Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/986142BE9B5A11EFB37205B6762E951A.roa
File: 986142BE9B5A11EFB37205B6762E951A.roa (raw, json)
Hash identifier: qXgE+cLqyb72XzamCPaaA5QRFC9rwCN+mfWpP2fpVdM=
Subject key identifier: 1F:3A:DB:4B:1A:AC:C0:01:33:A9:5B:62:FF:4C:35:F8:60:F2:D4:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010779
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/986142BE9B5A11EFB37205B6762E951A.roa
Signing time: Tue 05 Nov 2024 09:44:48 +0000
ROA not before: Tue 05 Nov 2024 09:44:44 +0000
ROA not after: Fri 06 Dec 2024 09:44:44 +0000
asID: 395793
IP address blocks: 154.196.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67449 (0x10779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 09:44:44 2024 GMT
Not After : Dec 6 09:44:44 2024 GMT
Subject: CN=6729e910-f627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:09:5e:b2:f8:1c:d0:0d:2c:9e:b7:89:12:19:
16:99:07:c5:21:f1:c9:47:88:b1:c4:e1:dd:79:b2:
14:16:05:9a:40:cf:86:b6:6e:34:66:0b:4a:d9:86:
88:53:d7:2b:04:52:b3:b2:68:df:cc:e8:44:e9:04:
de:b9:37:b7:d8:64:fa:dd:b5:df:8f:8e:e5:18:4c:
0f:91:be:a9:1b:ec:40:8d:db:d9:50:fd:e2:81:2c:
71:2d:64:15:52:d6:59:5d:d9:25:2e:d0:b7:34:ed:
77:8e:93:14:5f:31:cf:86:66:03:51:47:9b:ef:8a:
03:02:89:95:a3:9b:2d:d4:08:75:36:4b:b6:8b:11:
df:95:53:e6:45:a9:7b:c9:bf:6e:40:9b:e0:10:57:
9e:27:88:82:72:c0:be:1c:68:f2:fd:7e:0d:b4:bb:
c7:92:85:40:af:cc:6e:f0:70:48:90:96:90:5e:f9:
3f:ce:9d:f7:84:b6:66:73:38:4b:ef:39:3f:15:39:
b6:0d:d2:d2:5c:ff:40:7d:9d:3e:24:56:86:d9:f8:
a1:1d:39:dc:7b:1a:fd:d4:8d:cd:06:f7:8e:42:69:
c4:27:19:53:96:77:74:c3:52:c7:5f:37:db:0a:31:
d8:59:b1:92:32:2d:76:bb:3b:09:6e:5e:00:e7:8a:
3a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3A:DB:4B:1A:AC:C0:01:33:A9:5B:62:FF:4C:35:F8:60:F2:D4:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/986142BE9B5A11EFB37205B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.212.0/24
Signature Algorithm: sha256WithRSAEncryption
37:45:96:6d:5a:81:73:02:97:d8:64:b2:f2:ed:88:67:b8:29:
26:15:5a:70:31:93:d8:30:26:47:03:ca:dc:3c:95:94:f2:62:
42:f2:13:0f:92:78:9e:a9:0d:98:cc:e5:5e:e9:44:9e:6a:4e:
c3:a1:a9:e3:40:10:64:2b:58:39:88:e5:8a:24:00:92:14:43:
92:46:f7:8d:34:18:c5:77:3c:9f:12:b0:8a:73:9d:03:62:e3:
39:41:e2:2e:2e:f4:e8:7a:58:44:f1:e2:78:a2:43:09:79:25:
79:44:5f:ab:3b:e2:ee:e9:21:df:30:84:af:bf:59:59:a3:21:
bd:d9:68:73:23:4b:0a:91:c8:d8:42:d2:37:33:f7:ff:12:56:
1e:82:f1:9b:bc:67:13:b7:fd:e5:98:44:eb:cb:8d:98:bd:14:
88:03:8d:e5:69:b1:43:ac:ac:62:f6:4a:d6:29:e3:b6:c5:62:
85:09:b7:fb:91:aa:70:04:dc:25:d0:2c:8e:67:58:7e:16:12:
02:13:f4:6b:2a:c8:d7:cd:59:21:c8:7c:71:af:97:05:15:d8:
4e:c9:cd:1f:96:99:36:da:53:6f:dd:35:0d:71:5f:f0:c3:1e:
5a:9b:12:5b:aa:14:e6:9d:64:66:35:50:17:96:f1:75:fd:cf:
b1:c3:36:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:17 2024 by rpki-client on console-fra.rpki-client.org