Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87821952A9D111EFBB750065762E951A.roa
File: 87821952A9D111EFBB750065762E951A.roa (raw, json)
Hash identifier: apAe9gDozTSF5H+XQJATbA9+QF9sL8PvUZGRHhmj5TE=
Subject key identifier: AE:01:E9:D2:3C:A0:65:46:89:F3:4A:FD:7C:78:79:E1:53:23:1D:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011222
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87821952A9D111EFBB750065762E951A.roa
Signing time: Sat 23 Nov 2024 19:31:26 +0000
ROA not before: Sat 23 Nov 2024 19:31:22 +0000
ROA not after: Tue 03 Dec 2024 19:31:22 +0000
asID: 62240
IP address blocks: 154.195.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70178 (0x11222)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:31:22 2024 GMT
Not After : Dec 3 19:31:22 2024 GMT
Subject: CN=67422d8e-a387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:50:9b:3f:65:45:7d:0a:b1:a5:c0:3d:a2:a6:
b6:da:fb:04:32:78:3e:b3:62:dc:fe:9d:ab:c0:da:
76:d2:94:d2:1b:8f:33:80:72:4d:18:b8:b6:cb:6a:
fa:62:47:d3:88:22:33:4c:e8:03:35:44:6e:e1:1b:
13:c2:b2:44:b1:00:92:55:af:8e:13:3f:07:d3:62:
43:c1:bb:eb:9f:a0:65:01:f4:dd:d2:48:88:2d:f8:
bc:07:b7:68:df:47:4a:27:13:c5:96:0a:37:10:af:
06:40:ad:4a:b6:bc:af:43:7a:95:6b:f3:d3:e3:13:
90:79:90:df:bf:b2:7d:ea:22:45:32:cf:1b:6b:1b:
76:d4:3a:29:bd:67:ae:7c:4b:f4:3f:23:f0:f2:4a:
d7:ea:15:7e:c3:aa:99:38:b4:f0:48:22:eb:2e:34:
d3:ac:dd:5e:99:9a:8d:95:5b:92:7f:b2:7e:df:13:
12:86:06:a6:69:8e:68:50:c1:21:78:60:11:70:51:
bf:85:1b:23:06:c0:bf:9f:ed:62:d7:24:a3:8a:a3:
d4:06:3f:a0:a3:f6:0b:9b:a5:17:1b:4a:39:30:f9:
89:4d:57:aa:3e:07:6b:bd:0b:83:95:2b:38:93:11:
43:b2:83:87:bb:8a:21:31:3d:de:08:32:f6:ae:ad:
96:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:01:E9:D2:3C:A0:65:46:89:F3:4A:FD:7C:78:79:E1:53:23:1D:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87821952A9D111EFBB750065762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.128.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:e8:c5:3d:97:1b:8a:9b:3a:15:7f:48:f5:34:49:42:af:3f:
9b:32:cb:73:dc:8a:e7:94:9b:77:33:aa:16:09:ec:b3:73:86:
65:da:c8:ca:0e:d3:d2:28:ff:79:49:9c:d3:7c:ee:6e:8d:76:
85:cc:58:07:75:2b:f0:32:7d:ac:05:87:e6:e4:f6:a7:aa:88:
25:7f:17:fa:e8:0c:f3:3e:47:13:4a:f0:61:fa:c3:bf:3b:7d:
e6:d3:10:39:03:bc:03:d8:0a:4b:33:19:51:bf:9b:31:6a:85:
2a:21:6e:31:77:bc:bf:f1:cb:93:70:61:84:82:23:08:d7:f4:
be:df:17:0a:b2:ef:d4:e5:82:bf:d7:19:55:1b:ef:2a:20:69:
b6:f0:1d:b4:a3:12:eb:72:05:53:de:f9:a2:04:72:96:94:f9:
5a:42:cc:b3:db:41:52:a6:bd:2f:fe:80:69:8f:bf:c0:0d:ff:
6b:89:59:75:5f:09:dc:fb:da:61:48:79:9f:16:55:e4:71:9e:
77:c2:dc:68:3e:67:20:7e:67:98:35:22:2f:ed:75:b5:0e:c1:
09:80:35:b9:63:d1:86:a9:30:7d:01:c9:c6:0a:5f:5a:30:30:
9f:56:a3:a8:a8:99:0d:e9:e8:c3:80:4a:ea:a3:10:bc:bf:83:
da:ff:17:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:34 2024 by rpki-client on console-fra.rpki-client.org