Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E10E6F2A72211EFA9E18784762E951A.roa
File: 7E10E6F2A72211EFA9E18784762E951A.roa (raw, json)
Hash identifier: z19iHX2LZWH2Pga1OLDe4bedAHOg79qLH2tzeo6hvZI=
Subject key identifier: 36:36:06:F9:66:82:93:5A:B9:4F:53:EE:EE:08:90:46:CF:A1:7D:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F65
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E10E6F2A72211EFA9E18784762E951A.roa
Signing time: Wed 20 Nov 2024 09:33:26 +0000
ROA not before: Wed 20 Nov 2024 09:33:22 +0000
ROA not after: Mon 02 Dec 2024 09:33:22 +0000
asID: 39600
IP address blocks: 154.206.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69477 (0x10f65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:33:22 2024 GMT
Not After : Dec 2 09:33:22 2024 GMT
Subject: CN=673dace6-39d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:65:35:dc:ac:9a:9f:be:c8:e6:d0:71:ef:9f:
d6:5f:82:9f:7e:4b:48:52:55:9a:3e:dc:b8:d7:7e:
0a:49:8f:bd:8c:c9:e1:3b:9a:e5:c5:ba:1e:c7:bf:
83:5c:c5:9d:22:b3:c6:30:fa:90:09:86:52:02:45:
d5:88:30:22:43:69:da:a2:a2:cc:a2:26:a8:55:ac:
f0:77:f5:27:53:68:f6:dc:5d:22:49:5a:93:df:a6:
48:64:2e:07:b3:54:ce:01:69:81:64:c7:fd:19:0c:
b0:5a:ad:e7:4c:75:cc:cf:7d:9b:ca:0f:99:e9:22:
86:61:9e:53:a9:68:ef:e3:e5:f6:05:2e:38:e4:99:
45:34:79:81:7a:24:2d:a8:c9:e0:08:8b:40:c7:20:
8a:6b:97:8e:c1:8c:16:65:d2:2d:43:38:04:60:cf:
d1:8c:26:88:c0:33:5d:48:98:5e:4e:b0:d9:84:11:
78:95:b0:8b:1a:4f:38:ce:8f:cb:24:1a:92:16:65:
5e:02:f7:52:ad:40:8b:0c:1a:6a:6c:e4:ea:a3:4e:
4b:6c:cb:67:5a:0d:2b:60:8a:82:65:31:cf:2f:a3:
aa:9f:5d:9f:79:5a:ff:37:7a:ad:9c:0a:42:74:fa:
81:5c:b9:51:d0:ed:a7:ac:c3:02:b8:92:2f:f1:a9:
61:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:36:06:F9:66:82:93:5A:B9:4F:53:EE:EE:08:90:46:CF:A1:7D:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7E10E6F2A72211EFA9E18784762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.120.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:48:66:43:98:67:7a:f5:c6:02:6a:2e:49:ef:b5:03:5a:fc:
35:1e:04:c4:11:94:40:9f:be:01:da:09:13:9c:e5:9a:b8:ac:
58:aa:18:32:f3:86:02:90:de:ba:09:6c:92:2a:2b:6b:19:45:
ed:af:0d:39:ef:6b:aa:b7:0a:89:25:5a:44:e4:c5:af:cc:65:
b3:13:95:46:d7:cb:fa:e9:26:06:69:44:b7:fc:3a:00:9c:97:
c2:5e:00:f9:4a:96:09:c5:19:62:93:4f:4e:07:66:8e:99:6b:
64:e7:ec:18:5e:8b:f3:46:ca:90:b6:84:d8:de:eb:b3:0d:f3:
4f:7a:df:ae:89:de:89:02:3a:60:e1:1b:07:b7:85:57:bc:8b:
45:72:99:e9:38:70:97:9e:ea:43:7f:59:a1:f0:83:46:e2:2e:
10:da:e0:69:38:d7:e8:d1:75:36:b9:18:fc:cd:42:8f:69:99:
66:c8:35:a4:8c:f9:a7:06:21:1d:6c:9c:59:06:ab:27:1f:7a:
dc:12:bf:d9:e0:8b:62:5e:9c:3a:12:19:e6:11:45:14:93:c9:
c9:70:a2:be:ab:e3:0c:0c:4d:d8:41:8c:1b:ca:3e:4b:46:07:
c3:9a:11:2b:e0:01:db:75:31:7c:64:88:47:b0:4b:8b:a2:75:
14:f0:7f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:12 2024 by rpki-client on console-fra.rpki-client.org