Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65BEDCE8A44411EFA8F0DE79762E951A.roa
File: 65BEDCE8A44411EFA8F0DE79762E951A.roa (raw, json)
Hash identifier: fv8vt+Fo2BrO8Gm3bBDE8v1e4PaTotqMGXS3OOM527Y=
Subject key identifier: 9D:DB:76:DA:27:11:43:EF:F9:7E:52:F7:27:E5:3F:94:AC:BE:1F:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DD9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65BEDCE8A44411EFA8F0DE79762E951A.roa
Signing time: Sat 16 Nov 2024 17:58:34 +0000
ROA not before: Sat 16 Nov 2024 17:58:31 +0000
ROA not after: Sun 24 Nov 2024 17:58:31 +0000
asID: 133180
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 17:58:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69081 (0x10dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:58:31 2024 GMT
Not After : Nov 24 17:58:31 2024 GMT
Subject: CN=6738dd4a-d4b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:88:ab:97:2c:9c:c9:61:3d:f2:fc:79:fe:e3:
3b:55:fb:ca:b4:82:53:15:e4:28:29:a7:c8:e0:3b:
0d:69:50:ad:38:4c:0c:ee:dc:60:f0:79:42:90:23:
28:1f:f4:44:91:e2:d1:60:b2:37:3e:b3:d8:5e:1d:
1f:cf:6f:44:47:b8:58:4b:d9:d5:cc:b4:7a:34:66:
76:f2:fc:bc:45:2a:04:6a:90:a7:4c:85:b8:1a:4f:
70:06:af:79:2a:0d:83:32:f3:ea:58:7c:91:fc:c2:
9e:27:cc:d5:74:c8:e5:ea:b6:36:49:4e:cf:c5:f2:
d6:0d:93:b6:07:dc:8a:99:62:ef:02:6b:a9:06:9b:
c5:6c:e2:3b:d9:57:3b:af:25:3d:00:b9:2d:a9:c1:
59:70:35:41:32:3d:eb:d6:26:be:7f:98:5d:82:1f:
78:4c:33:17:2a:59:2b:8c:61:c7:0d:f1:d2:bf:0f:
1b:db:1c:7f:b6:19:33:19:f4:3a:a8:c9:15:92:7e:
f4:50:87:f7:06:6d:b9:8a:d8:b1:7d:d9:e1:e7:9f:
70:6b:75:42:28:5f:bf:50:e8:21:7a:e4:fb:22:d9:
9e:0d:58:fe:90:27:95:e6:d7:e5:f1:35:4f:84:22:
f4:8a:5c:91:5f:93:5a:61:61:4c:e1:40:c8:d0:44:
3c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DB:76:DA:27:11:43:EF:F9:7E:52:F7:27:E5:3F:94:AC:BE:1F:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65BEDCE8A44411EFA8F0DE79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
01:08:93:c7:9d:e6:8f:d2:31:67:bd:df:9a:eb:7d:78:be:3d:
9f:f0:ac:99:51:c5:1b:94:b6:c4:a9:4e:f6:24:b5:3e:d3:88:
ee:f3:00:64:87:1f:80:d3:c8:09:fc:46:b8:28:de:5b:1d:32:
43:24:bd:f8:f8:67:08:76:a2:b4:3a:dd:8f:4e:be:39:da:0b:
e1:7d:2d:85:09:38:90:94:07:73:b2:66:70:d7:7e:05:cf:e4:
10:4f:e0:0f:6b:46:14:2b:b9:88:23:cc:89:bd:3a:e7:5d:69:
76:57:47:b2:f8:d0:d0:da:2e:0f:f7:b2:a1:a5:f1:64:85:dd:
3a:43:01:eb:82:4e:4e:b0:88:eb:86:e2:46:aa:89:17:0d:35:
1d:1d:a9:1d:19:d4:09:f0:7f:ed:7c:4b:be:02:d1:e7:8a:47:
3a:c8:36:64:5b:5f:3a:61:1f:70:02:73:17:49:3b:af:e9:5a:
60:56:fe:8c:5e:e9:bd:16:02:e7:1c:45:e7:78:a0:4a:78:b0:
67:bb:51:f2:94:f3:55:55:b1:8d:ec:88:7e:a1:61:4e:d5:84:
96:0a:12:97:74:f5:e1:a2:49:1a:64:5c:fd:b8:34:1e:69:3b:
cf:99:3a:f7:4c:3e:13:8e:bd:a9:88:84:73:86:40:f5:e6:02:
c8:8d:67:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:33 2024 by rpki-client on console-fra.rpki-client.org