Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/975FBFC2A71B11EFB3BAB658762E951A.roa
File: 975FBFC2A71B11EFB3BAB658762E951A.roa (raw, json)
Hash identifier: DNPuQfW0JY8dYOy50NH9/jXNUDOmeO7UnJ9nUKH6jdI=
Subject key identifier: 83:28:85:02:7B:A6:D7:65:50:56:C7:85:C1:22:64:67:4C:9D:BC:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F2F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/975FBFC2A71B11EFB3BAB658762E951A.roa
Signing time: Wed 20 Nov 2024 08:44:02 +0000
ROA not before: Wed 20 Nov 2024 08:43:58 +0000
ROA not after: Thu 05 Dec 2024 08:43:58 +0000
asID: 39600
IP address blocks: 154.94.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69423 (0x10f2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 08:43:58 2024 GMT
Not After : Dec 5 08:43:58 2024 GMT
Subject: CN=673da152-a449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:87:2f:dc:dd:db:02:b6:cc:21:98:df:66:92:
5e:62:7a:d7:a0:cd:c5:9f:a0:8c:b3:54:06:93:f7:
03:aa:36:8c:fd:7c:b6:11:e9:f0:88:59:15:81:1a:
e6:c3:ae:88:f9:7d:cc:bf:1d:10:c4:92:e4:7c:ea:
91:71:cb:22:ee:dd:ab:b3:7e:39:75:1c:b4:7c:a9:
c7:5a:c4:60:53:ac:a1:e4:b1:06:5b:54:20:0f:31:
b0:d8:96:ea:98:09:a2:41:04:4e:6d:60:dc:f8:54:
18:01:8b:5a:87:27:c0:d9:35:71:fb:4d:1a:07:78:
5e:c9:64:3c:47:67:ac:44:94:f7:4d:26:b9:98:12:
c2:b4:4c:35:1b:a6:46:10:c0:af:40:60:08:77:eb:
5e:31:4e:00:3d:04:20:93:ee:ee:35:e8:22:ad:f5:
6e:36:fb:d1:a1:66:f1:48:2a:0d:10:ac:7b:0b:b5:
73:47:0a:f0:0d:9d:3f:c6:c2:65:9f:06:1e:b3:71:
d6:80:89:3f:49:b5:93:1f:d5:56:b5:ac:d0:57:17:
8e:ef:9e:cd:36:71:e6:bd:87:5f:bc:20:da:eb:bd:
60:f2:5c:17:39:c0:fe:0d:cc:ae:0a:70:0b:d2:f4:
43:b0:da:90:f2:e2:45:e1:db:f0:23:55:66:b6:26:
85:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:28:85:02:7B:A6:D7:65:50:56:C7:85:C1:22:64:67:4C:9D:BC:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/975FBFC2A71B11EFB3BAB658762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.59.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e8:e8:52:ca:89:55:a4:81:71:dc:4c:7b:a2:a2:dc:25:22:
70:90:6e:90:b3:b3:e8:20:38:b0:34:ad:80:39:e6:13:ac:61:
df:8c:12:08:10:ab:0d:15:e6:0e:9f:c0:60:db:5e:2f:fb:1f:
24:19:5a:6c:9e:50:03:30:0c:1e:e8:d2:7d:9f:f8:fb:43:fe:
fb:8e:f7:0d:76:28:a6:54:13:44:b0:a8:f1:8c:bd:92:dc:81:
99:e7:47:e6:8b:0d:92:13:db:af:4e:51:5a:de:bb:66:d0:8f:
16:7c:11:31:90:aa:25:f6:58:bf:10:c2:b6:d7:0f:bc:af:a3:
9f:be:1b:41:87:c4:c2:17:b4:b8:ae:16:50:bb:f7:b2:8a:82:
87:18:10:8e:82:2c:7b:54:60:6e:db:bc:9a:9e:26:27:dd:3f:
93:b8:86:8c:a9:57:7f:e4:65:6e:1b:77:18:9d:ba:26:30:fb:
6f:eb:e3:85:74:19:77:f2:c1:d5:e8:49:a2:f8:b2:7f:f1:1e:
52:a7:e5:da:9f:f4:5b:46:c4:7e:6c:a1:39:08:89:73:ad:4b:
69:e5:24:3b:b2:55:3a:ff:80:75:1e:84:66:06:ed:70:30:4a:
85:86:ff:5b:51:6b:9e:46:19:9d:ee:7b:9c:e8:1c:f8:5a:0e:
81:f3:b8:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:19 2024 by rpki-client on console-ams.rpki-client.org