Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/994500C0AD5D11EFBFB10D48762E951A.roa
File: 994500C0AD5D11EFBFB10D48762E951A.roa (raw, json)
Hash identifier: p5MU5xHE2UgUtGJAMzfTtjAmJqjIlPFpEeLolfVT80U=
Subject key identifier: 5D:7C:66:B7:C6:6B:9D:3B:63:8E:AC:05:64:C4:6A:54:2F:BE:D4:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0114F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/994500C0AD5D11EFBFB10D48762E951A.roa
Signing time: Thu 28 Nov 2024 07:51:39 +0000
ROA not before: Thu 28 Nov 2024 07:51:35 +0000
ROA not after: Tue 11 Feb 2025 07:51:35 +0000
asID: 9009
IP address blocks: 154.95.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Dec 2024 00:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70899 (0x114f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 28 07:51:35 2024 GMT
Not After : Feb 11 07:51:35 2025 GMT
Subject: CN=6748210b-2081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:11:64:86:07:b1:c4:6f:5f:40:b0:14:b6:d2:
97:55:23:2c:fa:58:fd:95:47:3b:92:b7:38:25:84:
b7:61:29:96:4f:23:20:f7:93:ee:a4:1a:8d:21:2e:
20:3e:b1:e0:74:71:53:30:a7:c0:87:4c:b4:aa:ca:
7a:e8:20:c5:70:34:27:f4:91:1f:2d:ca:cc:eb:13:
c8:34:1d:1b:03:f3:45:d7:56:4e:5c:dd:0d:93:7e:
f8:1f:67:23:f0:db:cf:ff:5c:1f:64:b7:05:2a:71:
bc:e6:64:cb:10:a9:7d:1d:14:e1:32:d5:af:00:24:
ea:e6:57:de:a9:9a:cb:26:74:23:a3:f7:24:bf:76:
d8:ec:72:0d:7c:a4:41:59:76:13:e1:cd:9e:e9:4e:
a5:e9:7b:bf:28:5e:7f:fd:d6:11:f4:91:04:07:44:
da:79:1a:a2:89:b4:1c:b6:4d:48:29:cb:91:17:70:
b6:b1:56:84:c7:7b:86:75:12:14:e8:09:0e:c3:76:
6f:e8:bd:47:30:40:86:95:6b:8c:5e:85:3f:52:83:
a4:f0:dd:b2:2b:56:9f:38:b7:89:55:76:e3:65:ef:
61:85:50:6d:79:8e:b4:49:57:ed:4a:e7:a5:a1:2d:
5e:f4:85:8f:55:85:d4:50:40:8c:fd:19:8d:1e:bd:
fb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7C:66:B7:C6:6B:9D:3B:63:8E:AC:05:64:C4:6A:54:2F:BE:D4:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/994500C0AD5D11EFBFB10D48762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.32.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:81:0f:10:12:5a:d1:97:c6:0b:3f:98:34:e5:83:9a:49:5b:
04:92:b1:a4:2f:d4:d1:75:52:44:9b:90:02:8f:d9:28:ea:36:
b9:ed:d1:80:f5:00:f2:ae:d1:ed:12:0d:11:59:28:b9:dc:19:
17:e5:4e:18:61:bb:c1:74:62:44:e2:fb:1e:35:45:87:87:cf:
bf:fc:66:82:b6:f7:49:6f:34:b7:53:cb:20:9b:13:27:4b:d3:
07:f2:ce:9a:01:d9:9b:40:95:f0:f0:b1:cc:07:de:19:26:40:
e8:95:33:1d:2a:b3:1a:e1:44:b7:39:58:e8:c1:4a:c3:97:59:
7d:4a:15:e8:a3:fb:d6:99:ea:08:b2:27:06:f3:1a:4e:bd:9e:
58:15:a9:1e:6d:16:e5:85:e6:ad:7b:82:7f:e7:0d:37:15:96:
8e:95:35:7c:35:61:dd:d7:5f:be:a9:de:de:62:cb:48:dc:ef:
a2:6d:3d:a0:36:d8:50:c1:20:b4:cb:37:c4:30:40:72:0e:79:
58:8d:fc:c2:d0:12:56:48:2c:5d:93:45:a3:13:8c:c8:86:9a:
95:58:71:31:27:f9:ce:22:2c:e7:24:6c:98:00:44:48:3c:14:
cb:fa:c7:c5:82:9c:e0:73:82:e1:42:93:83:88:9c:47:0c:49:
af:40:70:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 15:15:13 2024 by rpki-client on console-ams.rpki-client.org