Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D1F2746A9CE11EF86FDA051762E951A.roa
File: 7D1F2746A9CE11EF86FDA051762E951A.roa (raw, json)
Hash identifier: 9lQz8pOZFQSVVAzSi/XDLwl9W11bJMsPJBv/D/eIidM=
Subject key identifier: 01:8C:95:9D:1E:DC:E5:0C:5F:7D:0A:A2:2C:98:45:D4:A8:E6:A2:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011204
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D1F2746A9CE11EF86FDA051762E951A.roa
Signing time: Sat 23 Nov 2024 19:09:40 +0000
ROA not before: Sat 23 Nov 2024 19:09:36 +0000
ROA not after: Mon 02 Dec 2024 19:09:36 +0000
asID: 9009
IP address blocks: 154.95.36.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70148 (0x11204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:09:36 2024 GMT
Not After : Dec 2 19:09:36 2024 GMT
Subject: CN=67422874-0658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:28:c6:07:b3:05:bc:de:42:fd:ba:d3:f3:1d:
85:53:2f:aa:f3:99:a2:3d:64:97:a6:9a:ea:8b:43:
dc:00:c5:76:40:55:ed:8b:9f:14:44:08:28:ac:08:
4a:a5:ae:14:8d:27:b9:e4:c6:71:3f:81:28:cc:18:
e0:9f:35:30:81:c7:71:f3:d7:43:d3:86:ec:34:e8:
49:13:21:0e:97:c0:b4:a2:3a:41:b6:d3:44:54:a8:
07:9f:55:31:08:4f:19:2b:09:0d:35:46:4e:b3:28:
db:87:6a:ed:18:c6:a7:dc:c7:aa:97:97:10:61:24:
85:a2:53:f0:ee:cb:af:49:be:76:b2:7c:c8:f4:2a:
70:6a:70:91:91:fa:05:12:51:0e:59:f9:9c:29:4b:
33:47:dc:ae:85:32:f7:86:10:71:ca:91:5a:3d:ae:
9c:ac:b9:cc:82:ae:b2:a8:9d:ad:dc:7b:e9:44:4a:
a0:b4:4e:15:57:6d:d0:15:ba:f0:a9:e7:34:a9:07:
a5:03:ec:9f:a7:9c:da:dc:af:cf:72:91:1c:b1:eb:
13:c2:30:89:45:45:a0:f8:0a:b5:52:d7:cd:c0:0e:
b0:dc:4e:c0:ba:2e:45:6e:49:a2:a6:5e:e9:20:d8:
00:89:2c:bc:d3:9e:a8:8a:c5:df:b1:cf:ad:ec:c6:
59:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8C:95:9D:1E:DC:E5:0C:5F:7D:0A:A2:2C:98:45:D4:A8:E6:A2:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D1F2746A9CE11EF86FDA051762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.36.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:cd:5c:d9:a6:86:8a:63:2d:79:90:d6:2c:2d:07:aa:5b:58:
d9:ac:72:b6:b7:8b:b6:29:c9:19:a4:22:f6:c0:b7:1a:8c:c8:
7e:f9:18:cf:e2:8c:37:2c:02:13:42:a6:6c:ce:26:b2:6d:36:
1c:98:1a:0c:12:75:7b:66:37:24:fa:34:40:5c:13:90:28:b3:
80:c3:fa:6c:5c:a3:e9:27:05:09:fd:e9:de:f8:e3:03:99:3b:
27:2f:4e:08:88:4e:2b:b3:2f:e5:d9:23:c3:1a:a1:ab:eb:26:
77:0f:bb:6f:59:90:47:fd:4a:0d:80:d2:61:3b:e4:80:d1:ca:
44:b7:46:02:bd:8b:ee:3b:b1:14:db:7f:19:7b:e8:2f:93:c4:
6e:4e:4d:d8:ec:11:7d:91:41:80:ad:5a:8f:9c:ad:44:1c:a9:
aa:51:b9:3b:98:51:69:fb:23:bf:55:26:43:ab:3c:f3:6b:a0:
a2:30:ae:d5:5b:ba:5c:20:9c:6b:e8:23:f7:4e:e3:c0:1e:58:
0e:c0:e0:38:1c:c5:2b:97:75:1f:7f:95:a7:87:c8:23:ac:79:
c4:59:fc:5a:4e:28:a0:b3:9f:de:83:46:92:15:f8:c6:91:23:
52:c5:d0:1e:19:a7:a9:78:5f:8c:cc:90:fc:58:09:8d:d6:47:
59:32:a7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:19 2024 by rpki-client on console-ams.rpki-client.org