Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5968A88A91E211EF80460F80762E951A.roa
File: 5968A88A91E211EF80460F80762E951A.roa (raw, json)
Hash identifier: GoBttuRDSNFT/y1fwyoMhH0Gxz1SZ2V4fhn5Wuk7swI=
Subject key identifier: 59:1F:58:1B:C3:5A:C3:0E:E7:CB:95:13:66:E6:87:00:CB:92:8C:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010121
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5968A88A91E211EF80460F80762E951A.roa
Signing time: Thu 24 Oct 2024 08:31:22 +0000
ROA not before: Thu 24 Oct 2024 08:31:18 +0000
ROA not after: Tue 28 Jan 2025 08:31:18 +0000
asID: 20473
IP address blocks: 154.196.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65825 (0x10121)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 24 08:31:18 2024 GMT
Not After : Jan 28 08:31:18 2025 GMT
Subject: CN=671a05da-1e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ec:ef:d0:a0:d3:91:16:67:78:7b:38:2a:be:
85:7d:bd:17:d9:ce:7b:5b:c7:4d:4d:c4:a4:a7:3f:
2a:71:fa:80:56:05:ee:6c:8a:3f:88:6a:c9:1f:b1:
fd:19:69:48:71:cb:aa:c6:ae:d4:6d:17:7e:e6:58:
ed:59:fa:c6:40:39:ff:85:3b:fd:11:44:71:96:68:
65:23:4e:12:21:cf:59:c2:b0:6a:f4:a4:6d:20:f0:
ea:c0:d4:4d:fd:5b:81:00:c3:0e:d7:37:bf:62:64:
44:b2:d7:d7:c2:86:ee:69:ba:9f:5e:b3:ac:1a:34:
d0:0f:ef:39:2b:7f:29:71:e0:9a:ae:f0:7a:bc:66:
a5:fa:5e:9e:fa:62:d0:83:08:34:6a:9e:0e:b2:4a:
d8:5f:23:36:a1:37:bd:17:29:b9:31:af:9d:99:bd:
37:37:09:35:a3:9c:65:08:63:7e:62:e8:56:06:44:
71:e4:5a:2b:bd:9f:00:5a:56:e1:0b:db:a3:bb:cd:
a2:79:f5:08:fa:20:6b:6a:19:41:80:6f:15:12:b4:
69:e3:6e:34:7c:4a:4e:ce:7e:f5:c5:ad:91:9f:6e:
e3:4e:4d:f9:4c:42:01:08:b4:b5:52:d0:9a:b1:5b:
45:a4:f3:0a:94:62:ca:e6:83:c9:7a:e4:7d:a6:fc:
da:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1F:58:1B:C3:5A:C3:0E:E7:CB:95:13:66:E6:87:00:CB:92:8C:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5968A88A91E211EF80460F80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.137.0/24
Signature Algorithm: sha256WithRSAEncryption
44:5b:76:56:da:b5:07:d6:1b:b2:8e:32:aa:d2:5e:cc:40:4b:
ad:6c:6e:9c:4a:af:7a:c3:b3:cd:ed:5d:d1:e5:16:4e:5a:4b:
84:4b:31:76:64:a1:95:a3:ad:da:8d:44:4e:f0:25:2f:40:de:
a6:f1:96:22:9e:03:55:0b:6f:64:20:7c:58:74:20:11:da:14:
e2:bd:67:20:d2:68:72:5f:9b:f5:88:2b:81:72:54:c5:91:26:
b6:91:8c:e1:69:2c:84:18:6d:08:0c:b2:81:86:ab:fa:a4:a0:
a8:ff:99:70:9a:fe:47:54:6c:99:d4:a1:11:b8:99:a3:ae:0d:
bf:89:9d:76:d8:00:66:1b:ef:b1:05:c7:14:67:e3:8f:b1:19:
a1:8c:ef:ef:e8:5e:54:bf:33:04:21:e8:a4:d7:9f:ee:6b:84:
38:ae:e8:91:30:4d:06:21:c0:5d:02:23:d1:f0:d3:eb:0c:2b:
6d:42:26:e3:8f:8f:42:d6:42:3f:c3:f5:59:98:1e:1c:7b:d3:
bc:e8:26:f2:76:e3:8a:5a:c9:fb:ee:b3:11:ff:11:08:e4:fa:
4a:79:3d:a4:ff:14:9a:a0:d7:9e:cb:bf:31:6e:fd:a4:93:41:
7e:bc:43:70:e7:17:4d:a0:c3:80:4c:d9:ba:b5:07:cf:f8:af:
15:65:67:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:40 2024 by rpki-client on console-ams.rpki-client.org