Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94F79432A9C111EF912A7A7F762E951A.roa
File: 94F79432A9C111EF912A7A7F762E951A.roa (raw, json)
Hash identifier: RkWx2JzCmjV2zkaUzA9SGCubC50ifeLU0dizqCzS5jA=
Subject key identifier: 6B:49:AD:C2:61:22:86:1F:71:45:74:C5:9A:A0:E4:93:99:44:9D:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94F79432A9C111EF912A7A7F762E951A.roa
Signing time: Sat 23 Nov 2024 17:37:16 +0000
ROA not before: Sat 23 Nov 2024 17:37:13 +0000
ROA not after: Mon 09 Dec 2024 17:37:13 +0000
asID: 5065
IP address blocks: 154.206.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70080 (0x111c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:37:13 2024 GMT
Not After : Dec 9 17:37:13 2024 GMT
Subject: CN=674212cc-e5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6e:14:29:af:4d:25:34:1b:1e:af:59:93:7f:
c2:d9:56:d3:c2:4f:9d:7d:1e:25:f7:5a:52:05:49:
3b:ba:fe:e2:cc:eb:96:a0:9b:20:60:69:4d:21:95:
0b:57:3a:a8:e6:7c:5b:49:07:68:94:1f:0d:78:13:
03:1f:b2:4d:8b:79:3d:d2:a2:47:19:15:5e:9c:08:
0e:0b:e9:94:68:8e:63:f3:03:33:84:0c:f8:0e:1f:
cd:66:61:76:58:06:50:b8:83:8c:f2:b8:62:94:2f:
14:09:ca:7a:e6:ed:5c:f0:fa:69:45:e6:bb:d1:85:
47:67:f8:23:6f:e7:64:4a:03:73:f5:1d:3f:85:bc:
df:9d:1c:66:15:a9:a8:96:ec:e4:35:18:4e:2f:e9:
c5:d5:27:9f:7f:88:30:b0:4c:53:c4:7f:0e:6f:e8:
8f:f6:21:2a:d4:55:44:67:62:57:a4:68:f2:fb:fb:
c2:e9:e5:b5:a5:75:2c:a0:6e:ef:40:45:9f:24:f6:
0e:39:6c:32:9a:44:19:0a:ca:06:4a:71:53:29:93:
c5:e5:fc:fd:08:8f:91:6f:36:32:ad:19:0d:b8:12:
5d:ce:f4:36:fe:00:1f:0c:34:03:08:31:f6:59:19:
17:db:00:8a:31:81:36:a7:73:84:1e:d1:08:4e:20:
15:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:49:AD:C2:61:22:86:1F:71:45:74:C5:9A:A0:E4:93:99:44:9D:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94F79432A9C111EF912A7A7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.32.0/24
Signature Algorithm: sha256WithRSAEncryption
19:57:50:6a:9a:bc:1f:3f:44:67:3d:ed:8f:bb:2d:15:12:7a:
23:19:9d:d8:6c:50:43:69:da:50:fc:ed:26:97:10:f7:e9:37:
83:4e:37:1b:6d:25:a6:98:7d:f0:c4:13:9f:e6:d8:d8:e1:1c:
0f:85:1a:eb:01:bb:b9:5d:02:fd:40:9a:ec:08:20:ee:cf:99:
f1:3d:e0:10:6e:ba:de:8c:60:05:cf:46:8e:f9:ca:4a:22:b9:
1a:e3:7b:ee:f4:ae:39:ed:f8:c3:dd:e4:e2:5e:a1:77:3f:39:
25:64:bc:43:98:39:14:d3:fe:43:bb:54:81:94:e9:ad:8d:79:
d9:d9:a6:d3:ad:84:d5:d0:fa:db:6f:a9:9b:65:d5:b5:df:21:
2e:70:df:eb:1d:30:bb:31:5d:ae:5c:41:94:4f:ff:60:16:07:
bf:cf:d0:1a:61:5c:5b:44:02:e5:9c:a7:72:ab:ff:50:29:d5:
a7:27:c9:c2:ab:74:de:4e:a1:59:98:0e:b4:dc:49:af:03:74:
ab:e5:46:f9:4f:a6:68:8d:8d:b0:ca:36:91:90:b8:b6:08:04:
cc:72:66:1f:90:e2:80:24:91:92:55:bf:81:84:52:13:09:af:
49:fd:53:75:b4:05:6c:ca:c3:4f:d7:0a:86:5c:91:6b:69:85:
eb:64:c9:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:40 2024 by rpki-client on console-fra.rpki-client.org