Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C83171E9D1811EF9F74E0AE762E951A.roa
File: 3C83171E9D1811EF9F74E0AE762E951A.roa (raw, json)
Hash identifier: ZnuFEWlJZuhYm3nIpbl314spdT08My+LBVyRpgNo6tI=
Subject key identifier: 8D:49:94:9F:DC:78:4A:B7:F8:22:77:E0:8F:E9:13:AD:0E:53:D6:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010961
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C83171E9D1811EF9F74E0AE762E951A.roa
Signing time: Thu 07 Nov 2024 14:54:49 +0000
ROA not before: Thu 07 Nov 2024 14:54:46 +0000
ROA not after: Wed 11 Dec 2024 14:54:46 +0000
asID: 203020
IP address blocks: 154.207.60.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67937 (0x10961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 14:54:46 2024 GMT
Not After : Dec 11 14:54:46 2024 GMT
Subject: CN=672cd4b9-38c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:2b:ce:63:43:c6:2a:f5:59:e8:e2:e7:77:
b1:11:13:e8:de:b9:71:cd:e0:30:88:7c:0b:de:f3:
a7:a0:ff:9a:88:e7:24:36:90:db:86:d2:4b:51:17:
39:30:92:c7:98:8f:32:ae:2f:aa:63:ad:df:ad:60:
5d:60:07:63:9b:65:39:75:22:ee:5f:cb:26:22:f1:
a3:96:5d:1c:1a:06:69:a9:9d:ac:0b:ec:90:78:90:
d7:05:8a:6c:68:2f:5a:fb:b4:03:24:57:2a:2d:e1:
46:04:a7:8f:5e:c7:64:b9:a7:1c:96:89:1d:08:70:
ed:ed:a2:da:f0:89:43:76:4a:23:fd:5a:e6:ac:55:
6a:75:7f:8a:45:ce:fd:26:e3:bf:2a:3c:c8:8a:2e:
6d:98:05:c5:13:a7:23:27:91:4a:c2:62:0a:11:73:
03:28:69:59:c9:ba:07:0d:83:94:fd:d7:ea:14:2f:
ef:32:63:cf:d9:74:03:84:ae:fd:a8:33:39:d4:52:
18:63:78:b6:8e:0d:57:6e:86:97:11:28:ab:f4:0a:
cd:b0:20:34:17:c4:da:88:aa:56:6e:6b:8c:0e:ae:
4f:fa:ac:59:41:3a:0a:94:dd:17:4b:d2:99:f6:ff:
b6:c8:82:bf:a5:77:99:77:79:b5:c8:50:ed:ba:70:
2c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:49:94:9F:DC:78:4A:B7:F8:22:77:E0:8F:E9:13:AD:0E:53:D6:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C83171E9D1811EF9F74E0AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.60.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:33:5c:71:79:2f:ea:3b:95:00:ec:a8:f7:09:53:de:ce:f3:
07:26:38:06:db:90:67:ac:60:d8:7d:87:b0:9b:f1:65:bc:35:
ea:1b:99:74:5c:bb:fc:f4:f0:31:27:3d:4e:d5:4f:3a:ed:27:
e4:29:81:3f:9e:63:17:21:69:09:06:0f:1e:26:6d:be:f3:89:
5d:9e:e4:74:ac:00:ad:9f:80:7d:62:3c:84:d4:03:69:a0:2b:
b1:47:5a:a0:c0:e2:19:95:59:90:91:de:42:db:8d:83:d1:90:
6c:64:60:1b:3d:87:78:c9:6c:e4:8c:bd:46:b6:9e:71:cb:3c:
06:98:49:ee:02:e8:79:09:e8:a5:f1:5c:b2:a9:e7:e1:b5:a3:
c4:1c:92:62:b7:55:29:a7:42:ee:e9:a1:31:00:0a:0c:76:ea:
fd:97:73:47:0e:6e:90:5d:b5:de:4a:87:30:76:c5:16:25:96:
bf:f0:b0:f1:f1:97:da:da:99:f5:4b:f4:32:1b:d3:5e:d5:c5:
89:bf:4b:b6:5f:7c:20:df:88:81:85:08:b5:fa:6e:e6:42:44:
2e:ee:41:cb:dd:2e:76:eb:5e:ac:5b:75:92:46:45:58:6f:91:
c3:0d:f1:9e:3b:a0:f8:3b:e7:86:b9:37:a3:76:e8:00:ae:4a:
28:bb:0d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:04 2024 by rpki-client on console-fra.rpki-client.org