Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFE86478736711EF900ECC46762E951A.roa
File: AFE86478736711EF900ECC46762E951A.roa (raw, json)
Hash identifier: DQM7HStNVu2xQ8I02bzwZ7CPNiSyrGhgVsek5b+GRUk=
Subject key identifier: 3F:83:B6:72:98:CC:55:DE:BA:D6:C8:A0:A0:2A:A9:86:FD:32:0B:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFE86478736711EF900ECC46762E951A.roa
Signing time: Sun 15 Sep 2024 13:37:44 +0000
ROA not before: Sun 15 Sep 2024 13:37:41 +0000
ROA not after: Sat 30 Nov 2024 13:37:41 +0000
asID: 138152
IP address blocks: 154.94.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61218 (0xef22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:37:41 2024 GMT
Not After : Nov 30 13:37:41 2024 GMT
Subject: CN=66e6e328-7360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d3:c0:0a:ce:da:8d:b5:79:d6:16:b5:8c:ed:
24:68:f8:0b:49:c9:21:c0:7d:9a:a4:9b:a0:f9:7c:
8b:8e:81:23:00:22:88:46:2e:08:1a:2a:01:d0:c6:
42:9c:ad:47:c3:67:e8:dd:c3:07:9f:96:ac:8c:3a:
9f:17:9b:3a:ff:84:bb:ca:63:42:03:f6:f2:1f:03:
da:e9:4b:e8:7b:41:29:df:26:14:45:3b:92:da:c2:
09:02:5a:6c:86:eb:3f:ca:34:7e:f0:84:97:7d:e8:
f2:e7:57:2c:1f:0a:40:06:8b:34:19:d4:b0:3e:d8:
d1:02:d7:5c:71:61:1e:bc:76:cb:30:4a:c1:58:86:
6f:77:27:39:a9:c8:78:e5:d0:b1:f8:61:7c:d4:3b:
a8:2a:c1:97:4a:37:67:c6:22:c0:09:2b:3a:ce:08:
4f:5b:fc:2c:9f:83:58:1b:68:59:25:4d:69:83:45:
d2:cd:6b:ee:c9:67:db:ad:a4:34:12:d6:e5:4e:13:
37:be:24:8d:a4:1f:ae:8a:c4:4a:e0:ea:16:65:96:
51:e3:77:72:68:93:18:54:30:fb:4e:01:28:9f:11:
12:d3:f1:a8:aa:9a:3a:8b:11:2b:d7:69:6b:b4:06:
b2:b8:07:05:75:a9:2a:94:cd:e7:11:db:14:9d:fd:
f1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:83:B6:72:98:CC:55:DE:BA:D6:C8:A0:A0:2A:A9:86:FD:32:0B:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFE86478736711EF900ECC46762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.6.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:9d:5f:53:31:5b:25:97:db:de:24:39:cd:26:2d:06:c6:e4:
fa:a6:1e:5e:7d:c0:6d:3f:c1:3b:e0:a7:93:04:ef:37:1e:e1:
75:22:ee:40:7c:17:8f:10:35:a9:17:eb:75:1c:98:87:58:ad:
1a:ef:22:88:b2:c2:06:11:b8:73:3e:87:90:f3:3b:b7:b2:8d:
3d:6f:d8:98:4e:6a:2e:4e:6e:b2:98:cf:97:64:16:02:28:4a:
19:87:db:9d:2b:fc:37:f5:61:76:75:6a:f8:34:8c:0e:0e:13:
0c:bd:d9:23:d0:42:85:86:b9:6b:d2:55:ef:96:9c:31:79:39:
78:86:28:9c:b3:d5:ee:42:b6:03:4c:39:65:83:ea:32:b5:f5:
fa:62:8a:7d:7a:88:1a:1d:0e:3f:fc:d7:06:cc:93:c4:07:ed:
41:1c:25:de:35:c4:cc:96:80:a6:58:5f:f0:26:8d:de:8a:d2:
06:26:0a:20:8e:ae:fb:e3:12:f5:af:09:03:98:07:53:d0:ec:
83:b1:1b:3b:32:c9:eb:47:8d:97:13:6d:c3:60:38:ab:7b:05:
51:e5:cc:8f:d6:ca:9b:c4:c2:55:d4:20:ae:3e:d9:84:b1:b0:
ff:45:78:1f:a2:cc:28:e4:11:00:7f:9b:c4:46:1d:b5:18:36:
03:17:a7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:20 2024 by rpki-client on console-fra.rpki-client.org