Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A32D6884A4CF11EFB7D6D66F762E951A.roa
File: A32D6884A4CF11EFB7D6D66F762E951A.roa (raw, json)
Hash identifier: eCcPKzfsH0ehbGtRksz+Nr8pgZc5zzwfF1wnssZNEVA=
Subject key identifier: E4:42:78:FC:CD:04:2F:3B:F4:4F:E8:43:BB:C1:56:55:22:B3:72:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EAC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A32D6884A4CF11EFB7D6D66F762E951A.roa
Signing time: Sun 17 Nov 2024 10:35:17 +0000
ROA not before: Sun 17 Nov 2024 10:35:14 +0000
ROA not after: Mon 25 Nov 2024 10:35:14 +0000
asID: 9009
IP address blocks: 154.95.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69292 (0x10eac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:35:14 2024 GMT
Not After : Nov 25 10:35:14 2024 GMT
Subject: CN=6739c6e5-8041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:55:c8:94:fa:65:c5:15:7b:e8:cf:a6:b2:7b:
9c:24:fd:74:a7:92:5f:bd:e0:79:b0:95:83:f8:ba:
ed:ca:22:51:c6:85:df:c3:4f:0f:45:72:da:a7:57:
7c:e8:b7:49:21:8c:c7:65:b8:6b:c7:da:07:2f:ed:
d3:d7:ae:09:ef:c8:f9:86:2a:02:89:5e:62:42:67:
c3:73:1d:59:f5:e8:55:a6:a4:39:ce:56:31:51:e8:
fd:2e:37:2b:38:e0:6d:53:01:ea:1c:09:aa:19:e7:
d0:04:dc:fb:a2:7e:eb:02:f0:f5:c0:16:8c:61:c3:
a8:ad:5f:ad:9e:c8:0e:a5:b3:43:e5:79:a2:32:cf:
3d:cb:0d:98:03:5b:e8:f9:f5:70:60:d2:81:d7:32:
5b:50:b7:bc:21:da:78:d2:66:49:df:c9:66:b8:03:
3a:4d:49:28:72:1c:78:70:47:f9:9b:f9:96:98:be:
57:b0:17:9f:26:6e:8d:ed:1f:b8:95:f2:80:c3:81:
6e:8c:79:5d:7a:69:73:76:9e:2a:19:f4:59:4c:41:
30:b6:23:ff:9e:e1:fd:e1:45:c3:2b:d7:3f:de:05:
fd:0a:46:13:eb:04:7a:8c:63:40:8a:cd:1b:52:93:
3e:b6:c8:5c:3b:22:e1:5b:23:5c:16:f1:26:14:b1:
e2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:42:78:FC:CD:04:2F:3B:F4:4F:E8:43:BB:C1:56:55:22:B3:72:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A32D6884A4CF11EFB7D6D66F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.38.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:08:af:bc:15:e0:56:94:12:2b:9e:9f:62:da:27:57:0f:49:
14:80:9b:c4:ce:a8:7c:c8:27:19:77:e5:54:c3:de:59:f8:72:
5c:30:af:1b:e9:03:a6:b6:bd:51:58:95:9f:ce:31:96:d4:a3:
76:1b:7e:66:43:4f:d0:00:9c:7a:ff:63:f1:a5:83:09:8d:41:
d1:74:a1:cf:41:61:e3:d5:17:c1:59:4f:1d:7d:70:88:6f:97:
94:71:9c:2b:ef:1d:dc:8d:02:62:04:0e:6f:27:1b:1d:54:bd:
49:a9:04:9f:79:f9:c8:00:27:1c:50:f2:82:c4:2c:1b:e3:a0:
c1:db:f7:c1:a4:b3:97:b3:76:db:cc:ae:e9:a6:c3:71:e7:31:
f3:a6:3d:52:1d:cd:03:e6:2d:fa:be:ea:60:06:80:8c:ff:cb:
1c:e4:c5:9f:e1:94:af:11:44:1e:d3:8c:bf:18:e5:5f:43:be:
6d:7f:b2:9c:70:21:ff:b7:a3:05:cc:2b:35:89:cc:90:54:ec:
c3:f2:0d:1a:5e:38:e9:d2:c4:c2:91:14:cd:35:c1:29:9b:77:
b6:c9:43:03:2b:ec:04:11:db:76:f0:14:e9:40:97:ef:87:4a:
d5:7f:6e:59:94:e5:1d:f8:73:e1:a2:8c:30:2d:b6:42:f7:84:
cd:64:8a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:58 2024 by rpki-client on console-ams.rpki-client.org