Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A523C1FEA26011EFB396A994762E951A.roa
File: A523C1FEA26011EFB396A994762E951A.roa (raw, json)
Hash identifier: yyQy2kF1jjRkLomNlPLmz9juYT3zaav8kssEpwOx1Do=
Subject key identifier: FD:10:D1:03:B0:55:58:45:76:4A:D8:81:F7:ED:FD:7C:DA:42:F2:58
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CE6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A523C1FEA26011EFB396A994762E951A.roa
Signing time: Thu 14 Nov 2024 08:15:44 +0000
ROA not before: Thu 14 Nov 2024 08:15:41 +0000
ROA not after: Sun 12 Jul 2026 08:15:41 +0000
asID: 55967
IP address blocks: 154.85.32.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68838 (0x10ce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 08:15:41 2024 GMT
Not After : Jul 12 08:15:41 2026 GMT
Subject: CN=6735b1b0-0a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0b:27:2c:66:ac:8d:88:b0:6e:80:40:52:95:
72:8f:17:db:d7:19:d7:55:ca:5d:61:f3:ac:20:fa:
59:f7:20:15:53:c2:54:78:62:40:0b:86:39:0d:7e:
46:22:67:b2:d3:c6:73:e3:17:ff:29:cf:e3:5d:f8:
72:9f:4e:71:71:44:b3:db:07:d0:2f:5b:56:f0:92:
75:1d:d6:5d:88:d0:70:67:12:54:df:05:64:bd:d5:
77:04:8f:6e:a7:7a:7c:31:5a:b7:16:b5:05:a1:9c:
7c:e2:ad:3b:6c:a5:d1:d3:77:ed:bf:5d:44:aa:a2:
b7:20:e5:57:12:50:2d:ac:b8:44:a7:9a:4a:d1:2a:
ab:f7:8e:b6:2a:fd:f8:db:78:c6:ba:4b:d7:f9:12:
97:7a:fd:f7:cd:09:6f:88:d7:cd:94:3f:3e:d3:06:
1f:1a:aa:a0:76:f6:d5:3a:58:71:df:76:28:e4:e0:
eb:ff:24:c8:20:1c:15:0b:f9:89:c8:68:23:59:3e:
ef:1b:58:50:75:0a:3e:05:57:84:df:da:5d:fc:a4:
73:7e:56:82:03:05:96:16:fd:e5:c1:ef:3e:d9:08:
13:61:b2:b6:5e:d4:2e:23:91:8f:3d:a6:b4:09:e5:
b2:f3:cf:a1:1a:d6:47:a1:b1:f3:03:52:17:90:ce:
e4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:10:D1:03:B0:55:58:45:76:4A:D8:81:F7:ED:FD:7C:DA:42:F2:58
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A523C1FEA26011EFB396A994762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.32.0/21
Signature Algorithm: sha256WithRSAEncryption
26:ac:c7:c4:2d:c6:b2:15:f5:2f:11:ee:38:a1:78:49:b5:23:
92:bb:04:5d:83:ac:13:c2:df:85:7a:60:9e:a6:c3:02:d6:bd:
08:3d:3e:fa:c3:e5:68:57:39:f9:bd:75:ad:97:ac:f8:5e:20:
1b:05:de:2a:f7:7e:45:5f:c2:c7:09:68:02:15:34:a3:5f:3a:
04:90:01:2a:1e:73:80:18:cd:b1:20:a2:ec:d0:4b:df:52:bc:
a6:c7:1e:64:74:0c:b1:0c:eb:d0:5a:4b:8c:3b:07:79:1b:8a:
4a:ac:28:41:7f:a1:d1:7b:e5:e5:97:11:2f:4d:4f:c0:f1:db:
19:e3:04:40:3a:cf:e6:37:42:64:af:a2:d7:72:16:44:5d:44:
0f:47:06:43:67:bd:52:a7:c3:95:17:3e:b0:d7:48:e2:59:23:
67:d1:ca:1b:de:38:6e:9f:88:2f:20:81:ae:8b:bf:a2:55:2e:
fa:df:d6:ff:5b:69:94:f2:27:a0:8e:b5:0a:6f:ec:4f:8e:ba:
1c:b2:3d:ec:ae:5f:63:be:4e:9c:d4:a1:7d:b1:20:3f:ac:34:
7a:19:f0:e4:52:65:17:e0:8e:3e:b4:f1:28:65:98:d2:23:d5:
d1:90:ef:5c:76:8f:e6:39:dc:ab:7a:bb:d0:8d:c6:18:4b:81:
5e:d7:66:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:41 2024 by rpki-client on console-fra.rpki-client.org