Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79CF17D2A19E11EFB8890354762E951A.roa
File: 79CF17D2A19E11EFB8890354762E951A.roa (raw, json)
Hash identifier: oIOSAjWIa1eFQImsIhfaVk5IbdQ9rBoP6Xz+ux9ajFA=
Subject key identifier: A8:3C:F8:1F:40:FB:92:DB:46:5B:44:B6:51:D6:80:84:45:BE:8D:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CD7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79CF17D2A19E11EFB8890354762E951A.roa
Signing time: Wed 13 Nov 2024 09:05:49 +0000
ROA not before: Wed 13 Nov 2024 09:05:45 +0000
ROA not after: Sat 23 Nov 2024 09:05:45 +0000
asID: 39600
IP address blocks: 154.91.128.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 09:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68823 (0x10cd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 09:05:45 2024 GMT
Not After : Nov 23 09:05:45 2024 GMT
Subject: CN=67346bed-05c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:89:56:b7:ee:1e:89:54:5d:ad:83:5e:fd:41:
37:f4:ff:a9:b4:88:78:53:d8:09:3b:48:0f:e3:54:
48:80:16:ec:2f:7d:b3:3c:35:9b:de:01:5f:43:c0:
a3:1d:5c:d3:c6:ba:fc:ac:91:24:ca:d7:64:cd:bc:
db:37:e9:f2:ac:0c:a4:34:92:f0:2e:0a:1c:68:3c:
bc:03:9b:4d:f1:0b:b3:90:72:bf:4f:92:0b:a0:b8:
52:02:a9:07:11:6d:3b:34:e9:77:57:6d:69:e9:a6:
8c:af:74:20:db:c5:e0:7f:1b:a4:4f:be:2f:5a:5a:
dd:86:6e:e0:ee:8c:38:74:22:7e:47:54:00:7d:23:
d5:27:0e:f6:cc:4e:79:22:fa:95:06:07:19:d3:7f:
19:73:04:88:42:9a:ad:6c:b5:1a:4c:31:de:32:e9:
58:4c:09:f2:8f:96:f1:c7:b5:a8:51:03:2e:e5:b7:
27:e3:48:26:4b:46:22:9a:b3:08:43:7b:94:a7:74:
2d:81:ba:76:fd:bd:68:f3:3c:31:ea:df:f7:b2:54:
fc:94:12:65:64:1e:27:a7:2c:82:91:4e:6b:ad:54:
97:3d:8a:44:4b:61:7e:6e:31:b8:29:bc:a3:dc:08:
c5:b0:98:86:04:5e:c5:7e:2f:87:19:20:4d:ad:61:
e4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3C:F8:1F:40:FB:92:DB:46:5B:44:B6:51:D6:80:84:45:BE:8D:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/79CF17D2A19E11EFB8890354762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.128.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:b5:d1:43:f4:f1:22:04:4f:61:bf:56:13:82:40:6f:af:ba:
42:81:08:6a:3e:fe:ec:06:ec:ce:51:f6:4d:01:e1:03:18:0c:
89:18:e4:d3:92:23:ca:09:4d:22:02:01:74:db:28:b4:a6:84:
a5:9f:c0:31:93:f1:9f:ec:87:49:72:56:03:ea:42:0b:99:48:
31:e4:10:85:c4:a6:18:e8:51:76:40:57:e3:d1:2f:77:44:f8:
28:70:ab:12:19:2a:df:ea:81:fc:05:e3:17:93:fa:04:18:37:
f5:c3:f2:a4:7c:23:ab:52:71:36:5c:44:68:81:92:73:6d:4a:
c9:92:7e:ab:ae:0e:41:49:48:97:97:54:fd:e3:dc:a2:7f:f6:
69:50:9c:7c:8f:ac:71:d5:ca:be:f6:84:cf:6a:45:19:9d:f8:
58:ac:43:5b:7e:87:77:13:62:9f:c6:cf:ac:53:64:6b:14:ed:
5f:ee:b8:b1:cc:16:96:2c:75:ee:4c:f1:95:72:df:50:7b:c1:
7d:50:d1:b5:db:66:77:b0:8a:22:01:61:40:4c:95:cd:55:76:
35:e5:f1:05:25:a6:4b:e7:d4:ae:c3:8c:af:0e:30:50:ee:fd:
cf:f1:f8:a2:02:ce:1e:78:80:9f:1e:f4:7a:25:36:37:02:ae:
0d:37:ff:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:12 2024 by rpki-client on console-fra.rpki-client.org