Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/579D1708A8C011EF86C167AF762E951A.roa
File: 579D1708A8C011EF86C167AF762E951A.roa (raw, json)
Hash identifier: QXlYenG7c74TVdzoEFnyEX58hDDZwSWOxNy8r+ab/QA=
Subject key identifier: 24:C9:66:AC:F7:E0:9C:D1:D8:EC:C9:CE:2E:A0:02:F7:5B:A0:22:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011003
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/579D1708A8C011EF86C167AF762E951A.roa
Signing time: Fri 22 Nov 2024 10:55:53 +0000
ROA not before: Fri 22 Nov 2024 10:55:49 +0000
ROA not after: Sat 30 Nov 2024 10:55:49 +0000
asID: 149014
IP address blocks: 154.223.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69635 (0x11003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 10:55:49 2024 GMT
Not After : Nov 30 10:55:49 2024 GMT
Subject: CN=67406339-306f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:72:54:de:ac:72:a2:74:41:ed:7d:a4:1f:87:
0a:13:f1:20:d3:49:8d:0f:6c:57:99:0e:8e:e2:9e:
05:d5:c8:1d:24:7c:6f:00:9d:26:2e:dc:80:9e:22:
97:c8:c3:53:3d:60:a7:dd:64:7f:76:9a:d5:46:bc:
f8:03:69:e3:cf:05:25:66:dd:1b:35:06:29:fd:2f:
43:74:d7:d6:ae:de:01:2c:5a:e5:9c:81:c8:92:9a:
ba:21:bf:50:45:d2:7e:03:10:80:2c:b0:37:7e:1f:
fb:34:9f:c4:cd:6d:43:d9:88:29:d6:db:45:e6:fe:
42:bf:2c:ff:4a:05:2f:6f:0e:ff:87:7b:9c:b0:d0:
5a:8b:60:58:e3:ad:b2:5a:2e:8d:13:ae:45:37:e7:
85:6a:93:28:27:a4:d4:68:ae:6d:d5:08:15:5b:f2:
5d:bd:f1:87:c8:14:04:68:c1:4b:af:82:3c:be:64:
93:d4:53:9c:15:52:ac:09:62:87:89:f6:f0:29:b9:
98:29:41:86:51:7d:7f:d1:9e:7a:9a:58:e3:be:06:
86:ca:53:ff:59:b0:b1:2d:c0:5d:50:67:b7:6f:3c:
af:bd:eb:fd:e3:80:1f:db:3b:ce:49:45:5d:01:99:
52:f8:c9:03:54:ad:41:1e:9d:1a:32:d8:47:12:93:
56:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C9:66:AC:F7:E0:9C:D1:D8:EC:C9:CE:2E:A0:02:F7:5B:A0:22:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/579D1708A8C011EF86C167AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.180.0/22
Signature Algorithm: sha256WithRSAEncryption
18:fe:4e:96:00:05:34:70:c4:a8:5a:6b:bc:9a:3a:8a:c4:a0:
48:03:68:66:07:11:32:1e:e8:fa:c6:41:3d:e6:7c:6b:f2:08:
bc:9e:91:f1:13:ad:62:70:43:ed:64:6b:57:8c:d5:7f:38:a6:
d8:23:46:0d:84:f2:ac:a8:91:0c:54:44:75:d6:b6:a3:ec:3d:
82:54:dc:57:c8:ea:79:23:21:6e:96:b0:36:9a:05:1f:35:55:
11:6f:fb:d5:f9:78:22:1a:1a:cf:57:19:34:11:c6:93:73:b2:
a5:d1:b7:3e:fb:e7:e9:9f:c5:b5:a1:e2:12:f5:81:2b:dd:ff:
36:ce:09:6e:92:9e:7f:59:f2:a6:63:e7:2b:dd:7f:99:df:14:
80:f0:a2:4e:00:89:08:c2:ee:80:cd:fb:45:63:ec:63:cb:13:
b5:76:2c:34:b0:c0:ca:54:ba:0a:ae:14:87:6f:54:e5:28:3c:
51:2e:7b:51:90:2d:96:b9:a0:dd:54:c6:f9:88:e9:b0:43:e6:
47:cc:cd:ec:79:44:38:87:fe:0e:7e:b9:7d:fa:3a:f8:1a:ec:
bf:23:fc:86:c6:21:fd:86:b4:2a:fb:1b:54:01:2a:36:83:e1:
55:fe:0e:e4:1c:24:48:b6:6b:4a:a9:d7:74:e3:af:cb:64:f6:
27:c1:40:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:11 2024 by rpki-client on console-ams.rpki-client.org