Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E610FEEECAB11EE87841381775412E6.roa
File: 5E610FEEECAB11EE87841381775412E6.roa (raw, json)
Hash identifier: 2HYV5Tnmqg3e9cWpi4ffaxXUMfl6XNd00etSs27IS2c=
Subject key identifier: AF:17:C1:10:7E:5B:B1:FA:E0:C1:47:63:75:42:52:3E:B6:76:BA:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6D6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E610FEEECAB11EE87841381775412E6.roa
Signing time: Thu 28 Mar 2024 02:32:06 +0000
ROA not before: Thu 28 Mar 2024 02:32:03 +0000
ROA not after: Sat 22 Feb 2025 02:32:03 +0000
asID: 45669
IP address blocks: 154.198.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42710 (0xa6d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 28 02:32:03 2024 GMT
Not After : Feb 22 02:32:03 2025 GMT
Subject: CN=6604d6a6-7991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a2:21:13:48:28:79:bf:d1:19:9e:94:56:f9:
48:da:63:f8:ac:2f:94:7c:07:80:92:36:e6:22:00:
2b:81:8f:4f:2d:7d:15:ca:2c:7c:4b:4b:1e:81:9a:
15:d9:0b:64:b9:a3:bd:2d:77:80:5a:e9:8f:7e:d1:
9c:48:03:6c:14:a0:42:5b:a5:98:56:55:f0:1f:cc:
50:7e:5f:bf:d2:d2:66:cc:71:e2:12:6c:0b:09:bc:
8a:bf:e6:6f:ed:ee:17:eb:02:e7:8f:8e:67:5c:90:
b6:f5:49:cb:ed:ce:71:30:36:c0:a6:f3:bd:d4:6c:
d6:cd:66:68:7e:27:5e:46:e2:29:ae:dd:7c:db:c8:
56:10:1e:14:db:56:1e:3d:20:fe:b8:75:18:53:af:
40:7d:93:98:43:ba:d8:e8:f9:d8:27:3f:6c:3a:c4:
6b:c8:f7:70:d2:2a:bb:a6:50:db:64:58:fb:54:8d:
28:43:17:6b:e7:17:8f:b2:12:d5:2c:39:6f:4a:a0:
55:93:35:d9:9f:d2:87:61:11:54:0f:fc:8c:3b:15:
e7:46:a3:ce:da:90:65:24:45:bd:04:cf:80:1e:36:
47:87:3d:bd:35:88:88:f4:16:0f:26:32:a2:b4:59:
c6:83:a3:ff:90:4e:e0:82:2a:0d:25:57:81:c1:d4:
f3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:17:C1:10:7E:5B:B1:FA:E0:C1:47:63:75:42:52:3E:B6:76:BA:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E610FEEECAB11EE87841381775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.96.0/19
Signature Algorithm: sha256WithRSAEncryption
ac:7f:8f:b2:68:83:93:49:73:ca:d3:1c:e6:53:8f:82:f1:cb:
c4:29:70:4e:f7:b5:dc:d6:3a:86:6c:a5:c9:c1:b9:f6:30:95:
62:f9:1b:c5:55:d2:5a:23:a2:bd:09:9e:a3:8b:a3:33:86:ef:
fe:b3:3e:13:f6:63:4f:69:c5:da:7a:a1:09:f4:20:c0:cc:a1:
f5:49:72:82:c1:32:d7:36:62:e2:df:58:70:6f:c5:8c:f4:95:
47:a9:3d:99:fa:b5:7f:3b:be:88:0f:30:16:0d:d4:5a:df:35:
f2:2a:53:1f:1b:4a:d4:e4:a4:ff:7d:7d:ca:e3:a2:54:e6:d5:
b5:50:25:ba:da:e0:84:f0:44:80:72:e0:03:16:63:68:e5:c4:
f5:ed:ee:a9:14:56:7e:de:b3:c9:30:b5:66:c8:bd:1c:0b:e7:
b3:23:9a:f1:86:30:da:1a:36:c6:34:9b:d7:3a:5b:4b:81:d8:
5c:fb:41:08:b2:76:ff:0c:09:26:39:79:36:05:f6:a1:2b:c1:
e1:10:e2:47:43:ac:f8:a8:8e:6e:8a:ae:bd:df:f2:c0:2a:5d:
39:60:8c:62:34:1f:10:a5:b1:c9:80:2b:f1:b9:02:3a:c8:a4:
74:a7:d5:b2:41:2d:13:40:d0:bc:61:a7:7f:49:4d:60:4d:a0:
58:14:67:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:32 2024 by rpki-client on console-fra.rpki-client.org