Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B69B166E911F11EF91F83DB8762E951A.roa
File: B69B166E911F11EF91F83DB8762E951A.roa (raw, json)
Hash identifier: h3+QA2lpR5PyTdSXMh2/DNOlZfuM8dosyMT7v0Bd99Q=
Subject key identifier: 26:7D:69:C8:93:DA:BF:FC:23:18:F8:B6:FB:7A:70:E3:CC:B8:76:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B69B166E911F11EF91F83DB8762E951A.roa
Signing time: Wed 23 Oct 2024 09:18:06 +0000
ROA not before: Wed 23 Oct 2024 09:18:03 +0000
ROA not after: Tue 26 Nov 2024 09:18:03 +0000
asID: 395886
IP address blocks: 154.201.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65780 (0x100f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:18:03 2024 GMT
Not After : Nov 26 09:18:03 2024 GMT
Subject: CN=6718bf4e-fbe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:31:ef:10:fb:54:88:8a:71:83:4d:36:cc:5c:
57:d8:5f:41:ed:3c:8a:f2:bc:80:e7:4f:4c:63:26:
a1:23:e9:b9:87:a7:26:31:a5:81:dd:ba:51:83:4d:
4c:74:ef:5e:40:39:96:01:f1:49:71:87:7d:58:73:
53:c5:69:68:33:3a:7e:a7:f3:ec:18:c1:0a:42:fe:
17:86:fb:c9:24:2b:d3:50:b5:7b:e7:cb:00:f9:b5:
3f:79:77:16:ab:48:f9:88:67:79:8f:6d:b3:ee:f7:
2a:d9:ae:c2:2f:be:f1:af:bf:c9:31:15:30:52:56:
a6:10:9b:4c:d5:45:c6:1b:a6:13:b4:2c:f9:9b:db:
5f:7f:5d:54:ec:51:04:dc:07:66:f7:e6:54:ef:94:
3c:9a:26:eb:08:e0:df:be:d9:82:4a:32:6d:13:f5:
c8:e1:d4:61:6f:d1:dd:95:29:e5:d2:e8:5d:5a:c5:
dd:b4:ed:99:06:14:89:c4:14:03:c9:b0:ef:a5:c1:
9a:70:89:60:de:90:bd:15:e8:31:e4:cf:2a:aa:43:
28:20:da:f3:7b:6d:46:2b:f9:da:8e:87:11:ae:7e:
9e:8e:7f:8d:28:17:42:e1:55:c1:4f:d7:f9:d2:3b:
84:27:31:56:a1:03:76:79:97:46:dd:86:f9:b3:5a:
cb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7D:69:C8:93:DA:BF:FC:23:18:F8:B6:FB:7A:70:E3:CC:B8:76:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B69B166E911F11EF91F83DB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.88.0/22
Signature Algorithm: sha256WithRSAEncryption
38:f3:d7:03:40:e5:6a:79:ab:5b:81:c5:99:95:fa:c4:83:5e:
06:b9:3e:c3:1c:a6:4d:4d:b9:0d:ff:bf:b2:9f:a2:39:c5:63:
f8:b8:23:54:f6:27:67:c8:4a:77:e9:f2:cb:1d:e7:00:0d:d3:
90:42:26:8f:c5:37:4d:2f:41:54:d0:64:6a:d9:76:72:01:35:
e9:5e:20:9c:ae:98:1d:6f:e1:99:43:d3:cc:04:3a:aa:83:d0:
14:e6:2a:15:f9:23:ae:7d:fb:3b:d0:5b:8a:32:a3:9c:b9:b1:
17:95:44:00:03:42:9e:bc:b2:f8:fa:2a:90:45:03:a5:52:ce:
39:da:ea:13:69:e4:ae:cd:a2:7f:ea:ee:dd:d0:57:9b:bd:e9:
e1:54:41:4d:0b:47:d6:bc:64:8a:3b:ec:76:e0:6e:16:ee:db:
7d:26:35:78:32:fc:79:cb:81:e1:86:74:c7:7c:22:05:84:ac:
71:d5:d5:bb:aa:d8:c6:ba:9c:f5:00:21:09:6d:4b:e0:34:f5:
98:f4:47:13:10:d4:91:4b:e3:87:95:28:68:92:1b:0e:1e:ed:
46:f8:a4:03:08:87:3b:3c:a9:2c:1e:34:62:ba:70:32:3c:19:
bf:df:b1:90:6e:07:9b:c0:f0:82:48:20:87:6c:39:e1:09:12:
76:8c:75:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:44 2024 by rpki-client on console-fra.rpki-client.org