Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58810038A45311EF8B5AFB58762E951A.roa
File: 58810038A45311EF8B5AFB58762E951A.roa (raw, json)
Hash identifier: zVpaXvyg1NqzRQbwGToK1EwKZTcNjWJQghODGxS+c+g=
Subject key identifier: 07:D9:38:AB:53:7D:45:91:DE:B0:96:08:51:3B:5A:7D:BC:0F:38:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E2D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58810038A45311EF8B5AFB58762E951A.roa
Signing time: Sat 16 Nov 2024 19:45:35 +0000
ROA not before: Sat 16 Nov 2024 19:45:30 +0000
ROA not after: Tue 26 Nov 2024 19:45:30 +0000
asID: 9009
IP address blocks: 154.199.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69165 (0x10e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:45:30 2024 GMT
Not After : Nov 26 19:45:30 2024 GMT
Subject: CN=6738f65e-0c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f0:b7:3c:d7:b1:97:5a:d3:80:30:c8:19:34:
41:bd:a7:85:4b:3b:42:eb:6a:ec:99:1e:bd:77:5b:
cf:74:13:5a:a0:3f:12:c4:6f:6a:0e:f8:59:89:7a:
98:f1:b0:67:c5:42:3b:0e:86:03:0f:70:46:25:77:
d2:ca:7f:fb:41:ff:a6:05:a8:14:60:0f:17:27:68:
30:93:62:f9:b2:b6:51:98:15:6a:b2:9a:05:c3:14:
ed:db:37:39:70:31:3f:14:1a:e1:a5:f7:a8:7e:74:
38:0d:7d:fe:ef:c4:00:cd:9c:eb:dc:60:66:29:d6:
a9:14:99:aa:a8:68:74:75:aa:bb:26:08:6f:39:24:
fb:93:e5:df:2c:f0:2c:fe:ea:7a:fe:b9:e3:8b:05:
24:03:ab:5b:b1:95:89:1e:1c:0c:b8:5f:ce:60:73:
95:2e:c2:0b:7f:92:71:f6:a0:77:1d:6d:3b:8b:40:
77:53:9e:6c:9e:24:35:2e:34:4e:76:69:20:cb:6c:
b1:c0:ae:20:7c:02:38:95:39:93:ef:30:38:6b:e5:
31:7a:f1:18:d1:09:c0:ad:21:4b:c1:2c:bd:03:3b:
9a:d5:d4:db:b7:a8:d7:ed:c9:ad:46:02:8c:38:f6:
5a:9e:41:4b:84:90:1d:03:4a:29:77:b6:d4:c5:d2:
6c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D9:38:AB:53:7D:45:91:DE:B0:96:08:51:3B:5A:7D:BC:0F:38:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58810038A45311EF8B5AFB58762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.160.0/19
Signature Algorithm: sha256WithRSAEncryption
14:43:a4:ed:12:30:4d:e3:5c:d9:4a:96:55:44:a8:09:43:bc:
05:9e:b5:e7:91:c8:e3:c8:a7:01:b6:89:c2:f8:70:c5:9b:da:
ec:3b:d1:bc:3a:66:d3:16:34:7e:28:85:60:ee:78:dc:3d:26:
a0:a1:ea:8a:a9:ca:c3:8c:b8:71:9f:2b:44:21:15:27:b3:43:
7d:39:e1:ae:e4:a2:14:cb:6c:84:62:ca:09:bd:5d:50:86:36:
bf:9e:96:1c:38:5b:40:8d:82:7e:94:70:61:54:48:a6:cd:b1:
83:9e:b2:b0:7d:68:33:ea:d6:d6:ae:70:ec:0f:77:61:1a:c6:
9e:c3:dd:ef:16:60:a2:69:91:46:da:95:ea:4b:e9:cf:3f:be:
b5:9a:4c:da:af:40:51:22:9a:17:47:3f:2c:53:7d:aa:a2:f8:
aa:c6:15:a7:77:2e:5f:57:02:69:2f:52:70:dd:07:aa:5d:59:
36:94:72:0a:a4:79:81:ed:2c:65:84:8b:45:b0:ea:78:2a:ee:
0c:71:d7:36:01:7b:8b:25:28:0c:30:7d:7b:04:3e:f8:3c:ef:
12:5d:68:78:af:60:65:a0:71:f3:a4:65:99:73:1a:08:58:e3:
21:eb:9d:9b:32:78:7e:3a:2e:d6:32:fe:27:07:33:21:a4:a2:
58:25:c1:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:47 2024 by rpki-client on console-fra.rpki-client.org