Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6A74CDCA33411EF872B565D762E951A.roa
File: B6A74CDCA33411EF872B565D762E951A.roa (raw, json)
Hash identifier: 3xjlMsyfwU4O7wwyjqpcQkRAvQjknJo3mo/TKhLVmvg=
Subject key identifier: 01:7F:62:88:A1:57:53:36:B8:B1:01:3E:CB:35:4E:54:DA:7E:47:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D88
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6A74CDCA33411EF872B565D762E951A.roa
Signing time: Fri 15 Nov 2024 09:33:47 +0000
ROA not before: Fri 15 Nov 2024 09:33:43 +0000
ROA not after: Sat 17 Oct 2026 09:33:43 +0000
asID: 137443
IP address blocks: 154.91.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69000 (0x10d88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 09:33:43 2024 GMT
Not After : Oct 17 09:33:43 2026 GMT
Subject: CN=6737157b-dd3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:a0:72:52:82:bd:0a:e5:1b:07:46:10:9f:
8b:a9:01:38:b9:c2:35:e2:69:2f:6d:a0:32:7a:fa:
f5:1e:04:48:cb:fb:60:e4:65:fb:0d:04:32:71:21:
36:97:a7:40:15:06:b7:72:7f:b8:e1:34:ec:94:bf:
4f:65:22:fe:62:1e:56:31:9d:f2:5c:6e:15:aa:b8:
4f:be:e0:94:29:f6:78:67:52:48:9d:e7:ec:1c:2c:
2a:13:2a:dd:95:81:9c:fa:f1:38:26:97:eb:37:fa:
ff:e7:9a:f6:04:c1:65:f5:cd:a8:87:99:a7:49:f8:
ab:fc:0d:d9:3b:2e:9f:cc:ec:2d:cc:af:ac:99:1e:
59:7b:39:a1:75:2b:b0:78:2a:de:31:06:a5:7a:8c:
99:7f:77:d6:b5:d3:cf:a5:ab:45:7a:ec:79:60:36:
49:e9:76:50:4c:14:e1:f7:32:4d:3f:de:9b:17:a5:
32:e4:72:e8:7c:72:36:df:71:ae:f3:b5:1c:b3:94:
cb:e9:ca:4a:a1:f5:c7:3d:e5:97:b8:eb:9f:71:7f:
19:2b:79:96:5b:42:29:de:25:ee:24:66:e1:b9:f3:
21:f1:0d:8a:13:1e:c9:2f:99:a0:79:4c:09:ed:c9:
67:04:23:97:23:8f:21:2b:3c:2c:df:b4:82:77:5d:
ba:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7F:62:88:A1:57:53:36:B8:B1:01:3E:CB:35:4E:54:DA:7E:47:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6A74CDCA33411EF872B565D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.32.0/22
Signature Algorithm: sha256WithRSAEncryption
35:87:33:d4:f5:7c:49:75:70:e3:b9:27:ef:60:7d:3c:1d:1d:
67:bc:97:e8:1d:ec:e9:f3:21:ec:94:62:ae:65:68:18:9b:7f:
99:a3:bb:60:ed:9f:63:da:67:3d:a5:35:a5:95:49:07:85:ad:
18:8d:bf:7a:e4:3b:cb:13:bb:be:38:d5:75:9f:89:b4:5b:89:
34:97:1e:d5:dc:f6:21:2e:a7:56:88:19:51:55:4e:55:4b:f0:
58:b9:4b:7c:78:2d:fe:0d:3f:1c:c6:df:fe:5a:8d:a0:fb:9f:
4a:a0:0c:ba:eb:33:07:2f:a9:30:92:72:4c:2e:b7:09:0e:74:
ab:d5:0c:75:4a:c2:3e:54:ca:a4:de:0d:b3:79:3a:c4:52:92:
01:6d:a0:21:b5:e8:c2:96:67:36:6e:64:98:7e:10:5d:8c:ac:
e6:b0:1c:c6:b5:3b:a5:00:46:33:16:38:99:e2:eb:a5:ad:5f:
98:de:bf:1a:87:45:c4:6d:17:55:4c:81:40:fe:d9:9b:43:76:
9a:e9:ce:ff:c6:7f:fb:ca:3c:96:ae:47:39:ed:72:94:e4:73:
50:b8:3c:05:32:d0:9c:d7:58:f1:b2:fc:bf:c5:9e:77:4a:2a:
a4:36:94:3f:cc:b3:87:13:e7:df:bf:0c:2a:cb:89:17:5b:66:
0a:3b:68:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:22 2024 by rpki-client on console-fra.rpki-client.org