Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79127042A44011EF945FAD62762E951A.roa
File: 79127042A44011EF945FAD62762E951A.roa (raw, json)
Hash identifier: xEmDWFLnCvU+YraMtBfke+cqJTeNKqVxkLvpwLZdk/Q=
Subject key identifier: CC:D2:C5:14:DF:70:53:A0:97:2A:7E:F0:4F:E5:F0:C3:28:E9:FC:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DB7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79127042A44011EF945FAD62762E951A.roa
Signing time: Sat 16 Nov 2024 17:30:29 +0000
ROA not before: Sat 16 Nov 2024 17:30:25 +0000
ROA not after: Sun 22 Dec 2024 17:30:25 +0000
asID: 18779
IP address blocks: 154.203.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69047 (0x10db7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:30:25 2024 GMT
Not After : Dec 22 17:30:25 2024 GMT
Subject: CN=6738d6b5-f845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:91:58:d0:3e:32:ca:b3:04:4c:f0:ae:53:92:
5a:15:e5:d8:a5:76:ff:b6:d6:0e:ff:da:d1:62:b7:
f6:63:f5:22:99:77:48:0e:99:cd:d2:f4:ae:31:05:
f2:3f:ae:dd:43:2d:f9:29:b5:b6:3a:3c:11:27:98:
61:18:a4:24:eb:d1:44:65:27:8d:3a:8c:f8:a2:74:
3a:6a:27:78:02:09:25:36:f3:4c:15:f4:24:ae:23:
8e:a2:d5:04:2c:7a:39:ef:ee:c3:01:1a:90:f7:88:
53:58:45:31:94:93:ec:10:f1:de:a6:2f:9b:5f:4f:
2f:e1:99:82:f0:69:07:0f:09:40:2f:58:5b:e1:56:
09:b4:60:b7:45:88:f2:ee:61:3e:e8:ea:68:78:ed:
6f:92:ba:7b:ef:d6:bb:fc:a3:58:b7:d4:bc:85:5e:
81:ba:5b:d4:66:6d:c4:1c:7b:34:f7:db:1e:aa:7f:
80:73:b4:ea:9e:80:6f:af:ad:97:b3:b0:e6:f5:57:
09:6f:28:52:0b:4d:50:b8:83:4b:cc:98:f4:9c:e8:
e3:8d:fa:a8:dc:a6:ad:0a:1e:83:c4:d7:8d:cb:c8:
76:9b:7c:a6:2c:56:26:7e:29:53:75:99:51:e6:f5:
af:4a:2d:70:ac:e3:d3:c7:ab:46:d5:4f:63:ca:f8:
5d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D2:C5:14:DF:70:53:A0:97:2A:7E:F0:4F:E5:F0:C3:28:E9:FC:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79127042A44011EF945FAD62762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.60.0/23
Signature Algorithm: sha256WithRSAEncryption
25:09:f6:0e:cc:39:7f:60:43:50:ef:cd:c5:3a:36:50:0b:03:
cd:52:5f:50:59:4c:55:21:30:8f:af:a5:21:39:98:7e:a5:97:
d4:4d:fa:b1:d0:f9:ee:ba:68:f0:2e:d8:da:3b:41:bf:38:8f:
39:28:2f:9f:f7:74:2a:09:83:ce:ef:eb:59:bf:37:58:b9:f8:
ba:eb:63:48:e1:86:7e:a5:97:ee:68:d8:e9:23:e5:2d:57:51:
52:a1:69:17:95:26:01:76:6d:dc:74:f1:fc:79:a7:42:64:f3:
32:88:4f:fb:be:47:2d:6d:df:93:db:d7:c5:02:aa:6c:bc:e6:
d0:f9:0a:5c:8a:49:64:25:2b:4d:d8:01:8d:5b:9b:55:e3:02:
e6:cf:e6:bc:71:93:51:99:5c:94:99:92:63:52:23:fe:5a:06:
47:2f:7a:f6:90:f5:59:c2:86:b8:f6:54:5d:21:46:c1:51:de:
94:18:b6:e0:08:ba:aa:7d:a3:5e:13:47:8a:b1:56:e5:e2:22:
41:41:53:64:30:32:b1:a1:af:6c:3b:40:be:e8:89:87:c6:56:
8a:d7:71:cb:00:51:75:78:29:d1:41:d4:75:40:9f:98:17:78:
3d:2f:89:15:a1:4b:ed:ad:1b:73:03:4e:4e:23:45:d8:af:46:
32:8a:06:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:45 2024 by rpki-client on console-ams.rpki-client.org