Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74F73F5E96B411EF821BAF61762E951A.roa
File: 74F73F5E96B411EF821BAF61762E951A.roa (raw, json)
Hash identifier: taIAGwuHu/A3yl/DtbW5fEJincamaRHJzae8snsOzzM=
Subject key identifier: EF:38:3B:27:28:A3:A0:E3:20:28:17:EF:2D:9F:43:5A:B4:73:52:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010417
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74F73F5E96B411EF821BAF61762E951A.roa
Signing time: Wed 30 Oct 2024 11:45:28 +0000
ROA not before: Wed 30 Oct 2024 11:45:22 +0000
ROA not after: Wed 11 Dec 2024 11:45:22 +0000
asID: 138915
IP address blocks: 154.203.152.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66583 (0x10417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 11:45:22 2024 GMT
Not After : Dec 11 11:45:22 2024 GMT
Subject: CN=67221c57-1b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:12:81:eb:ae:2c:9c:26:cf:c6:4f:7e:6f:4c:
43:3a:8d:f2:e1:c5:bf:91:60:f9:14:6d:06:71:23:
6a:04:c5:7c:a1:31:e6:d4:4f:55:9a:1f:45:1b:b7:
94:33:26:e6:b4:ae:11:f1:8f:c8:95:15:0c:4a:40:
57:a8:14:e0:81:ca:d6:1d:b8:06:c3:67:ac:3c:ec:
75:82:5f:f9:26:1f:dd:26:33:50:77:09:de:c2:d8:
9c:78:30:3a:df:00:18:f9:cb:bc:89:fd:aa:9e:9b:
05:d4:18:75:05:d8:c6:bc:94:28:ca:0d:65:2c:ec:
b4:a9:c9:4f:b6:15:cb:c9:b1:0a:f9:da:c7:17:fd:
75:b6:de:be:8f:d9:22:58:55:67:69:96:69:91:d1:
0b:e1:6f:97:08:65:5e:8f:6b:a0:fc:ab:20:2a:fd:
ec:91:ae:c0:4d:74:01:f7:2f:f6:2a:ca:d3:e6:b9:
41:41:07:00:7c:7c:1b:a1:35:81:c2:9c:34:87:f7:
6c:6a:5a:45:ab:5f:6b:ab:43:29:11:7c:de:c5:24:
c5:63:f4:5e:4c:df:2e:ea:5e:7e:0b:50:61:1d:5d:
39:bd:ce:df:2a:06:5f:24:9b:60:4b:a7:20:7b:00:
3d:e0:12:6a:9a:51:f8:41:f0:92:44:8e:b0:b4:7f:
c1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:38:3B:27:28:A3:A0:E3:20:28:17:EF:2D:9F:43:5A:B4:73:52:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74F73F5E96B411EF821BAF61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.152.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:97:52:24:f0:03:68:24:45:f7:87:05:8a:92:42:43:96:85:
8f:e8:75:f2:2d:ff:e6:8b:be:6c:a7:cc:5a:48:8c:35:69:e5:
eb:b4:32:f2:67:f0:3a:07:07:5d:29:c6:6b:5c:bf:b4:eb:3c:
26:70:ce:30:42:bc:79:07:2e:5d:bb:af:0a:30:df:77:56:96:
eb:0d:14:bd:7a:46:0a:eb:70:eb:16:22:ab:5e:01:4b:8e:a4:
b1:0d:d3:90:35:87:5a:df:ec:ab:cb:5a:2f:83:b7:fb:bf:2c:
d9:de:6c:ba:94:08:51:79:39:b2:89:05:42:67:fe:d6:95:e8:
f5:32:f4:db:46:88:e1:98:0b:82:52:1d:1b:ca:d9:22:b6:dd:
29:f9:da:95:ac:25:60:ce:66:8b:f4:03:3a:52:b9:18:0e:ed:
0b:85:2a:e0:e2:05:65:4f:bf:ab:d2:32:77:73:6f:c0:2d:3a:
25:7c:13:35:b0:82:06:76:c6:75:b6:4e:4b:1c:2f:59:0d:c3:
e0:d0:e5:4b:bd:27:d7:ea:6b:7b:d5:9c:d7:95:4f:4f:8d:fc:
4c:6a:78:46:9d:6d:10:3f:f1:ec:a9:7d:6c:38:9d:00:26:25:
9b:a3:31:d0:3d:ce:11:9e:96:82:9a:9a:61:e6:33:a6:e0:89:
2f:0a:d7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:18 2024 by rpki-client on console-ams.rpki-client.org