Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73962EEE8B9811EFBE6B2260762E951A.roa
File: 73962EEE8B9811EFBE6B2260762E951A.roa (raw, json)
Hash identifier: L3V4CDCj+G07xL6rVwlhtr/pEV2c7eTzdjyXXWDMO2w=
Subject key identifier: 8F:5B:8E:14:0B:AA:27:52:49:43:FD:F5:E2:36:02:74:83:17:9F:2B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE9F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73962EEE8B9811EFBE6B2260762E951A.roa
Signing time: Wed 16 Oct 2024 08:27:16 +0000
ROA not before: Wed 16 Oct 2024 08:27:13 +0000
ROA not after: Fri 22 Nov 2024 08:27:13 +0000
asID: 18779
IP address blocks: 154.203.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 08:27:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65183 (0xfe9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 08:27:13 2024 GMT
Not After : Nov 22 08:27:13 2024 GMT
Subject: CN=670f78e4-7e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:bc:90:f3:74:27:57:50:91:8c:13:f8:e5:
f6:19:0f:cb:f6:8f:f4:de:2a:51:6e:6f:bc:38:a4:
57:87:10:e1:7e:cf:fb:09:9b:76:15:44:92:fe:6e:
b5:a2:92:e3:41:20:bb:b1:d0:63:ec:61:43:71:cc:
bd:67:22:35:b2:54:e6:e3:64:d4:e3:42:bd:de:64:
b6:47:89:f5:92:3d:ff:44:da:15:ab:7a:26:55:5f:
f5:00:1d:96:3a:19:75:dc:7c:68:ac:60:07:93:30:
f9:01:b7:0b:e4:20:b6:a6:4b:f9:cd:f4:4c:ce:6f:
a5:9c:20:e9:30:6a:28:ba:9f:50:be:d7:8b:d7:fa:
55:b4:37:8c:b8:3d:84:26:5c:55:9f:66:3b:0f:c8:
95:d8:bb:b7:77:d1:ed:0b:08:63:ed:9e:78:8f:fa:
09:20:1e:25:aa:0b:51:4d:44:cf:6f:ce:ca:5b:18:
e2:f1:c7:35:f8:52:e3:65:8c:1f:e3:0a:a5:e5:79:
73:fb:b1:49:75:06:94:26:e2:92:8a:63:79:74:38:
58:82:e7:d2:6c:35:dc:5a:97:a8:6e:d1:e4:61:10:
01:87:4e:f8:ad:b1:ee:a8:1e:02:b9:f2:1f:9d:a7:
03:fb:4c:8b:0b:26:96:fc:a7:28:7b:ff:dc:bd:54:
7e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5B:8E:14:0B:AA:27:52:49:43:FD:F5:E2:36:02:74:83:17:9F:2B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73962EEE8B9811EFBE6B2260762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.52.0/22
Signature Algorithm: sha256WithRSAEncryption
96:e2:db:4f:8e:c2:48:91:b1:6f:cf:d5:7c:c6:d4:72:c3:60:
13:12:ad:d3:d5:31:f6:b3:10:c6:de:33:81:a0:a8:95:aa:78:
1e:81:1c:3f:15:f7:53:36:46:a7:05:71:c8:8b:e6:1f:3c:13:
05:87:db:58:ce:78:cf:70:b1:ff:9f:10:60:aa:39:87:47:e9:
bb:0d:5c:3b:40:c8:3b:c4:c7:8a:7e:28:f0:fe:06:5b:e6:98:
cf:c9:a0:0b:2f:f6:d3:90:d7:4a:96:59:64:31:41:19:71:f7:
cd:5c:95:6d:af:d5:16:72:8a:d9:fa:af:5b:07:dd:1b:f8:d0:
8a:cf:d9:5f:80:59:e8:c7:49:7a:55:6b:23:d5:05:16:a2:3a:
cf:5e:c9:7a:18:53:0c:49:e4:8c:c4:dc:e6:d7:5b:64:71:42:
94:df:e2:51:e6:74:3c:7e:02:21:b7:49:f5:3c:7d:2a:2c:28:
1a:11:9e:cc:01:43:55:6a:e8:f7:61:39:21:21:73:ce:4c:5b:
9c:cd:eb:1c:a2:16:3d:7a:63:72:ba:e1:27:ba:2e:b7:04:54:
26:52:5c:51:86:b3:3f:0d:ee:87:8b:90:6e:8b:c1:7c:c1:b3:
07:fb:a5:80:31:b0:9f:c0:2d:91:96:44:92:2d:ff:51:0c:3f:
56:c2:96:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:52 2024 by rpki-client on console-fra.rpki-client.org