Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71BBBA50976711EF88E12D4D762E951A.roa
File: 71BBBA50976711EF88E12D4D762E951A.roa (raw, json)
Hash identifier: 5pf3Jm1g4fcqcEaxTkVc1/5ihhcCYxip0RK7TRQrUWE=
Subject key identifier: 5A:49:48:CB:2B:E7:A2:3E:DA:99:F2:3A:1D:2A:51:10:BD:FE:08:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010486
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71BBBA50976711EF88E12D4D762E951A.roa
Signing time: Thu 31 Oct 2024 09:06:42 +0000
ROA not before: Thu 31 Oct 2024 09:06:38 +0000
ROA not after: Sun 01 Dec 2024 09:06:38 +0000
asID: 54600
IP address blocks: 154.207.208.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66694 (0x10486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 09:06:38 2024 GMT
Not After : Dec 1 09:06:38 2024 GMT
Subject: CN=672348a2-7c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9f:95:d3:e0:e9:fe:8a:41:e7:65:d3:89:07:
19:a4:b5:d2:7e:3f:b8:fc:a0:4e:aa:86:5f:71:d4:
a7:40:2d:75:06:23:6a:dc:b9:ee:3a:7a:64:8e:80:
f6:09:ef:58:c9:03:37:58:d1:e4:2d:2c:14:21:a2:
eb:4f:8f:10:07:63:b2:69:ed:35:ae:45:93:5f:0d:
67:ad:78:6b:e8:2b:60:70:e5:b9:a0:16:d6:48:ec:
10:0f:a4:54:a0:35:e5:ce:f3:8a:2a:d7:8e:6b:ca:
93:ae:30:95:2f:c3:6c:30:7b:c7:e0:fc:42:54:73:
b7:71:5d:ad:98:06:4d:0d:55:2a:06:ea:cc:d0:1b:
e1:e2:b2:89:1a:70:36:d8:eb:75:e1:84:1a:cb:31:
b8:80:01:26:87:27:48:7d:53:0e:ba:69:4b:c3:7b:
52:f0:d2:5f:ac:9d:d2:fe:40:48:f9:ff:7b:78:5a:
47:42:e4:94:ea:66:4a:f3:83:61:c0:1b:0d:c9:b3:
02:a2:a2:ee:0a:af:20:eb:63:0a:47:cd:3b:fc:de:
32:44:2b:e2:c4:6c:f9:c6:85:79:76:69:3d:fc:71:
69:5b:46:09:81:27:2a:98:c6:de:9a:ac:bd:7e:fc:
dd:37:7c:d0:38:e8:56:d3:07:8b:de:1a:35:09:e0:
de:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:49:48:CB:2B:E7:A2:3E:DA:99:F2:3A:1D:2A:51:10:BD:FE:08:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71BBBA50976711EF88E12D4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.208.0/21
Signature Algorithm: sha256WithRSAEncryption
35:a2:c0:b0:0e:a2:ec:fb:9d:9c:6b:cd:29:a9:01:ee:c8:d9:
31:b9:51:72:72:10:a9:9c:33:ea:87:67:e5:e4:22:62:dd:cf:
f1:a3:a6:5f:62:03:00:a1:85:c6:c7:61:f0:b6:7b:e5:66:9d:
d6:c8:30:7b:f8:45:d7:57:43:38:ba:42:16:ec:03:a9:73:f8:
a4:f5:c7:6e:ec:58:78:da:8c:fe:9b:12:27:01:b7:d8:d9:b0:
5b:be:e3:67:d7:47:8c:32:71:16:fb:36:ce:89:99:5e:0d:29:
84:2e:ad:23:f7:34:d5:ca:e4:33:50:6b:7e:a4:11:55:f0:61:
8d:6e:63:cc:d7:5a:20:84:dd:bd:0f:21:7c:a7:1e:0c:91:a8:
c6:b5:5d:4f:f4:dd:21:1b:3a:0d:be:a8:34:f5:7c:4c:19:ff:
66:f7:c2:89:3f:52:60:f1:5a:0e:60:0a:48:21:aa:0d:95:62:
08:ed:cc:d8:9e:0f:cb:0b:fd:4a:6c:f9:d3:65:9b:02:8c:c7:
a6:cd:38:32:a9:6d:13:45:d2:c5:52:b4:da:9d:45:b6:fe:e3:
7b:f6:ab:7d:6f:30:72:29:58:3f:93:96:b5:3a:05:e9:99:9b:
85:b3:4b:70:b7:55:d2:39:cb:1a:34:b6:ae:8a:f8:42:97:21:
97:d9:46:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org