Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BAC043AA0DB11EFB6AAB25B762E951A.roa
File: 6BAC043AA0DB11EFB6AAB25B762E951A.roa (raw, json)
Hash identifier: XR8u9LNsY7MCk3pJJ4o6H7yKKm8UOB1vhL6v92BzFU8=
Subject key identifier: 62:D1:C4:AA:06:07:A4:6D:F4:45:5E:C3:40:48:C0:87:A6:F4:25:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C32
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BAC043AA0DB11EFB6AAB25B762E951A.roa
Signing time: Tue 12 Nov 2024 09:49:34 +0000
ROA not before: Tue 12 Nov 2024 09:49:30 +0000
ROA not after: Sat 07 Dec 2024 09:49:30 +0000
asID: 138915
IP address blocks: 154.223.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68658 (0x10c32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 09:49:30 2024 GMT
Not After : Dec 7 09:49:30 2024 GMT
Subject: CN=673324ae-ec16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:9f:59:8a:ac:b9:57:7f:31:c5:35:2f:d4:
8a:dd:27:4c:5f:8f:96:a2:c0:40:a7:72:b6:ef:96:
7a:18:24:30:29:8c:f8:ce:75:f1:89:1e:51:8f:09:
5f:3e:66:a7:17:3d:87:03:57:c9:42:c0:c0:2c:22:
5f:a0:75:1f:63:1c:63:67:77:fd:4c:96:7b:a0:8d:
34:02:8d:ce:f5:01:78:2b:9d:0d:e8:fc:f8:b9:c6:
ba:1d:8e:0d:5b:bd:e8:3b:76:1c:19:ec:5c:2a:be:
8c:4b:08:7d:c7:ca:38:da:37:d1:3c:c6:e3:e7:5b:
a3:77:5f:21:b1:7c:09:99:36:28:cd:e3:5d:17:dd:
00:69:0f:f3:c4:c0:60:b5:6e:a0:26:9b:5e:9f:e1:
dd:8c:8f:35:35:b1:5c:99:5f:7f:fd:c2:b6:d9:c2:
a1:73:77:1b:0b:5f:dd:53:dc:cd:43:8b:e3:b9:75:
91:4e:9e:6e:43:9c:95:b1:5f:28:48:c9:dc:e0:2f:
03:c0:58:69:bd:61:3b:a9:bc:90:0c:1d:ec:b5:a4:
17:2b:93:63:12:4d:03:35:84:6e:60:cd:93:0a:25:
2f:dc:55:0e:6d:20:d0:6f:b0:ea:78:48:cd:37:72:
b8:25:62:b6:9d:e1:9f:8d:a8:14:d3:e8:6a:ed:84:
a3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D1:C4:AA:06:07:A4:6D:F4:45:5E:C3:40:48:C0:87:A6:F4:25:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BAC043AA0DB11EFB6AAB25B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.20.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:84:4c:78:45:1e:bb:b1:47:24:01:dd:7e:b1:9f:6e:90:09:
6c:53:82:36:bf:02:81:9f:fe:90:99:90:c7:dd:97:f9:c7:cf:
52:b6:f2:3b:83:74:88:b3:ba:d0:92:e3:7e:c7:68:81:90:71:
d5:04:13:7c:df:ad:f1:95:5e:4e:84:4c:87:29:9e:12:a1:da:
ca:63:65:f5:03:f2:f6:79:e2:89:ef:08:bc:c2:9c:d6:bc:73:
1a:d9:4f:89:fa:69:74:10:a0:33:17:ba:7d:0e:84:e8:7a:88:
22:dd:72:bb:5d:69:a8:94:d5:a7:a4:e5:71:bc:1a:b8:8b:5a:
c6:d3:e2:92:5c:2c:d9:55:ef:73:a8:f5:22:0a:bc:5a:e7:a6:
ce:73:7d:20:3f:9a:63:07:a0:7b:04:68:3c:24:c7:48:d7:fe:
ba:65:49:91:68:3f:25:4d:f9:4c:38:c9:e9:b1:e6:89:3b:9b:
e1:a6:09:56:31:15:69:5f:7b:77:5e:cc:b2:52:8f:94:a3:aa:
ef:2f:b6:20:76:5d:26:9d:5c:ad:c3:26:b7:4b:d0:b9:64:84:
ad:da:f9:fe:b4:ed:00:40:3e:6a:19:63:13:f9:bb:a7:fe:e9:
a7:50:4f:5f:d5:d4:f6:1f:56:6b:d0:d9:39:c3:9e:b0:fd:71:
e6:99:cf:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:29 2024 by rpki-client on console-fra.rpki-client.org