Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/957511CEA0E211EF87404E88762E951A.roa
File: 957511CEA0E211EF87404E88762E951A.roa (raw, json)
Hash identifier: /T6zysQLr8xYXm66kADIJxPt+EA7WBhqey65SQj4KW4=
Subject key identifier: 00:30:FD:44:50:EC:C4:0C:C3:A5:FD:AB:86:75:0E:4A:20:9C:6C:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/957511CEA0E211EF87404E88762E951A.roa
Signing time: Tue 12 Nov 2024 10:40:51 +0000
ROA not before: Tue 12 Nov 2024 10:40:47 +0000
ROA not after: Fri 22 Nov 2024 10:40:47 +0000
asID: 39600
IP address blocks: 154.84.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 10:40:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68684 (0x10c4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 10:40:47 2024 GMT
Not After : Nov 22 10:40:47 2024 GMT
Subject: CN=673330b2-077b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f3:52:07:3e:9f:ed:14:06:5e:6f:a5:81:5c:
f1:13:f5:89:aa:f9:23:aa:56:83:de:fa:de:0f:c4:
e0:0f:9d:fc:1c:5a:3a:75:93:bc:c1:8c:96:3d:c3:
d5:8c:77:f8:bf:84:5e:42:a4:19:a8:35:93:ec:95:
bc:c2:a2:dd:78:15:30:db:77:3d:e9:95:82:eb:55:
ed:ca:00:e3:c4:00:9d:13:fa:2f:0e:40:e9:3e:8d:
bd:d8:c2:97:04:03:32:37:44:8f:8d:15:b6:9f:0c:
38:04:7f:c0:75:1d:7a:fa:e4:35:f5:eb:27:0b:20:
db:fe:25:fc:25:94:8f:64:0a:1e:77:0c:1e:89:53:
a1:70:b9:35:53:52:12:2a:bc:88:b8:05:3d:71:9f:
ac:89:90:70:d6:b4:61:e6:32:29:27:6f:68:35:d6:
d2:6e:4c:59:45:35:57:0d:36:18:35:57:e7:01:9d:
5f:e7:13:bd:68:50:6e:66:67:ea:cd:13:c3:68:dc:
a7:87:9e:b0:83:ca:ea:87:9d:86:93:b5:c0:aa:aa:
83:de:ce:a1:3f:fd:8f:c8:48:94:0b:92:c4:a8:e3:
4f:66:06:c8:7b:ea:02:82:2b:55:7f:e7:3e:1c:68:
37:fe:93:39:88:5d:12:88:af:1e:4c:0c:c8:8f:33:
b7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:30:FD:44:50:EC:C4:0C:C3:A5:FD:AB:86:75:0E:4A:20:9C:6C:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/957511CEA0E211EF87404E88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.188.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:7a:98:51:6b:e6:4e:27:db:7e:5e:8d:73:d0:83:3c:a7:77:
27:06:a4:16:16:7a:5e:02:53:3d:6e:57:76:e0:29:2d:be:22:
50:65:f2:8f:ca:90:e7:8f:4e:f2:4b:76:75:d4:bc:a2:97:10:
21:7d:4e:64:3c:2a:ff:83:3c:6e:a0:ed:53:36:62:37:67:69:
b9:e6:da:f6:b8:e4:d6:43:ff:3f:16:36:43:85:a3:aa:12:95:
eb:f0:8d:90:ed:cd:ee:b2:6a:dc:cd:79:f5:60:65:52:c8:5a:
c0:61:98:63:34:b3:92:e4:00:27:cb:bd:a1:8c:df:48:b5:06:
03:c7:90:90:9a:8e:53:44:bb:88:8b:39:50:e1:e4:44:97:32:
b5:53:be:2b:84:95:2f:33:1f:44:2f:35:b1:b5:a4:df:c2:b8:
d3:d3:a4:db:34:ab:e5:d8:2b:58:b4:0d:63:b3:f9:48:7b:bb:
45:65:83:57:13:6f:05:50:4a:c4:d4:0a:f6:4a:ac:82:37:9e:
6c:ed:49:95:38:ca:77:1f:81:e4:31:3f:05:8b:4f:4e:b0:2f:
26:51:84:c6:47:24:b5:b0:cf:29:f0:71:99:1a:bd:14:64:2c:
a1:95:a0:9e:fd:bb:53:d7:71:c4:4f:09:8c:57:02:2e:de:4c:
fb:f0:e6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:16 2024 by rpki-client on console-fra.rpki-client.org