Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BD12796A8DB11EFA34BF658762E951A.roa
File: 4BD12796A8DB11EFA34BF658762E951A.roa (raw, json)
Hash identifier: 7G0AArT3cKyL2HHZghRtWBZIyAI7JUWMKxRDOoCAGw4=
Subject key identifier: BC:43:46:B9:F4:2E:45:1F:3B:C8:6F:50:E1:18:A7:4F:42:5E:52:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01104D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BD12796A8DB11EFA34BF658762E951A.roa
Signing time: Fri 22 Nov 2024 14:08:49 +0000
ROA not before: Fri 22 Nov 2024 14:08:46 +0000
ROA not after: Mon 09 Dec 2024 14:08:46 +0000
asID: 5065
IP address blocks: 154.206.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69709 (0x1104d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:08:46 2024 GMT
Not After : Dec 9 14:08:46 2024 GMT
Subject: CN=67409071-e86a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:41:6b:36:d9:a2:fa:cb:66:da:4e:ba:af:8e:
76:a3:a8:96:19:a0:86:de:0c:15:73:6d:bd:6b:7e:
21:03:25:ad:6e:62:48:a1:f9:5e:23:16:dd:73:93:
5b:11:a4:9a:ff:f1:a5:1c:88:f8:39:37:cf:27:4c:
19:0a:03:af:a3:ca:a3:b0:3a:7c:1c:eb:b4:77:14:
e5:be:5d:c9:ef:80:60:87:c6:13:9b:67:d4:7a:f1:
a4:87:38:2f:5c:48:6c:16:86:d3:94:12:c4:52:f0:
eb:94:3c:14:a8:22:55:a2:e5:59:d6:14:52:ef:9a:
3f:23:bb:20:38:2c:49:1e:63:8c:b7:05:61:ce:d3:
8e:a1:64:0a:19:b8:f8:3d:ce:db:c2:a0:ae:cd:0c:
70:c3:dc:f8:ae:93:ae:d5:96:05:a7:76:9e:2a:50:
71:e0:30:b1:42:07:65:4e:05:7d:7e:33:5f:3b:e7:
a0:b9:2f:f8:07:f1:8a:4b:04:36:67:a3:28:a2:2f:
31:b9:a8:a4:c2:eb:84:d6:0b:61:9d:95:38:3d:33:
fa:f6:f9:ce:39:55:25:5b:5f:ea:e9:5d:34:b5:80:
a4:cd:f9:7c:d6:39:83:ad:e3:8e:f3:a4:8e:99:71:
ee:9f:62:3e:76:21:d7:e9:b7:f5:48:e4:18:4c:0e:
d0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:43:46:B9:F4:2E:45:1F:3B:C8:6F:50:E1:18:A7:4F:42:5E:52:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BD12796A8DB11EFA34BF658762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.32.0/24
Signature Algorithm: sha256WithRSAEncryption
61:99:52:26:b5:93:f7:9d:40:55:9a:95:37:cb:95:19:90:a3:
92:df:dc:85:e5:2a:c2:a9:57:a8:98:ba:bc:e7:c6:02:a0:08:
02:3f:78:bf:8a:ce:41:2c:99:8a:79:72:94:8e:5e:a5:b0:0d:
6f:5b:20:bc:76:b1:ff:fc:bf:36:2d:d3:a0:db:a7:9c:b9:92:
cf:08:ff:5b:c0:c7:36:b4:bc:ef:b5:a4:05:cf:34:14:a1:ed:
b7:9b:9f:90:e0:f4:3b:dc:a0:00:c6:f4:23:fb:0f:1c:6a:b0:
bd:1a:68:5a:c4:c7:6b:88:50:46:74:db:a7:81:29:53:22:f0:
47:30:bc:57:d0:bb:3c:c3:83:5c:d8:c1:cd:4f:3f:41:17:e5:
75:15:b2:28:7e:41:d8:f2:ad:08:96:9e:f6:d2:26:ee:ce:42:
35:74:e2:c0:9f:4f:05:04:f3:ec:7b:b4:e2:55:41:94:0e:3d:
7b:ec:3f:89:5e:f8:d3:b9:08:04:c4:93:a0:d5:7c:4a:93:62:
6f:14:4f:10:b9:92:28:b4:2d:16:88:1b:fb:ef:ca:b0:26:ef:
bf:eb:03:67:d3:9d:c7:01:a9:c8:a0:63:94:41:44:ab:c4:62:
93:d2:1f:49:2e:93:9f:62:01:6c:31:b0:81:18:c7:51:b0:f9:
01:01:f6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:29 2024 by rpki-client on console-fra.rpki-client.org