Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E62F5BE6A5D11EFB6F9D2BA762E951A.roa
File: 9E62F5BE6A5D11EFB6F9D2BA762E951A.roa (raw, json)
Hash identifier: cR82/e+dv2zrjZuSMiek65TZuJe0WNIeBqVyf7QwX2Y=
Subject key identifier: 07:05:74:25:22:11:19:F8:BC:6B:72:63:AD:BD:08:C1:42:0B:5F:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E9EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E62F5BE6A5D11EFB6F9D2BA762E951A.roa
Signing time: Wed 04 Sep 2024 01:32:59 +0000
ROA not before: Wed 04 Sep 2024 01:32:56 +0000
ROA not after: Mon 30 Dec 2024 01:32:56 +0000
asID: 17561
IP address blocks: 154.205.32.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59887 (0xe9ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 01:32:56 2024 GMT
Not After : Dec 30 01:32:56 2024 GMT
Subject: CN=66d7b8cb-9f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c9:1a:76:e6:a8:72:64:8c:1f:3c:ba:7d:2b:
45:b1:09:d5:96:3e:66:6d:88:05:5a:27:68:e2:12:
95:bf:ed:27:fa:13:02:05:44:fa:0b:cc:c8:eb:b5:
d2:ac:e8:e0:91:92:71:16:0c:86:b2:ee:25:6f:f1:
7f:f0:65:fc:f9:a5:ef:1d:1a:9e:80:22:3f:52:d4:
b8:8e:b7:4b:5f:dd:2d:09:8e:ae:de:f1:8b:6b:dc:
6d:68:16:d2:b4:ee:36:f0:80:5c:d3:5a:d5:c6:73:
56:9a:80:4a:d6:08:4d:cc:02:e3:75:f0:b3:b2:98:
2f:5a:57:59:51:e5:88:7f:10:f6:91:11:4b:f6:14:
85:12:a0:f9:00:22:2c:f8:13:af:7d:8f:84:1d:f5:
95:96:bb:d7:d4:ca:c5:43:15:b1:ca:09:0d:71:74:
13:c3:77:11:5f:66:da:e3:06:b5:bb:78:a7:f6:09:
db:cd:28:88:e2:59:b2:59:30:5e:63:c8:c0:51:9e:
42:9b:4d:3a:eb:fe:e4:50:85:91:6a:38:0c:54:9c:
e2:77:3b:f6:d9:6e:e4:c2:80:60:83:5e:1f:7a:e1:
a4:8f:da:de:6b:33:32:8e:86:99:d1:e5:03:45:75:
3d:3d:e7:d2:ed:8b:ef:6c:22:96:7a:ed:b6:cf:cf:
10:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:05:74:25:22:11:19:F8:BC:6B:72:63:AD:BD:08:C1:42:0B:5F:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E62F5BE6A5D11EFB6F9D2BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.32.0/20
Signature Algorithm: sha256WithRSAEncryption
09:03:d9:3c:c8:39:11:56:1c:91:66:4d:49:ba:40:8f:1e:7e:
a7:d9:a1:76:73:ca:89:d9:90:a9:15:a5:f0:e6:5a:36:07:8c:
9e:11:8c:3b:5d:ac:1b:fb:f5:ae:37:8e:49:39:7c:85:31:0a:
8a:15:c9:0e:5d:7c:6c:ba:a0:a9:3c:ba:02:cd:91:cf:50:6e:
c4:54:60:80:4a:c9:1e:21:d7:c2:68:aa:0d:89:6f:fa:f4:60:
ba:1f:9c:ac:fa:23:3f:4c:e2:10:c4:1b:55:00:ca:9e:2c:ec:
41:6a:2a:f3:1c:0a:f4:e2:d8:cc:90:04:6a:4e:2e:89:b8:b0:
0f:49:1d:6f:ae:68:47:0a:49:94:ae:41:66:d5:16:5c:6f:83:
4a:b0:ea:b1:b9:1c:c5:0c:34:cc:24:b4:f8:08:c5:e5:56:e9:
77:10:5b:38:43:92:e7:11:bb:86:2f:8d:4d:cf:5d:19:17:d8:
ca:65:86:32:85:82:a1:b1:f7:1c:37:ff:64:0c:fd:2a:ee:b3:
1d:d6:5b:35:64:67:ce:fe:e3:6f:3d:87:00:3e:ee:0a:6b:64:
c9:44:5d:c3:07:99:9b:c4:42:2d:e4:d9:c8:f9:3e:1a:83:f6:
84:8a:cc:a9:2b:50:07:d6:5c:ac:50:83:f2:16:ac:51:80:a9:
68:2e:da:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:18 2024 by rpki-client on console-fra.rpki-client.org