Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C57DD72A4BC11EF90125477762E951A.roa
File: 9C57DD72A4BC11EF90125477762E951A.roa (raw, json)
Hash identifier: XwWk0MuyQOFwwGuj6vi6/D7n6T9ez0I9Vonp1wNIUJ8=
Subject key identifier: 39:D2:E9:D3:6E:18:8F:12:47:68:F0:4A:FB:9C:91:9F:A8:E8:A6:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E56
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C57DD72A4BC11EF90125477762E951A.roa
Signing time: Sun 17 Nov 2024 08:19:06 +0000
ROA not before: Sun 17 Nov 2024 08:19:02 +0000
ROA not after: Sat 14 Dec 2024 08:19:02 +0000
asID: 63969
IP address blocks: 154.89.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69206 (0x10e56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 08:19:02 2024 GMT
Not After : Dec 14 08:19:02 2024 GMT
Subject: CN=6739a6f9-3e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5a:05:7a:01:6c:10:c1:4c:b3:bd:7c:d5:fc:
01:5b:c1:ab:21:2b:af:ff:c2:32:32:07:45:b9:89:
b8:fc:89:01:61:86:cb:c7:2d:88:ee:d9:fc:b5:d0:
c8:52:67:b7:87:1b:f8:99:ff:bb:96:7a:65:a2:4e:
bf:67:2e:bf:6d:63:e1:d6:53:d0:4c:45:53:99:51:
75:d3:7f:84:4f:fa:f2:bc:90:85:c6:42:91:35:7e:
1d:a3:57:a5:c6:b8:95:1b:40:f8:f2:9f:48:0b:69:
45:f2:07:26:94:fc:c7:35:9b:90:4e:42:52:85:b4:
05:e3:37:15:f3:02:64:53:83:5d:6c:50:22:0b:08:
26:77:6b:61:16:04:83:17:70:38:ea:0e:15:34:11:
91:79:c0:0c:77:07:c4:e1:e1:1f:6d:c4:c7:6f:b0:
7a:94:8a:95:45:54:6a:46:20:80:2b:d1:fc:e9:34:
38:21:02:39:28:39:fb:ad:d4:72:81:70:2e:2e:d3:
c4:d2:30:3d:0d:f5:d6:d8:15:35:82:39:67:43:ca:
c2:5c:1d:a1:0b:32:3d:60:e1:1a:35:e0:ba:91:97:
36:2d:b1:8a:a9:49:46:0c:85:d2:c9:36:b3:3c:e3:
b1:45:6e:0f:fb:ba:a5:bc:77:40:1a:97:9e:83:86:
84:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D2:E9:D3:6E:18:8F:12:47:68:F0:4A:FB:9C:91:9F:A8:E8:A6:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C57DD72A4BC11EF90125477762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.7.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:d1:a5:69:77:8c:16:22:67:e9:ed:a9:ed:6d:6b:b0:0d:36:
14:31:9d:d8:c2:b0:fa:58:fe:6e:af:db:5f:a8:a7:49:f2:6d:
fe:2f:8c:85:13:e5:13:66:69:4c:86:da:2f:19:46:4e:bb:b6:
d9:76:de:7b:f0:a0:73:82:03:07:9d:dd:89:94:1c:22:02:16:
7d:13:a8:69:b3:db:10:99:e9:b4:83:d8:c4:d6:21:7b:52:4f:
d4:15:1d:be:64:a5:65:d9:8e:be:3e:79:d3:3f:ff:64:05:96:
a1:12:30:b3:38:d9:06:8d:d7:2c:51:71:a8:82:48:eb:61:64:
4c:bc:66:8a:bf:22:10:cd:28:9d:11:99:01:f5:8b:55:86:9d:
7e:c6:58:7e:20:65:07:79:eb:00:3a:e9:09:90:90:fe:63:d4:
c7:78:4c:07:35:89:54:9b:ff:64:5c:82:3f:78:ec:0c:22:a2:
67:9e:27:86:72:e6:7a:aa:ad:18:6a:0b:3e:cf:a7:75:62:02:
87:cf:20:2f:30:0f:58:1d:ec:06:8f:5e:5e:f6:4d:ed:f7:28:
d0:82:17:02:6b:de:44:bc:47:93:e4:ab:98:c6:eb:45:b6:15:
96:0e:15:9d:44:62:43:80:5f:98:5f:91:46:84:6f:eb:8f:33:
aa:17:c3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:54:35 2024 by rpki-client on console-fra.rpki-client.org