Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39BBBE766AA211EF8DEB9474762E951A.roa
File: 39BBBE766AA211EF8DEB9474762E951A.roa (raw, json)
Hash identifier: sMNZi1oClohfprDWcSMAVzEbyu7GMAgeAm9g59yfkoo=
Subject key identifier: A9:9B:AC:C3:48:21:4A:61:E3:5E:9D:BF:C1:F0:5E:8A:72:31:95:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EA37
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39BBBE766AA211EF8DEB9474762E951A.roa
Signing time: Wed 04 Sep 2024 09:44:06 +0000
ROA not before: Wed 04 Sep 2024 09:44:02 +0000
ROA not after: Thu 24 Apr 2025 09:44:02 +0000
asID: 63888
IP address blocks: 154.207.142.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59959 (0xea37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 09:44:02 2024 GMT
Not After : Apr 24 09:44:02 2025 GMT
Subject: CN=66d82be6-a746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8d:c7:c0:48:39:82:43:94:cf:b2:cd:a6:9a:
e0:60:b8:10:6b:64:dd:f7:0c:04:10:10:5d:90:18:
23:98:4c:6a:f8:1f:97:ed:ea:9c:67:ac:b9:ff:34:
32:93:f9:39:e3:ce:b1:c7:6e:12:35:05:3a:6a:f1:
83:cd:b3:4d:fe:21:ae:3b:64:54:6b:be:d2:b8:3b:
6c:54:8c:bd:8a:ef:30:06:f1:83:e4:ff:73:56:13:
34:36:b1:2b:46:d0:51:d7:a1:34:d3:7a:19:ec:ae:
ed:9b:6d:ef:a4:29:c6:00:7c:d8:c8:5d:0b:8f:ea:
19:4b:a0:ab:3f:46:56:37:43:bb:15:da:bb:93:ef:
0c:71:5e:05:ee:c2:04:71:fa:17:05:da:4c:23:7a:
9b:8a:86:8f:64:65:d6:1f:c0:c4:b5:b8:c9:1d:df:
de:74:1d:63:9c:b2:9e:8e:a7:1e:f8:28:26:5e:7b:
9b:3d:b3:26:03:d4:14:c8:5e:d0:d9:6b:56:6f:ee:
f1:cf:d2:0e:f4:be:6a:bc:09:a1:4e:ee:ae:4a:56:
83:5b:06:72:de:c8:31:e7:64:43:da:b2:13:4f:2e:
77:f5:a8:f7:79:51:07:b3:f1:d8:59:43:53:20:d1:
c0:06:6e:93:26:1e:d1:99:c9:08:01:d9:8d:41:9a:
17:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:9B:AC:C3:48:21:4A:61:E3:5E:9D:BF:C1:F0:5E:8A:72:31:95:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39BBBE766AA211EF8DEB9474762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.142.0/23
Signature Algorithm: sha256WithRSAEncryption
29:b2:4c:50:61:09:b1:dc:7a:03:5f:74:ac:00:43:ae:2e:0b:
f3:4e:a0:d6:f6:ba:12:f9:9d:c9:4e:75:f8:ee:ca:e0:2b:a4:
76:b4:7c:9c:be:fa:31:60:7f:21:e6:7d:36:ce:dc:75:e2:f9:
31:0a:4b:c3:9a:c0:55:69:56:7c:7d:9a:11:46:ea:e6:f3:1b:
2a:c6:c6:07:cf:64:30:1d:8e:90:ee:4a:88:5b:c8:ad:d4:63:
ac:22:2f:09:c2:f7:1f:96:a4:1b:7d:d0:f0:1f:a1:f6:48:0d:
76:6b:ff:2f:9a:57:38:55:c4:a8:b0:30:8e:f5:b7:9c:6b:f8:
f5:33:a1:59:fb:02:f1:10:80:1a:57:2d:07:4d:79:64:9d:9d:
4b:28:c4:a1:d7:97:06:f8:d4:46:27:0d:cf:23:90:64:dd:46:
f0:de:b7:8c:2a:a8:5f:cb:0d:56:9a:04:14:c4:4a:ec:34:7b:
5a:02:1d:45:08:87:63:c3:de:0b:c3:e3:da:c7:8a:a1:17:8c:
ac:98:04:a6:19:a5:f7:07:99:94:7d:c5:fd:8f:7b:68:81:19:
ae:2b:c5:56:5e:f1:06:d3:4b:50:1f:e7:b6:3b:1e:78:92:91:
11:87:f1:13:9c:29:70:d2:e2:bc:18:6b:e8:15:7b:95:e9:9e:
35:5c:2f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:01 2024 by rpki-client on console-ams.rpki-client.org