57:
80:9b:1c:5f:fc:a2:46:47:63:f9:de:2c:bf:56:fe:f2:3c:0a:
6b:3c:f0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org