Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F738662A44511EFB66E8780762E951A.roa
File: 5F738662A44511EFB66E8780762E951A.roa (raw, json)
Hash identifier: 0JbpTmk+CygGP55xl7zLVIX9S2lOcodUOBAPaVurgFg=
Subject key identifier: 10:EF:D1:3B:D4:A7:FF:04:92:39:1E:33:35:BD:F7:C8:66:82:69:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DE5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F738662A44511EFB66E8780762E951A.roa
Signing time: Sat 16 Nov 2024 18:05:33 +0000
ROA not before: Sat 16 Nov 2024 18:05:30 +0000
ROA not after: Mon 25 Nov 2024 18:05:30 +0000
asID: 7018
IP address blocks: 154.207.158.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 18:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69093 (0x10de5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 18:05:30 2024 GMT
Not After : Nov 25 18:05:30 2024 GMT
Subject: CN=6738deed-202c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ac:a7:df:a4:f0:e7:45:86:90:14:58:fe:1d:
0a:da:e0:c8:68:c6:4a:6b:45:09:35:9e:89:5d:56:
d6:cb:d6:14:49:ab:50:13:1e:43:e4:67:e2:59:8f:
d4:ca:ce:ef:10:f8:bf:39:55:8c:c0:19:b5:a6:0f:
22:9c:71:f1:95:23:c9:26:d3:49:3d:b7:40:21:be:
c6:22:09:2c:63:37:cd:d0:4b:28:da:73:a8:79:03:
a8:45:5c:f1:72:c6:c5:42:6e:9b:de:33:36:2c:7f:
be:11:7a:9f:bb:45:4c:c4:55:9e:09:89:b4:35:ea:
ef:06:00:1c:0c:17:7e:8b:7a:bb:ef:e4:f9:11:df:
f1:5f:bd:75:7d:d7:2a:32:65:e3:63:2a:b8:ad:40:
6a:05:e2:8e:5a:77:e6:46:0a:f4:90:a8:08:5a:41:
d7:20:90:4b:cb:c9:1f:17:0f:9e:9d:ff:ab:67:c8:
cd:26:31:b7:a4:e1:99:63:f2:40:68:8e:4c:42:67:
3f:3d:ba:74:62:9c:f2:15:69:6b:dc:34:52:a1:b8:
f7:5b:9d:04:bb:0e:4f:7a:87:45:73:d6:de:ce:dd:
f6:60:90:7d:d6:bb:a7:0f:38:71:01:5f:4a:35:50:
43:ad:0f:ed:42:05:fe:da:0b:a3:77:1d:b1:3e:91:
3f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:EF:D1:3B:D4:A7:FF:04:92:39:1E:33:35:BD:F7:C8:66:82:69:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F738662A44511EFB66E8780762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.158.0/23
Signature Algorithm: sha256WithRSAEncryption
75:ed:4d:2f:8b:49:ea:fc:8c:b3:d6:12:9d:20:6e:f2:38:9d:
42:a2:53:50:a0:39:eb:12:7a:b2:bf:3a:e2:13:a3:4c:12:4a:
46:24:87:e6:2e:42:af:6e:c4:ad:8b:3a:ca:4e:ce:bf:7f:07:
e4:8d:49:53:50:f1:28:70:43:b8:74:d5:81:f4:9d:91:4b:14:
bf:4e:3c:74:eb:59:aa:9f:d9:c0:7b:a6:64:58:c2:fd:e9:51:
50:87:2c:b8:ed:1e:2a:dd:3a:04:d5:4c:9a:54:39:9d:0a:5d:
3a:26:23:42:44:17:d6:4c:ab:a9:d8:3c:01:a4:7d:43:31:b1:
73:30:4f:18:c7:ab:4b:d5:6b:45:a2:ec:14:12:88:31:bf:bd:
43:4b:f0:3c:67:a9:f2:5f:80:d8:04:89:30:5d:1d:53:89:5f:
a6:a7:2d:10:53:e7:aa:88:84:89:e1:9f:70:6f:f9:65:29:92:
86:1b:4f:41:d6:09:8c:ec:0d:df:cf:f5:13:0c:47:5b:9c:ff:
97:48:10:48:04:f5:e0:07:e9:a6:95:20:32:a0:d2:86:13:09:
86:b2:2d:de:3b:2f:de:10:80:2b:b8:7e:2a:b9:80:29:c9:41:
17:04:07:72:61:fa:f9:3a:b4:cd:2a:cf:42:a5:94:97:1b:07:
2d:81:3f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 18:22:39 2024 by rpki-client on console-ams.rpki-client.org