Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA138316A71F11EF984D5172762E951A.roa
File: AA138316A71F11EF984D5172762E951A.roa (raw, json)
Hash identifier: er41LlbP3j2JGfbrOR5pee53eF8hmqxwo6IrLJEFIhQ=
Subject key identifier: B1:67:35:3F:D7:E8:F0:C3:95:0E:66:93:73:81:9F:A9:C4:8B:46:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F5F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA138316A71F11EF984D5172762E951A.roa
Signing time: Wed 20 Nov 2024 09:13:11 +0000
ROA not before: Wed 20 Nov 2024 09:13:07 +0000
ROA not after: Sun 08 Dec 2024 09:13:07 +0000
asID: 39600
IP address blocks: 154.84.148.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69471 (0x10f5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:13:07 2024 GMT
Not After : Dec 8 09:13:07 2024 GMT
Subject: CN=673da827-3d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e8:0c:a3:c7:6d:1a:67:93:5d:d0:1d:a0:a6:
71:2e:10:db:19:3c:9c:ac:79:69:ea:bf:d1:e1:c9:
e9:98:bd:5f:e5:46:6c:20:18:f4:83:61:6f:6f:b8:
d3:a4:11:81:dc:e2:96:78:77:66:83:aa:8e:6b:4b:
fc:a5:4a:34:f3:2e:d2:1c:d5:4d:f4:02:ad:82:45:
db:75:10:8d:fe:89:e1:62:bb:03:c6:d0:61:dd:a8:
c5:67:83:46:a1:9a:24:30:95:57:80:76:e1:de:e8:
7e:26:a5:99:3d:e2:8a:bc:67:e2:89:2e:ca:e6:94:
6d:39:7e:37:29:dd:c7:0f:fa:a4:2a:a1:91:60:d5:
ff:1e:30:80:5f:66:04:e9:10:a2:f9:d6:70:48:e6:
b5:e8:4c:b8:b4:bd:13:67:f1:5c:bd:6a:95:55:8c:
d6:f4:ae:03:82:9c:96:36:d6:3a:4d:91:e8:46:4b:
36:97:d8:5a:c5:bd:f8:23:4d:0b:a8:43:51:25:82:
64:26:e4:ea:57:5c:91:0f:81:65:11:f7:e0:63:8c:
f5:61:ed:29:56:71:89:31:3b:fe:84:c6:2e:31:f3:
8b:d3:3c:24:ab:42:54:4e:e2:7c:82:c8:d2:f5:94:
7e:4b:16:1b:7c:6c:a1:e4:88:8c:22:24:eb:5e:d2:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:67:35:3F:D7:E8:F0:C3:95:0E:66:93:73:81:9F:A9:C4:8B:46:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA138316A71F11EF984D5172762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.148.0/22
Signature Algorithm: sha256WithRSAEncryption
70:77:9b:09:e3:72:eb:3a:84:78:53:1b:49:3f:0d:5e:da:fd:
ab:a1:f3:9b:24:16:06:4a:08:78:4c:65:6a:2b:58:41:26:f1:
11:8f:58:cd:e3:ee:ab:65:9c:fc:d2:ba:c7:73:7e:1e:3d:03:
2f:a0:8e:8c:62:a6:f8:f1:92:bb:4f:9f:49:4f:f4:63:1c:54:
e1:e0:7d:c8:97:47:62:bb:49:37:2f:9b:94:0b:ff:ff:07:4a:
0a:9e:8a:50:1d:82:ff:3f:f7:1e:c4:ce:82:fd:08:e8:b9:f1:
70:94:ad:f9:e4:30:5e:ec:58:98:7f:c8:4f:32:17:a8:42:e8:
90:67:51:65:43:ab:f7:75:20:b3:b1:b7:f8:75:8a:c2:4f:f3:
d4:87:74:6f:36:8e:b6:4a:b5:2e:32:9d:0f:ba:0a:b5:58:56:
86:f9:5a:0c:b8:c3:98:09:3c:79:c1:52:79:5d:65:69:d1:f4:
15:e6:09:d0:72:04:4f:9a:c1:6e:63:f6:47:e4:88:5f:72:46:
a9:fe:2c:41:30:77:d6:4b:06:67:c2:64:42:cd:ff:14:f0:38:
fe:76:a6:2c:4e:31:c3:1d:07:cb:c5:54:77:2d:47:01:f1:ca:
80:d0:66:47:91:d8:e9:a4:cc:2c:5f:d0:7e:76:78:cd:09:76:
31:0c:6a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:19 2024 by rpki-client on console-fra.rpki-client.org