Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65CF6FB8A8E011EF91343C79762E951A.roa
File: 65CF6FB8A8E011EF91343C79762E951A.roa (raw, json)
Hash identifier: y19+7SeIDBl8Ea5rjkGX/IxsQdMUgsI4mg0AlBIMZcQ=
Subject key identifier: 36:CC:65:A8:C5:B8:00:30:54:F9:DB:03:6A:68:A2:64:6B:C3:CE:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01108B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65CF6FB8A8E011EF91343C79762E951A.roa
Signing time: Fri 22 Nov 2024 14:45:21 +0000
ROA not before: Fri 22 Nov 2024 14:45:17 +0000
ROA not after: Tue 03 Dec 2024 14:45:17 +0000
asID: 62240
IP address blocks: 154.194.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69771 (0x1108b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:45:17 2024 GMT
Not After : Dec 3 14:45:17 2024 GMT
Subject: CN=67409900-59fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:99:5d:16:6a:93:cc:2f:a8:06:a0:18:75:
c0:b9:b6:05:61:e3:1d:e4:b7:49:f5:8c:26:7e:83:
20:13:00:cd:9c:71:7c:b2:07:8e:11:2a:77:a5:0a:
09:79:f9:1d:a5:b9:7a:94:72:5e:3b:98:ad:35:da:
c3:9c:48:6b:ba:10:11:29:b5:c0:dd:c8:f8:a6:94:
60:0d:4a:b5:15:74:43:98:32:17:95:05:8d:25:95:
2c:53:fa:d4:73:83:0a:85:2f:a6:5d:64:da:00:25:
4b:a1:28:6a:1a:c7:26:f0:5a:15:e2:8c:42:57:8c:
a8:c2:ee:e6:fc:df:cf:8e:c7:6c:4a:c9:9f:2f:81:
18:5e:1b:29:ad:f1:5d:52:83:1e:01:86:43:ac:be:
46:05:6c:22:02:41:c7:d6:cc:0a:df:b1:61:d9:74:
11:f0:b0:12:a1:96:8a:9a:79:c6:e5:a4:be:bb:01:
e5:bf:c3:ba:50:07:1b:0d:74:70:47:e3:ee:05:63:
52:28:e2:19:56:e9:54:41:01:c6:5d:7c:5c:26:aa:
6c:b3:cb:89:1b:e0:ba:24:4f:a1:b3:b4:df:83:ca:
c9:24:64:ec:a9:3f:a4:17:77:3c:ce:c9:f6:0d:89:
db:33:85:f9:b6:46:c7:ec:6d:2b:1e:39:7d:2d:43:
20:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:CC:65:A8:C5:B8:00:30:54:F9:DB:03:6A:68:A2:64:6B:C3:CE:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65CF6FB8A8E011EF91343C79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.72.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:4a:c7:17:c1:5b:ed:e9:c3:49:71:03:0f:46:23:cf:75:29:
2d:d7:e6:85:44:38:7d:ce:cd:df:88:6e:da:79:16:41:50:52:
a9:18:51:f0:d0:24:50:4c:01:c1:2c:de:b5:c2:83:d4:d5:27:
38:b1:88:2f:ea:ce:82:79:84:bf:77:c6:21:d4:d8:be:24:6d:
2b:58:4f:bc:1c:97:5a:38:3b:21:56:57:72:2d:b4:06:71:62:
2e:5b:a7:c2:da:1b:43:9a:b8:ad:5c:6f:ba:50:53:14:c5:f0:
2f:55:98:1b:81:22:61:38:3e:bd:3f:e3:1d:f1:fe:ca:75:36:
34:41:9e:3f:93:e1:e3:35:ef:9a:2b:c7:e1:92:3e:6a:62:d0:
cf:ce:87:e7:d8:fa:96:72:88:3d:1f:23:f5:0f:f6:9b:95:1b:
98:10:d3:05:7f:41:d9:20:9f:04:f1:b2:14:b1:4b:52:65:5f:
3b:b6:fb:f9:0f:ba:a0:35:a2:59:09:20:66:3e:d4:d6:38:1c:
e7:bf:af:e9:13:b6:a5:7d:6f:06:4c:30:67:16:36:a4:4f:53:
20:48:9f:6c:2c:76:e2:cd:8f:36:a9:5e:6e:de:2f:0a:81:ed:
4d:6b:46:7a:c6:2f:66:11:4a:63:40:c8:72:42:ef:e6:e7:37:
bf:bc:ec:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:14 2024 by rpki-client on console-ams.rpki-client.org