Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/987EDC94A32411EF955EA278762E951A.roa
File: 987EDC94A32411EF955EA278762E951A.roa (raw, json)
Hash identifier: 72ROGkqBJ/B/ZL/nKj3taRc7xdbeeZcEZAW0TseJ4Jc=
Subject key identifier: 66:C6:16:4F:B8:6D:E1:4B:E9:F0:38:C4:EC:06:24:14:62:1E:1B:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D40
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/987EDC94A32411EF955EA278762E951A.roa
Signing time: Fri 15 Nov 2024 07:38:24 +0000
ROA not before: Fri 15 Nov 2024 07:38:21 +0000
ROA not after: Thu 12 Dec 2024 07:38:21 +0000
asID: 394432
IP address blocks: 154.196.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68928 (0x10d40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 07:38:21 2024 GMT
Not After : Dec 12 07:38:21 2024 GMT
Subject: CN=6736fa70-3840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1c:48:e6:7c:0a:ec:f2:3b:c0:2f:f2:c6:4f:
79:c9:a2:b6:7a:48:30:a2:06:1e:be:3f:ef:9c:58:
5d:62:67:d7:06:8d:64:70:88:42:00:83:d2:c3:ea:
21:34:7b:f0:d4:9e:fd:53:4e:06:d3:91:85:6b:1d:
71:73:99:44:8a:6b:a4:4d:7e:c6:a8:9b:4d:a3:bc:
c4:18:02:f6:cd:5e:10:33:ec:fc:b2:7c:0c:51:cd:
4a:bf:70:6c:2c:a7:18:52:56:de:51:b5:4e:9b:db:
e5:51:b0:9f:4a:43:fe:3d:62:a7:f8:9b:c5:0c:17:
5b:5f:e8:89:b8:6d:41:29:d7:6e:d0:fb:47:99:2e:
bf:a4:3d:64:a9:d8:06:89:4c:46:1c:10:0b:20:c1:
09:12:53:66:f1:3a:e7:64:30:b0:29:89:24:72:5e:
a0:5b:4a:16:eb:49:56:93:e9:95:26:e4:68:22:85:
b4:65:71:7c:4e:1e:52:88:b3:6e:8c:de:71:a1:28:
43:38:dc:17:81:ea:71:26:95:ce:24:8c:ca:22:79:
9f:30:a7:41:7b:3c:9f:72:02:28:51:99:77:86:b2:
a3:0e:13:2d:7b:76:90:39:45:c6:6a:fc:79:78:a1:
84:85:80:33:94:74:e4:42:bb:5a:18:2d:c9:b2:01:
63:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C6:16:4F:B8:6D:E1:4B:E9:F0:38:C4:EC:06:24:14:62:1E:1B:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/987EDC94A32411EF955EA278762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.201.0/24
Signature Algorithm: sha256WithRSAEncryption
99:77:3c:09:03:4f:b7:4b:85:4a:0a:d3:cd:93:98:72:43:5d:
a9:53:49:09:0c:16:3d:b0:37:45:1b:ac:62:2b:10:c4:78:34:
9a:3d:a7:87:67:92:62:b7:5e:a9:42:61:a4:69:64:5d:ca:16:
c7:31:e2:9d:f0:4e:c4:00:09:59:0a:24:ce:f6:48:68:28:16:
31:ce:9b:07:00:22:5c:9e:41:e2:7a:f1:8f:e0:23:4b:47:71:
72:79:d9:be:c5:e9:26:75:ff:f7:8b:4a:e9:05:87:b8:3c:b6:
9e:45:72:16:ea:5a:8c:dc:b1:44:58:2e:6d:0d:52:ed:1f:68:
93:61:15:f8:61:da:ba:b1:c5:27:65:d4:4b:ad:a2:86:98:36:
68:48:44:2d:d0:d2:0a:a2:45:29:ae:ab:e4:d6:8f:29:c6:55:
07:55:d7:8c:b8:bc:68:96:86:17:b9:55:9c:86:80:28:06:32:
d3:34:d1:27:25:d4:48:ee:18:69:5c:fa:05:69:d8:fc:ea:7c:
30:8d:5a:24:90:fe:a5:e1:9f:b8:b3:d5:fe:0f:a2:4c:09:0f:
cc:b4:cd:57:b7:9b:3a:8f:d2:ea:68:0b:06:20:f2:29:b5:da:
48:40:73:10:f1:22:b2:fb:2d:16:b8:a7:d6:78:93:6e:f2:2a:
c1:74:4e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:33:49 2024 by rpki-client on console-fra.rpki-client.org