Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AF3545CA0D811EF961E7448762E951A.roa
File: 5AF3545CA0D811EF961E7448762E951A.roa (raw, json)
Hash identifier: s7Szr5oRzWP1hlR5r0Hujky8g0qBy6/dk3JjIAZmBN0=
Subject key identifier: B9:36:6E:28:76:73:9E:FE:C6:8C:4B:3E:E0:94:BC:A1:D4:73:74:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C10
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AF3545CA0D811EF961E7448762E951A.roa
Signing time: Tue 12 Nov 2024 09:27:37 +0000
ROA not before: Tue 12 Nov 2024 09:27:34 +0000
ROA not after: Sat 07 Dec 2024 09:27:34 +0000
asID: 138915
IP address blocks: 154.223.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68624 (0x10c10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:27:34 2024 GMT
Not After : Dec 7 09:27:34 2024 GMT
Subject: CN=67331f89-714d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e2:a8:f7:cc:d0:43:40:8b:7b:d8:04:7d:e5:
4c:23:6c:13:43:af:f9:fa:4b:5a:79:7a:ca:80:82:
4f:5f:34:f2:94:c0:3a:79:94:a3:38:fa:90:90:df:
21:f1:da:fe:22:e3:ef:14:4c:e3:69:72:90:14:87:
8f:45:cf:e7:ee:78:a4:93:2e:c1:c2:e6:b8:55:d9:
0b:ed:de:e3:f7:16:19:c0:a4:cc:bd:5b:ce:63:15:
3e:d2:67:2a:a3:41:60:ea:0c:b1:98:90:e4:11:66:
f7:ce:81:18:ab:21:98:74:27:1a:e3:88:a9:d0:08:
13:d3:4c:70:69:66:37:84:a1:16:ff:8b:32:80:03:
ce:cf:59:84:24:9e:d4:71:0a:f6:50:dc:e1:0a:dc:
ce:0e:0b:b2:cb:98:41:ce:15:92:c0:3b:60:b0:14:
1d:11:8e:43:95:06:2d:d9:14:bc:38:8c:45:9b:eb:
41:0b:50:10:3d:5f:0e:7f:7b:cc:f4:6a:1b:c9:4b:
96:49:44:36:b2:0b:f0:52:61:40:ae:04:cd:82:48:
2f:65:65:16:62:10:58:b8:0d:62:d7:2d:a3:ef:e7:
4f:15:13:19:ca:24:1b:95:d4:78:9b:5c:a4:60:3f:
6a:61:a3:90:01:60:7e:9d:e3:3f:4b:4b:a8:c5:66:
fb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:36:6E:28:76:73:9E:FE:C6:8C:4B:3E:E0:94:BC:A1:D4:73:74:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AF3545CA0D811EF961E7448762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.37.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d7:be:b4:75:65:1c:81:6f:75:a7:ba:21:bd:80:39:d9:94:
33:a9:d5:f7:5a:d0:57:d1:1a:13:9b:d7:98:41:a9:b6:e9:f1:
f8:b8:31:10:8f:6e:a4:c2:f2:90:bd:3a:e5:a9:a7:98:55:c7:
b8:3d:eb:48:bd:9d:a0:d4:bd:ee:dd:9c:02:24:ee:b5:8e:4d:
1c:6a:23:63:bb:56:24:37:5f:67:53:c6:34:07:dd:b9:47:c9:
e5:4d:0c:5c:81:ea:a1:5f:7b:40:6a:45:50:91:0f:3c:f9:5a:
f7:da:3d:36:df:8a:cf:bd:fc:90:73:3d:41:15:8f:c2:b2:22:
94:c7:af:b7:18:a2:93:89:7e:08:eb:df:8e:3e:7b:aa:b3:0d:
37:82:d3:af:72:dc:a6:d4:d7:ec:e0:a3:ec:3c:8f:5a:9a:73:
31:5d:89:d4:a1:0a:96:39:57:37:67:0b:3e:e1:08:f1:56:63:
1c:0b:4a:ec:9f:90:e1:cb:b5:f2:5f:e2:31:f2:f0:b6:df:96:
31:04:34:7c:ad:d5:02:7b:b9:25:1c:6f:27:66:5a:00:d0:2d:
2f:6b:7d:19:8a:b2:c4:f6:21:9e:62:f0:75:b6:14:dd:61:49:
f3:9a:88:e3:a4:c8:62:75:73:63:42:c3:4c:27:12:67:fd:f4:
e9:4a:f6:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:31 2024 by rpki-client on console-fra.rpki-client.org