Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F4FA98A75411EFAF56E9BA762E951A.roa
File: 80F4FA98A75411EFAF56E9BA762E951A.roa (raw, json)
Hash identifier: VUiw/c6DdLT4YxZEyjw6ZCN4BNFegL5iLBE0j8YojSc=
Subject key identifier: 85:D4:CD:4D:21:A8:C3:A8:92:2A:5A:56:E5:9D:29:23:16:01:B1:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FD5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F4FA98A75411EFAF56E9BA762E951A.roa
Signing time: Wed 20 Nov 2024 15:31:25 +0000
ROA not before: Wed 20 Nov 2024 15:31:22 +0000
ROA not after: Sun 01 Dec 2024 15:31:22 +0000
asID: 133180
IP address blocks: 154.82.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69589 (0x10fd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:31:22 2024 GMT
Not After : Dec 1 15:31:22 2024 GMT
Subject: CN=673e00cd-2048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:10:94:f9:73:4e:92:91:21:f4:06:1a:6e:8a:
27:8c:8a:cd:ec:98:27:1e:8a:7d:3b:19:b6:95:57:
17:e1:86:d5:fc:0a:56:f4:3f:c1:0e:fa:6b:28:3b:
7d:35:38:d6:77:17:b7:d9:d8:70:78:7d:dc:46:cd:
91:11:6b:4d:8e:6a:1e:a0:fc:07:73:eb:c9:ed:e7:
00:0a:37:29:cd:0b:35:a3:d4:82:ca:c7:ac:0d:98:
3d:7f:11:41:da:a2:96:37:57:5e:e9:0e:7f:56:cb:
fb:27:6d:8a:af:77:c2:c7:99:90:09:7e:c5:06:44:
f5:bd:a9:40:2e:cc:aa:f0:42:e6:a3:6f:6e:e7:f7:
fd:ec:e1:e6:36:e5:b8:d6:8c:f5:30:d2:39:59:16:
d3:de:e0:f4:08:eb:91:73:9c:23:1d:77:7c:47:ba:
40:58:a7:6d:85:80:3e:d4:d0:8e:e4:67:00:08:e1:
19:23:20:12:19:f5:4f:85:f2:b0:0c:cb:ff:bb:b7:
d9:46:f7:e4:02:b9:78:60:43:15:45:5c:2d:93:1e:
5b:9f:0f:ff:6e:5e:20:06:82:4f:03:b4:a2:7d:44:
b3:b2:86:2e:87:3b:2e:79:7c:2b:7b:3c:1f:a0:ce:
a8:11:36:f2:f8:b0:82:ad:a5:bb:b7:ed:81:09:ab:
cf:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D4:CD:4D:21:A8:C3:A8:92:2A:5A:56:E5:9D:29:23:16:01:B1:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80F4FA98A75411EFAF56E9BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.32.0/19
Signature Algorithm: sha256WithRSAEncryption
36:f2:d9:11:66:6a:17:6d:57:cf:4a:30:64:d6:6d:9f:df:66:
f7:d3:8c:11:9e:2c:9d:6c:96:0b:d0:e9:9c:45:91:69:84:9e:
12:a4:40:24:5f:2f:e5:c7:6a:c4:66:1e:e4:e0:0b:f3:e6:8f:
a2:6b:0b:fb:e6:b3:0c:9b:d6:1f:35:11:dc:5c:bc:36:36:5c:
8a:33:cf:e6:c5:4c:2b:37:7d:97:23:a6:14:63:34:90:39:87:
56:e9:83:05:47:06:40:50:c9:9c:d7:95:dc:6f:b7:8b:3d:99:
af:07:75:5f:40:b6:d8:ef:e7:24:90:b2:02:8a:c0:0e:4d:52:
ee:b4:72:50:1d:3f:bb:d8:0b:fd:ce:cc:d2:e6:81:8e:46:c4:
56:a1:8b:70:d9:15:98:d7:8d:10:af:7c:58:0a:cd:bc:30:b2:
34:fb:a0:3c:38:d5:94:c7:d8:8f:23:3e:8b:49:97:fa:94:c6:
d9:c4:a5:1b:0f:14:48:17:7b:90:52:b6:52:2c:6a:87:af:29:
b0:df:47:b5:d0:ca:cb:36:dc:3c:87:ab:65:cc:37:2d:8e:d0:
fc:ae:3d:6f:4c:65:94:57:45:a9:e1:1b:c6:18:df:74:d1:fd:
33:72:1b:53:aa:63:06:34:37:80:9d:ae:a2:bc:c9:6f:f5:66:
32:d2:72:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:36 2024 by rpki-client on console-fra.rpki-client.org