Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44B830E295DC11EFA82C008F762E951A.roa
File: 44B830E295DC11EFA82C008F762E951A.roa (raw, json)
Hash identifier: /l6BTnXuDjPmdx3D3T426r90jC5ojoCYlhkvqrBwEnE=
Subject key identifier: 34:28:77:DA:16:36:31:ED:2D:4C:76:C6:7C:BE:ED:D4:7F:DF:C8:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0103A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44B830E295DC11EFA82C008F762E951A.roa
Signing time: Tue 29 Oct 2024 09:57:55 +0000
ROA not before: Tue 29 Oct 2024 09:57:51 +0000
ROA not after: Mon 09 Dec 2024 09:57:51 +0000
asID: 138915
IP address blocks: 154.95.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66468 (0x103a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 09:57:51 2024 GMT
Not After : Dec 9 09:57:51 2024 GMT
Subject: CN=6720b1a3-f0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c9:11:d8:8a:f0:5a:50:2e:1b:8c:57:0c:f5:
c2:3e:9b:34:62:40:af:41:54:28:cb:64:6d:8c:66:
9c:2b:12:a5:f7:cd:a1:2c:aa:2e:23:8b:37:28:ae:
51:8a:74:80:87:74:64:3a:94:aa:fe:c6:20:00:be:
43:e3:44:37:c8:f9:35:cb:7e:30:b2:29:3f:e4:65:
0f:22:cb:75:1c:9e:a8:7a:5f:0e:47:d8:44:77:cc:
bf:f9:07:16:1f:5d:a7:01:e7:7c:87:c7:aa:08:0c:
f5:71:02:b3:f1:4f:11:59:3b:e8:a1:6b:0a:af:88:
f0:b7:c8:34:f3:87:c4:39:19:09:b8:39:44:b1:78:
16:ad:0f:b8:af:d3:03:db:24:23:a0:71:ff:9f:c3:
ad:c3:45:b4:52:52:52:7f:18:5d:ee:eb:57:df:f7:
42:5d:9b:b0:0c:4e:03:b7:59:15:de:51:00:89:dc:
ab:1f:4e:af:ed:27:9b:88:c1:b6:91:ce:94:0c:84:
da:a8:5a:98:60:8d:e2:56:b8:5f:89:53:88:38:96:
48:c4:66:cd:38:c9:c5:e2:ae:b5:74:91:28:11:f3:
96:a4:ee:5e:47:10:34:de:b8:a0:8c:96:02:32:75:
79:16:48:74:2e:ae:8f:3a:31:a8:0b:77:06:42:e7:
a0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:28:77:DA:16:36:31:ED:2D:4C:76:C6:7C:BE:ED:D4:7F:DF:C8:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44B830E295DC11EFA82C008F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7f:d6:73:b0:c5:dc:ad:96:aa:e2:7d:a7:52:35:67:c1:28:32:
72:f4:b8:6c:bc:fc:cf:1c:8e:29:20:e4:53:79:bd:4a:75:91:
01:e5:3f:ad:78:7e:6e:b1:9e:8f:c7:b8:43:b4:0c:6a:44:ee:
58:90:9f:d8:95:91:26:bb:40:55:c4:15:35:70:d7:d5:18:ef:
01:b7:21:cc:c7:33:a0:c4:49:13:42:f1:b6:ad:d5:58:9b:01:
1d:01:04:59:03:21:23:22:e6:b2:c0:42:aa:ed:67:d4:f8:69:
d9:1f:2b:d9:80:53:ec:9b:24:63:24:25:fc:72:90:6c:8e:01:
53:ec:42:13:be:04:0a:ca:33:af:23:e0:e0:a7:0f:da:0c:36:
49:1f:03:49:ee:79:ba:f6:41:ef:d7:53:49:62:9d:e7:f8:1f:
73:aa:96:11:3a:0e:de:96:dd:8a:b4:79:cf:e6:64:a4:54:ce:
98:f4:80:ae:96:e8:ad:75:ae:ae:f3:ad:99:30:31:98:34:f6:
c3:ad:40:f1:40:0a:60:3b:1f:62:e3:27:5a:68:e2:f7:84:fa:
a5:db:56:d5:25:d1:cd:ff:37:75:3b:c3:c9:c5:ae:4f:e4:a1:
10:4f:f3:50:2e:28:d4:a8:be:29:48:f7:d3:ff:a7:98:55:41:
1b:bf:3d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:28 2024 by rpki-client on console-fra.rpki-client.org