Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44B162B2A0DB11EFBAEC835B762E951A.roa
File: 44B162B2A0DB11EFBAEC835B762E951A.roa (raw, json)
Hash identifier: Ke7ssvjoUhfUuJB1HMItOMJttug/adagZyrODU1MihE=
Subject key identifier: 9C:2F:A4:A7:56:0B:FC:4C:B2:62:30:2D:64:66:E1:8F:0E:77:4E:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44B162B2A0DB11EFBAEC835B762E951A.roa
Signing time: Tue 12 Nov 2024 09:48:28 +0000
ROA not before: Tue 12 Nov 2024 09:48:25 +0000
ROA not after: Sat 07 Dec 2024 09:48:25 +0000
asID: 138915
IP address blocks: 154.223.18.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68656 (0x10c30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:48:25 2024 GMT
Not After : Dec 7 09:48:25 2024 GMT
Subject: CN=6733246c-3f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:60:83:63:1e:f6:84:d5:6d:70:2d:8e:c1:e1:
a5:42:b2:49:aa:2a:11:ce:d2:6d:52:07:f0:62:eb:
c6:45:6f:18:13:3f:51:a7:03:8a:aa:2a:f6:a2:bc:
02:cd:7d:44:a9:2e:fe:82:14:b5:ca:ac:28:b7:44:
45:4d:45:c9:0d:dd:ea:0b:be:1d:50:dd:02:6c:a3:
71:10:f6:c9:12:7c:5f:ca:bc:68:ef:08:ff:f2:1e:
ed:ac:c2:ac:86:b9:95:e2:9a:c0:d6:26:24:be:c5:
e0:bb:e2:0b:4d:dd:73:ba:a1:df:9c:2e:00:96:08:
22:36:b0:8e:c9:3b:74:45:2f:25:58:99:ef:23:37:
0a:aa:f6:17:34:00:ab:50:a5:4c:1b:3c:8a:4f:a8:
93:2e:63:10:10:9d:f4:93:d5:98:e2:58:7d:ae:f5:
84:1b:20:9b:62:be:bf:74:6c:e9:8b:54:df:09:15:
eb:b5:40:b3:27:22:8a:8e:37:e3:b4:2d:05:1c:3d:
a1:85:66:06:08:7c:e3:f5:1a:9a:8a:09:2a:06:d8:
3e:10:f6:32:7a:87:a3:2d:fd:be:68:ba:7c:92:16:
ed:17:9f:7f:31:1e:89:cb:14:9f:ed:08:bc:84:d7:
42:f4:cc:76:a0:03:3a:31:49:93:91:8d:fd:0c:33:
df:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2F:A4:A7:56:0B:FC:4C:B2:62:30:2D:64:66:E1:8F:0E:77:4E:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44B162B2A0DB11EFBAEC835B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.18.0/23
Signature Algorithm: sha256WithRSAEncryption
af:b7:6d:f5:84:52:da:56:45:f2:a0:88:87:1f:60:b1:09:c8:
59:d0:31:51:5c:55:cc:e7:02:c6:f1:a5:1c:c9:4d:28:cc:c0:
dd:a9:5a:ed:03:f3:2d:3e:39:0c:d1:37:70:8c:e6:56:a1:d5:
8c:7b:0b:f6:3b:9f:b4:e0:5d:9a:31:59:71:a2:24:f3:21:fb:
07:69:14:d8:49:17:fa:ed:b7:a0:f3:fb:5e:69:20:cf:f5:fd:
69:bf:16:d8:bf:38:31:d9:ca:0d:a7:7f:4f:cd:b3:b9:a9:7e:
c1:2f:99:b9:4e:5e:28:02:be:ef:9f:6f:89:fd:2c:66:93:74:
4e:24:46:36:a2:49:ab:19:ef:56:90:01:1a:5b:c0:50:63:c9:
23:27:14:91:f2:42:98:27:d7:fb:67:f1:88:83:f2:a4:9c:bc:
06:fe:c8:63:44:2a:96:62:31:a8:4a:ce:fa:31:8c:b3:86:33:
b0:bf:fc:94:59:e2:56:8e:37:49:64:83:e3:d8:ab:95:c7:be:
0e:4f:66:65:b4:d8:72:e6:9f:20:fd:4c:e1:c8:bc:79:27:4a:
6e:64:7b:81:86:17:80:d9:19:59:85:c4:91:68:d0:02:5b:90:
d8:ca:cf:37:b1:53:cc:16:5f:8c:2d:50:2a:ba:38:c2:63:0d:
49:a5:37:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:20 2024 by rpki-client on console-fra.rpki-client.org