Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BF3846A9DA311EF810116A3762E951A.roa
File: 8BF3846A9DA311EF810116A3762E951A.roa (raw, json)
Hash identifier: pK0g1K+cdaTanMTO7MdxAPoC73uevmF2hDdqZHXfGu4=
Subject key identifier: F7:8C:8D:64:08:0F:6E:B5:BF:58:83:1D:A4:4F:B5:19:FA:4F:BB:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109C4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BF3846A9DA311EF810116A3762E951A.roa
Signing time: Fri 08 Nov 2024 07:32:02 +0000
ROA not before: Fri 08 Nov 2024 07:31:59 +0000
ROA not after: Sat 30 Nov 2024 07:31:59 +0000
asID: 18229
IP address blocks: 154.210.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68036 (0x109c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:31:59 2024 GMT
Not After : Nov 30 07:31:59 2024 GMT
Subject: CN=672dbe72-bc67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ab:17:58:88:4a:f9:87:14:4d:23:20:6f:02:
c2:ee:bc:49:6c:15:32:28:cb:c2:54:38:ec:6a:2b:
85:1c:22:f7:9d:f1:f3:e0:67:35:b7:bb:ae:83:fe:
43:80:b1:34:11:5d:a0:ca:e4:17:c1:6e:92:6e:f7:
66:a9:06:77:6c:3d:fa:a2:4a:26:4c:bf:d4:e5:38:
04:ea:bf:5e:c1:c4:b5:c3:84:f0:7b:1c:ed:80:d1:
6d:b6:89:2e:6a:b9:03:34:13:a3:b0:95:b9:07:fd:
ee:ca:55:2f:2b:c1:94:c9:c1:8a:24:cc:d5:fa:e4:
d6:dc:6c:24:e7:49:f1:ed:be:2e:37:1c:74:6f:5e:
30:67:b6:53:60:9f:df:6e:da:a2:af:e3:f7:83:ea:
aa:48:1d:d1:ac:7d:d0:b8:89:c0:2e:8b:e5:91:27:
d1:30:31:81:a9:b4:e8:63:1b:b9:ab:49:1f:56:19:
bc:8d:f9:8b:70:d5:f8:64:8d:c8:66:54:e9:56:c4:
f9:a6:c9:0d:62:48:99:55:49:36:79:08:a6:0f:f6:
c0:cf:11:1b:9e:65:72:b5:10:a3:3e:3c:5f:ba:5b:
99:ab:a8:7b:bb:95:d2:70:f4:ec:5b:f0:c7:ed:9f:
a4:df:9b:1b:f7:53:36:26:a9:6c:41:04:22:83:9b:
0b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8C:8D:64:08:0F:6E:B5:BF:58:83:1D:A4:4F:B5:19:FA:4F:BB:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BF3846A9DA311EF810116A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.192.0/20
Signature Algorithm: sha256WithRSAEncryption
96:ca:ff:91:4c:08:71:95:2e:76:07:b9:3f:73:fc:5b:ad:d0:
c7:26:7e:29:25:ea:81:fc:8e:23:00:71:5e:79:ef:4f:d5:3f:
03:ed:34:19:45:4a:81:fa:73:ec:aa:e3:50:de:3f:b4:82:a7:
b7:cf:10:2f:bb:8e:cd:59:b7:c7:ec:05:4e:34:66:0f:fa:b0:
e8:aa:f4:d2:e4:af:5e:ce:31:ca:ec:99:58:dc:13:75:bd:31:
4c:1b:bf:d5:0f:ba:5f:2a:9a:70:01:71:5f:ab:f4:5e:b4:41:
d3:b7:51:01:d6:14:83:f7:a6:ff:c2:bd:81:96:b8:fa:4b:2c:
f0:c5:2b:a9:4f:ad:14:b8:4b:36:b7:99:09:dc:0f:c0:f8:4f:
61:17:7b:41:30:69:0b:64:7a:bd:1f:d1:55:f9:c6:7b:c0:c1:
d6:c8:37:74:b8:61:d0:6c:a6:00:6b:91:bd:5a:92:88:3f:11:
1d:8d:a1:59:71:1b:ef:d6:fa:73:69:43:8c:69:9d:cf:da:ff:
bd:ac:8e:1e:e1:dc:79:d1:d9:9d:41:ea:d7:0c:1c:a7:46:74:
60:33:50:64:66:d9:bb:be:b2:38:1e:37:a4:84:88:04:59:8d:
4c:44:95:fa:39:06:b0:ac:d7:03:aa:fa:72:c8:aa:78:42:ec:
0e:2f:e8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:15 2024 by rpki-client on console-fra.rpki-client.org