Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B3BB91EA44C11EF851A43AB762E951A.roa
File: 5B3BB91EA44C11EF851A43AB762E951A.roa (raw, json)
Hash identifier: 96JCmSmKUHXCwnFYFvYrW9b2i0w1zHuanwQhVcmoIyI=
Subject key identifier: D4:9F:93:66:1F:60:7C:B1:53:44:B3:92:F0:54:20:2E:C2:C6:DA:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DFD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B3BB91EA44C11EF851A43AB762E951A.roa
Signing time: Sat 16 Nov 2024 18:55:33 +0000
ROA not before: Sat 16 Nov 2024 18:55:24 +0000
ROA not after: Mon 25 Nov 2024 18:55:24 +0000
asID: 399989
IP address blocks: 154.194.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69117 (0x10dfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 18:55:24 2024 GMT
Not After : Nov 25 18:55:24 2024 GMT
Subject: CN=6738eaa5-b0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:b4:3d:a2:f8:71:7d:82:d2:a5:72:d0:dc:
88:94:f2:f1:00:49:e7:27:31:db:26:bc:37:ea:08:
0c:13:68:11:82:d9:fe:d5:19:48:7c:f3:de:8b:00:
1e:6f:04:68:01:87:e4:f1:5b:66:45:89:bb:7d:66:
96:74:63:70:06:07:db:ad:25:bc:49:76:75:58:26:
74:ac:0c:8b:7e:80:44:a4:04:35:ec:51:ce:5f:63:
5b:6c:06:31:54:36:e3:8e:9d:67:d7:3e:ef:73:97:
08:0b:01:3d:14:0d:32:2c:12:f5:9b:02:ea:ec:3c:
61:66:87:14:98:c2:ee:df:10:c6:1b:9f:86:d9:fa:
81:d8:9c:e9:4e:0b:b7:56:3b:25:6b:7c:e9:56:b4:
02:49:7c:55:76:71:c9:23:18:65:de:c8:e1:44:c6:
85:e2:96:6a:62:05:ce:08:04:06:37:6f:e3:3f:86:
75:77:4d:61:85:9b:c4:0f:42:2b:56:91:99:71:5a:
41:f9:0d:60:e8:91:0f:71:d6:55:f9:bc:ff:98:72:
73:f9:d2:5f:62:bd:9c:3a:ab:6c:af:8f:d5:f0:5e:
38:b1:3c:45:62:2e:78:1d:5f:c3:a3:42:e3:fe:9b:
f0:bb:f8:46:bd:98:83:72:1f:ae:bb:51:db:ab:66:
56:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9F:93:66:1F:60:7C:B1:53:44:B3:92:F0:54:20:2E:C2:C6:DA:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B3BB91EA44C11EF851A43AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.16.0/22
Signature Algorithm: sha256WithRSAEncryption
00:e5:9b:57:8d:14:1a:19:d2:db:37:43:98:69:28:b4:a1:76:
72:35:da:be:6b:6b:11:f1:0d:b0:2c:77:62:26:91:5b:2a:b5:
e4:3f:01:f3:e8:b6:f8:52:ba:64:3b:fc:e4:32:4b:70:e4:5b:
8b:9c:10:e0:95:4d:5d:54:0c:0c:05:6a:4a:18:ed:27:7d:bc:
c1:86:3f:d0:ef:a4:b6:c6:1b:19:88:0e:d2:a9:35:44:58:b5:
de:a7:6d:ae:04:62:15:18:9e:8d:98:13:7c:89:15:10:cd:18:
96:d8:19:c1:25:1c:02:5d:e1:8a:f1:3d:f8:3c:b4:29:4d:37:
5d:8b:b0:66:a3:ca:c2:ad:79:a1:8c:bb:42:41:6c:97:74:09:
29:28:e9:8a:fb:5d:ef:79:2d:82:32:fd:7c:06:39:48:df:bb:
82:35:b2:25:42:8a:97:9c:d4:41:5a:58:06:a3:79:8f:aa:f4:
b7:a2:9b:43:ac:b8:df:36:69:74:61:cb:90:53:aa:fc:51:b4:
c2:51:e8:2e:a9:37:dd:80:94:fd:ac:7b:40:af:ee:9d:12:e0:
64:60:6e:b4:11:8a:13:dd:03:60:2f:3f:32:56:0a:7c:00:1c:
35:df:6e:52:4d:9f:b3:91:e8:c6:58:cc:bb:91:80:b5:dd:cc:
c7:90:94:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:05 2024 by rpki-client on console-ams.rpki-client.org