Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65B86B3832B611EFABEB4E8D762E951A.roa
File: 65B86B3832B611EFABEB4E8D762E951A.roa (raw, json)
Hash identifier: aCJPe+6tgSVAjoY6O1ZL7Fd8oB2esfRPbSMwK1G+2QM=
Subject key identifier: 2E:CD:5D:9A:34:97:70:5F:A6:13:E8:EA:D7:23:E9:7D:57:EE:B0:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C633
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65B86B3832B611EFABEB4E8D762E951A.roa
Signing time: Tue 25 Jun 2024 05:47:24 +0000
ROA not before: Tue 25 Jun 2024 05:47:21 +0000
ROA not after: Fri 03 Jan 2025 05:47:21 +0000
asID: 40065
IP address blocks: 154.202.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50739 (0xc633)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 25 05:47:21 2024 GMT
Not After : Jan 3 05:47:21 2025 GMT
Subject: CN=667a59ec-c862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e0:85:27:01:24:1b:eb:ee:bd:c3:4b:bc:ee:
a5:b8:6d:af:c1:d3:8c:01:c2:24:3c:fb:bf:8c:30:
8c:be:21:8b:0d:ee:d4:3d:c9:0b:2f:f4:7b:f8:02:
17:1e:2b:3e:29:da:b5:b3:d5:6f:b6:89:c7:d0:5e:
49:20:1d:cc:8d:b6:0c:fd:27:55:24:0a:72:16:92:
67:fd:3b:fe:fb:96:0b:25:40:3b:fd:3d:ee:c1:a3:
45:a0:70:bf:33:09:4c:5f:98:0f:df:9b:0c:9a:b9:
bb:72:57:3b:de:b3:3d:7b:28:71:28:6b:03:f6:f7:
3f:0b:88:5e:c1:40:a5:f7:aa:53:3d:12:d1:2f:dc:
22:5d:cd:6e:9b:55:0e:14:56:5c:63:cb:8b:f6:8a:
6a:55:cd:37:5e:8d:ae:5a:1b:01:1d:80:27:76:12:
41:0e:98:79:72:55:89:1c:79:58:c2:7c:2c:0e:f9:
77:9c:34:99:2e:94:7e:11:d4:c7:5a:e3:dc:2d:68:
86:e9:9e:9b:06:40:c5:6d:a5:c6:6f:23:e2:0d:a6:
1b:a1:9e:93:2e:38:89:f9:74:ed:5b:a4:9d:c9:b9:
d6:3d:4b:23:dc:f2:12:23:4b:26:ca:60:d0:ce:3b:
29:7e:d9:d8:4f:19:2c:b6:82:af:06:d2:36:b3:f5:
e4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CD:5D:9A:34:97:70:5F:A6:13:E8:EA:D7:23:E9:7D:57:EE:B0:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65B86B3832B611EFABEB4E8D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.32.0/19
Signature Algorithm: sha256WithRSAEncryption
03:d8:e6:75:e8:c8:53:f8:2e:6e:52:5c:6d:63:8a:56:8d:ea:
1a:13:53:a3:b6:d3:3f:9d:0a:83:1e:12:67:f2:85:6c:3e:db:
8f:66:42:19:d2:68:71:7e:83:fa:24:38:1d:62:92:57:9a:8f:
7b:01:ed:ce:6b:a3:00:10:28:36:81:78:0f:74:54:aa:79:5d:
ce:56:b8:9c:d4:f5:54:13:96:79:a1:ed:e0:94:06:d0:d5:16:
70:84:4c:3c:b7:8a:79:e9:0c:c4:36:3c:f5:7f:f0:db:1b:5b:
aa:5e:d4:87:c2:09:cb:04:73:ea:ce:e0:4e:ec:5d:9c:2d:12:
e3:60:d0:c2:59:97:8d:61:ab:18:ec:82:a0:e4:8e:a6:43:88:
b5:fe:06:12:ac:84:f3:b8:f9:bb:9a:e8:73:a5:b3:7e:c1:95:
c8:a4:0a:78:bb:87:ad:3f:0f:52:d0:10:5e:af:fa:f6:e3:67:
9a:c6:70:f1:b4:3b:30:73:54:76:11:99:6d:77:20:7b:33:ad:
02:a8:58:b9:e9:aa:c0:c9:9a:60:24:0d:c4:65:ca:a2:63:50:
8a:a3:24:88:9a:fd:c6:be:9b:54:f4:0e:4d:bd:bc:22:dd:86:
68:32:bc:7d:fe:32:17:56:9d:f8:35:30:e8:b2:22:f6:d9:7f:
f1:e9:14:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:14 2024 by rpki-client on console-ams.rpki-client.org