Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D175BC05F1711EF86FC5B94762E951A.roa
File: 3D175BC05F1711EF86FC5B94762E951A.roa (raw, json)
Hash identifier: ZfaaDTzccNFYN2GX/ddrkoZQ1D1vJPOlcK6Bu1GwSD0=
Subject key identifier: 65:AC:43:05:8A:55:97:35:7A:FC:5D:0F:87:5A:52:A8:7B:35:C0:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E342
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D175BC05F1711EF86FC5B94762E951A.roa
Signing time: Tue 20 Aug 2024 17:11:28 +0000
ROA not before: Tue 20 Aug 2024 17:11:25 +0000
ROA not after: Tue 21 Jan 2025 17:11:25 +0000
asID: 63199
IP address blocks: 154.223.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58178 (0xe342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 20 17:11:25 2024 GMT
Not After : Jan 21 17:11:25 2025 GMT
Subject: CN=66c4ce40-136e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f9:07:a8:9f:99:69:88:2c:f9:07:6e:c1:d2:
f3:5a:f7:f5:0b:24:73:89:7c:53:b9:2e:a9:16:ee:
90:01:7b:b2:9d:7e:0b:1d:e3:11:f5:7d:79:c4:1b:
df:39:ef:4d:fb:51:30:e6:d3:f1:b3:b2:f4:d3:e9:
c5:66:c1:e3:96:97:47:2b:d8:6f:ed:13:66:1d:75:
7a:7b:65:8b:fd:ff:6a:3f:f2:1c:44:fd:40:8c:75:
e1:11:0a:3e:59:3e:ec:0f:22:fb:2b:24:cb:55:fb:
fd:eb:a1:cf:dd:e5:f9:d9:26:7d:a4:0a:43:32:14:
d7:4e:6f:e1:f4:37:13:7c:8e:90:96:a0:7b:ce:a4:
97:e0:58:73:4d:13:c3:79:33:5e:30:4d:2c:5c:95:
ef:da:8a:a6:8f:3c:f5:28:32:0f:78:aa:88:4f:d8:
ac:68:67:20:f5:d3:37:98:62:be:a9:ed:e9:32:e5:
a5:e1:be:04:e5:e0:dd:33:4c:1c:8c:d2:ab:55:6c:
42:35:b7:a6:82:e9:f7:a2:66:2a:67:f7:9f:ff:84:
32:1e:83:2b:b4:35:46:76:f4:26:0d:9b:84:28:03:
5b:cd:50:b1:3e:3c:57:98:3f:86:6e:d4:ae:d4:02:
a8:25:43:10:1a:07:f1:d5:76:cd:1d:3b:ca:11:38:
55:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:AC:43:05:8A:55:97:35:7A:FC:5D:0F:87:5A:52:A8:7B:35:C0:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D175BC05F1711EF86FC5B94762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.88.0/23
Signature Algorithm: sha256WithRSAEncryption
72:34:a4:04:ff:9c:40:65:e6:ba:10:1f:fd:98:1f:16:5c:7c:
68:03:4e:be:d1:53:72:d0:02:c0:a7:51:8d:a2:c5:ce:7a:06:
be:a4:d3:b3:20:65:85:89:6a:e1:33:0a:6b:1a:1f:e3:90:59:
ee:8e:2d:39:11:81:a2:c0:9e:ca:9b:b2:57:f5:ab:8e:f2:18:
da:fb:eb:75:57:6f:4d:69:8a:7b:38:30:c9:30:4e:2e:69:91:
6e:a0:06:a0:d7:35:52:b4:7d:40:bc:23:92:bc:28:7b:89:e1:
ff:20:5c:2d:03:87:bc:aa:e4:ef:db:37:2a:e9:48:33:d3:27:
f6:fc:16:a2:df:73:e0:3e:b9:ca:01:19:86:27:14:f9:bf:e6:
15:74:6e:29:66:27:52:d1:d8:3a:2d:b1:5b:45:4b:ec:ff:14:
c5:dc:bd:7b:e0:34:6e:6c:e3:38:0c:5b:98:bf:6a:2e:0b:01:
a5:66:06:bd:bd:9e:e2:84:e4:84:75:a3:62:8e:47:b0:f2:70:
38:21:1f:da:26:ce:0a:ad:24:79:f6:74:86:05:52:1f:e2:e8:
4a:bb:9c:96:10:2f:14:08:59:4c:39:95:1b:4c:6a:35:4c:6a:
45:bd:c1:22:29:0b:2f:46:28:1b:24:93:ad:92:5c:02:d4:62:
f0:05:bf:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:04 2024 by rpki-client on console-fra.rpki-client.org