Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C01BD14A9C111EFBFAF6C7F762E951A.roa
File: 6C01BD14A9C111EFBFAF6C7F762E951A.roa (raw, json)
Hash identifier: G9CGUJB2fux445G4DDRh5KuKt6ShApvOSo1zts8Y1tU=
Subject key identifier: 5E:28:E9:87:00:9A:D0:95:1C:60:8D:DD:91:99:DE:E7:EA:26:9C:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111BE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C01BD14A9C111EFBFAF6C7F762E951A.roa
Signing time: Sat 23 Nov 2024 17:36:08 +0000
ROA not before: Sat 23 Nov 2024 17:36:04 +0000
ROA not after: Mon 09 Dec 2024 17:36:04 +0000
asID: 7018
IP address blocks: 154.206.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70078 (0x111be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:36:04 2024 GMT
Not After : Dec 9 17:36:04 2024 GMT
Subject: CN=67421288-4085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:48:03:86:30:81:02:87:39:b3:75:04:cd:
4b:99:4f:dd:34:d1:33:b4:c0:dd:58:7b:f0:90:4c:
94:d9:5e:58:27:26:dc:a8:d5:6a:bf:04:89:c4:21:
43:b9:ba:b1:4b:7c:a3:ef:53:c2:51:19:c7:1f:46:
2e:a4:0d:7b:57:54:c0:af:3f:80:08:9e:cc:5d:ea:
06:90:f4:d0:5c:97:fa:fa:97:fa:f4:82:11:c2:9a:
1c:f7:98:cc:14:96:50:9a:13:81:83:b6:ec:41:e5:
eb:62:52:69:30:67:04:98:ad:3b:e8:8e:e2:6d:46:
db:cb:12:aa:40:87:6c:20:df:d6:ca:f6:fc:c1:06:
1d:a4:b4:3a:56:08:5a:44:bf:1a:34:cf:9f:ef:63:
1c:34:68:c1:72:81:bd:da:2a:ec:e6:55:c5:34:a2:
bf:85:57:bc:aa:6b:a9:84:7b:e9:2d:49:3c:15:2b:
8e:9d:88:f1:a6:e2:d8:25:4c:ed:52:90:df:bc:8c:
51:f0:81:9d:90:36:d0:5a:8a:3a:bb:65:4b:39:7c:
35:86:6f:3c:5b:dc:60:b9:d8:96:1b:d4:c8:06:49:
87:1c:ce:47:a8:a2:4e:35:75:a3:dc:e4:9b:83:e1:
54:c4:0c:2c:a1:ec:a6:eb:f5:10:4d:93:cf:93:ab:
d5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:28:E9:87:00:9A:D0:95:1C:60:8D:DD:91:99:DE:E7:EA:26:9C:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C01BD14A9C111EFBFAF6C7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.48.0/22
Signature Algorithm: sha256WithRSAEncryption
12:aa:c7:c7:c8:0b:b4:62:bc:3a:07:46:59:5b:cb:a7:46:05:
13:2d:ea:30:b5:f3:52:a7:f4:d8:09:55:c3:4f:05:53:dd:85:
78:a3:0d:31:ce:99:16:67:5a:0a:b3:ae:0a:2f:4a:fd:2b:02:
3b:b2:ec:5b:1a:51:bc:21:c6:af:ee:2c:2c:88:d2:d9:59:0a:
fb:e7:ac:94:35:25:de:20:09:ac:cc:c1:5b:6b:49:13:f7:32:
e4:a0:5d:1d:3b:d7:d1:08:6a:23:12:f0:4a:35:47:b4:18:8b:
70:1e:13:14:76:61:58:66:07:a3:77:9f:45:f1:f1:40:8a:83:
65:4e:b7:ff:70:d7:e6:e5:fc:0d:ea:b3:16:d7:12:bb:3e:7c:
42:b2:fd:e8:8e:e4:f5:f4:15:9b:be:94:75:70:67:17:b3:64:
98:3f:29:c4:17:94:1f:c4:23:73:4c:72:3d:75:46:66:49:b9:
37:6f:86:cc:bd:9a:a7:6d:8c:c3:50:a9:af:38:05:db:fa:b0:
be:93:57:40:53:80:c1:68:76:5e:07:f8:24:98:21:a5:f6:2d:
c3:c5:d3:2b:52:5d:ad:c7:92:02:4e:a3:0d:c4:e7:11:f8:57:
54:8c:c5:4d:d9:79:87:3d:5e:6c:12:ec:41:d6:f8:48:28:77:
4a:b5:b7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:34 2024 by rpki-client on console-fra.rpki-client.org