Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F8F7CA2A4C511EFB576ADAD762E951A.roa
File: 5F8F7CA2A4C511EFB576ADAD762E951A.roa (raw, json)
Hash identifier: tJ2OlfgwPxD9hBarCwoEnWj7eogi/k15f8xNHnz90j8=
Subject key identifier: 0D:DD:61:00:74:D3:8E:35:C5:3D:6E:36:21:32:EE:A1:E8:24:95:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E7E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F8F7CA2A4C511EFB576ADAD762E951A.roa
Signing time: Sun 17 Nov 2024 09:21:49 +0000
ROA not before: Sun 17 Nov 2024 09:21:45 +0000
ROA not after: Sun 24 Nov 2024 09:21:45 +0000
asID: 139880
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69246 (0x10e7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 09:21:45 2024 GMT
Not After : Nov 24 09:21:45 2024 GMT
Subject: CN=6739b5ad-5d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4d:ba:0b:c7:9b:c2:9e:28:fc:be:f3:c4:ad:
34:b4:59:4e:13:75:5a:ff:bc:1e:68:3f:da:a6:23:
cd:c9:2d:af:88:96:ba:fd:c5:b0:7e:67:86:27:54:
ff:91:c7:9c:bd:7a:a1:02:b6:c8:fe:3b:79:71:30:
02:9f:37:68:ff:8e:44:41:ca:6b:42:a3:80:b9:c2:
f0:32:57:d2:ae:8f:79:d1:13:8e:3b:db:0e:51:4c:
9c:47:ad:5b:bc:bd:cf:d4:c1:b4:91:9a:57:76:8c:
cf:ac:01:38:21:90:f1:72:ef:cc:39:5b:6b:15:c2:
c3:79:b0:05:ca:54:17:e1:84:fe:42:6c:ad:7f:ab:
54:06:15:f1:6e:f0:f0:9b:85:49:81:ce:05:ee:33:
28:02:aa:bb:32:75:5e:2c:9e:50:59:c4:65:8d:2f:
f5:44:d4:7b:48:54:be:84:f3:78:d4:d4:11:a9:1e:
99:b8:74:9b:fe:3f:6f:cc:77:56:90:e3:55:71:bc:
2e:69:79:5c:4e:37:4f:cd:23:09:94:18:ce:06:6a:
ff:d8:c9:c1:0c:2c:38:c4:73:ea:e1:7e:a3:20:01:
fd:82:eb:17:09:de:27:9c:d3:34:f2:cd:9c:6b:25:
55:66:13:1f:3f:17:f3:6e:29:8a:b0:f5:98:66:51:
5a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DD:61:00:74:D3:8E:35:C5:3D:6E:36:21:32:EE:A1:E8:24:95:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F8F7CA2A4C511EFB576ADAD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
78:14:a2:fb:91:53:5d:f7:9f:03:82:dd:fb:87:3e:e6:0b:80:
88:35:98:6f:af:05:ce:70:3e:95:14:b0:65:56:d0:ad:df:2f:
ce:55:4b:26:46:c8:0d:92:fd:85:35:46:44:7f:c6:13:a0:90:
3b:a2:b9:33:d3:99:f9:f2:dc:17:e7:d2:93:f3:44:7a:4e:2e:
89:ce:f1:c0:d5:8d:5c:ea:63:80:05:1f:9d:a8:2a:f4:7f:a1:
fc:bc:18:79:5c:13:be:43:df:d8:81:22:00:c0:7d:45:92:57:
f9:c3:eb:a5:66:04:18:c0:5f:23:cb:64:45:c3:f3:ce:16:b9:
67:4f:99:dd:fb:fe:eb:75:a4:7d:76:3b:05:88:eb:f7:cb:9a:
0e:b4:6b:32:e6:78:51:30:ca:ae:e9:1e:7f:b1:cd:bb:d0:f4:
7f:03:9c:83:8a:dd:37:2b:b2:16:aa:a7:1f:43:52:e1:27:7a:
72:ac:62:93:02:ed:62:61:ce:86:9d:b3:73:b0:fb:50:d6:15:
c3:d9:56:ac:3a:c3:d5:9c:31:30:96:cc:cd:4b:f8:b9:1a:d0:
9a:07:58:7d:8d:25:01:d4:69:00:61:84:96:bb:a7:a5:cd:c6:
c7:88:ae:db:ad:f9:10:69:51:d1:c9:8c:26:32:79:8e:3f:8e:
44:10:dd:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:49:24 2024 by rpki-client on console-ams.rpki-client.org