Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59282E82A45B11EFAF9AF689762E951A.roa
File: 59282E82A45B11EFAF9AF689762E951A.roa (raw, json)
Hash identifier: KB9KSggOYJ6j4Oalh3MMMV7tSlDSftjY/Vmj3uTS/9k=
Subject key identifier: 3C:94:09:37:C3:D6:07:EC:BA:F4:79:6B:B4:65:73:D3:AF:09:E7:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59282E82A45B11EFAF9AF689762E951A.roa
Signing time: Sat 16 Nov 2024 20:42:52 +0000
ROA not before: Sat 16 Nov 2024 20:42:48 +0000
ROA not after: Thu 28 Nov 2024 20:42:48 +0000
asID: 133180
IP address blocks: 154.194.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69195 (0x10e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:42:48 2024 GMT
Not After : Nov 28 20:42:48 2024 GMT
Subject: CN=673903cc-37f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cc:68:e7:45:9f:b0:8f:d5:ad:3a:3a:d0:6c:
8f:1b:9c:ba:41:c7:ba:34:38:6d:80:70:92:a4:01:
b8:95:76:22:e2:61:70:e9:d7:0f:cf:a9:e4:64:e3:
be:c5:7e:79:93:a6:0d:57:1a:9d:68:47:e3:06:9b:
67:2e:54:bb:dd:95:c9:bc:6a:4a:16:97:e5:36:1c:
26:db:f6:5c:ad:76:7e:7c:0d:6a:33:80:06:e0:00:
8f:b8:08:17:1d:e2:d2:2d:6c:98:5e:9e:67:2a:31:
74:2f:cb:4b:5e:7c:9e:26:a3:23:65:77:da:8b:a4:
c2:19:d4:7b:12:84:c0:84:7a:c3:c6:43:32:9c:41:
a7:39:25:00:39:02:7f:df:4b:c2:53:7c:53:d4:6b:
31:9a:1e:91:cc:18:40:15:31:e7:35:4a:6e:75:4d:
c1:f3:50:03:fe:e2:0c:17:64:f0:a8:ca:0c:58:ac:
db:24:81:88:60:ac:d8:9c:5f:b8:98:e9:e0:4a:14:
2d:9a:96:fe:54:26:2c:bf:12:e5:a0:c4:4b:36:bc:
4f:a5:44:55:7f:3f:ab:c4:6d:c8:c5:a5:da:65:b5:
cc:c3:56:a9:4d:5b:6f:e3:a8:d6:cd:d4:86:df:26:
b8:32:c8:d7:cd:df:3f:c0:41:7e:11:14:75:7a:09:
cd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:94:09:37:C3:D6:07:EC:BA:F4:79:6B:B4:65:73:D3:AF:09:E7:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59282E82A45B11EFAF9AF689762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.128.0/18
Signature Algorithm: sha256WithRSAEncryption
c9:c9:10:48:15:9b:91:fa:6f:ef:03:82:48:5a:ec:4b:28:13:
13:59:63:e1:74:fe:5e:23:5b:ff:c1:8b:aa:4d:2f:f0:68:e6:
04:d1:5b:f6:bd:39:28:66:75:e8:18:69:59:c2:b8:81:48:a6:
2f:e7:e2:20:82:21:52:9d:05:1c:61:d4:73:07:cf:ea:3e:54:
dc:3b:02:f8:bb:24:9d:9b:9d:48:e4:d6:42:d1:af:56:9b:89:
d6:f0:08:17:20:12:63:38:ae:e7:86:e2:cf:ee:39:6a:21:e1:
42:66:93:18:6a:43:70:ae:85:4b:95:a6:6e:82:b5:54:34:32:
27:d1:aa:cd:13:14:43:6f:eb:95:99:3c:23:00:3e:3c:88:e4:
a0:81:8f:75:99:80:9d:3b:e4:18:c4:05:3d:b7:2e:c0:11:4b:
0c:b3:f8:66:4b:f0:0d:b3:c7:14:6e:e7:0e:2b:fe:1a:8c:2d:
2f:bd:0f:28:4f:86:e6:06:8b:a3:bf:24:72:5b:05:2e:5f:c9:
3e:84:58:88:8a:8a:d4:77:5f:ee:18:d6:8d:3b:9b:1a:ba:c7:
bb:b0:94:08:1c:12:63:c7:cc:c2:e1:85:3d:39:5b:80:01:11:
bf:e3:ab:ae:94:c7:0d:4b:3c:a9:12:b0:80:54:07:c5:29:ce:
24:70:a7:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:25 2024 by rpki-client on console-fra.rpki-client.org