Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A53AC98A27111EF9726307B762E951A.roa
File: 3A53AC98A27111EF9726307B762E951A.roa (raw, json)
Hash identifier: yeJkKZW7j8/9P7a6HTweE6fFDQyUyhIPEPX0ybEGlho=
Subject key identifier: 5A:C0:24:63:79:B2:D4:97:89:24:67:A1:AC:AC:2D:52:C6:17:1D:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D1E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A53AC98A27111EF9726307B762E951A.roa
Signing time: Thu 14 Nov 2024 10:14:26 +0000
ROA not before: Thu 14 Nov 2024 10:14:23 +0000
ROA not after: Sun 24 Nov 2024 10:14:23 +0000
asID: 133180
IP address blocks: 154.82.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 10:14:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68894 (0x10d1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:14:23 2024 GMT
Not After : Nov 24 10:14:23 2024 GMT
Subject: CN=6735cd82-761b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2e:63:9a:ce:1d:74:fb:1e:21:87:ae:08:c9:
59:5a:96:56:6c:7f:07:1d:af:b1:72:f6:69:ef:ad:
13:db:91:aa:24:0e:f5:13:1a:e5:66:d9:6d:1f:6f:
9a:ea:c6:ac:d7:b2:04:e0:ff:eb:10:72:8d:a7:f9:
7d:09:a0:7e:d9:e3:f0:d4:38:8b:43:19:f7:e5:d2:
51:53:6d:0c:fe:68:cd:6b:7b:62:c0:55:c1:bf:09:
81:20:8d:3c:ec:d5:2b:45:08:97:87:34:11:70:f9:
e8:7c:2e:6d:84:15:1a:45:0c:80:3a:79:34:e6:19:
5e:f6:8e:3a:2d:98:bb:14:4e:0d:8d:2a:f1:ed:29:
f5:b2:17:58:a6:39:58:4c:84:61:79:22:bf:0a:3a:
e8:7a:73:96:2b:9c:ee:0e:d6:1f:1f:6a:ce:b3:de:
6f:e3:1d:21:22:46:a9:f6:48:31:de:2a:95:16:dd:
02:95:d4:95:36:64:f2:38:8e:d1:6e:bb:6e:75:4c:
78:ef:f1:ca:a5:91:b9:a7:c7:b6:20:1a:30:70:d6:
2e:c9:1c:7b:6f:72:9e:c0:97:1e:63:5d:e1:a7:19:
70:8e:d8:e2:c8:97:56:04:44:63:eb:30:86:f2:09:
af:47:88:08:a5:8a:54:59:2d:5e:4d:fc:84:ba:42:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C0:24:63:79:B2:D4:97:89:24:67:A1:AC:AC:2D:52:C6:17:1D:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A53AC98A27111EF9726307B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3b:5c:a8:d7:67:6c:9b:42:8b:09:97:0b:fb:5f:57:e2:a1:ad:
f5:62:c6:af:01:b9:dc:4d:8c:7b:aa:ba:7c:c2:f8:e8:ff:c5:
42:19:ba:ba:da:98:a5:1a:85:c1:f4:62:31:1b:04:a2:03:5f:
11:30:d4:9b:22:f6:4c:ad:b8:5c:b8:34:1a:13:75:ae:c2:60:
b7:39:cc:dd:5a:86:9f:62:d5:a6:c3:67:05:03:0a:9f:1c:bf:
c6:5a:db:45:16:85:b5:d7:df:a7:e3:5a:42:3f:bd:35:b3:77:
7c:5a:af:db:a9:b3:74:17:a6:0d:37:8b:b9:44:d5:f5:ea:81:
95:99:dc:82:a0:75:35:97:66:ab:5b:72:68:2d:c9:17:93:a4:
3c:9f:59:7e:bc:5a:cc:93:70:ff:e2:de:8a:fa:12:a1:9f:8f:
3c:b8:3a:b9:f1:68:45:89:53:61:e1:44:d1:d4:ff:4b:af:48:
e3:e5:ba:f9:18:5d:3a:38:c0:76:85:66:90:99:ae:3c:28:3d:
c2:46:2e:bc:3a:22:76:74:c0:38:ab:d4:e3:97:da:70:e5:67:
b2:f2:41:5c:80:8f:ec:f3:15:33:90:73:b5:45:7b:ce:1b:31:
59:ed:0b:a8:3c:77:af:b7:3b:c8:5c:f3:5c:2e:40:bf:54:af:
af:8e:e7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:18 2024 by rpki-client on console-fra.rpki-client.org