Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7EC6132A0E511EF90FC659B762E951A.roa
File: B7EC6132A0E511EF90FC659B762E951A.roa (raw, json)
Hash identifier: dnla7hHe8BP3reGcurV8EY26myZ37pMI3xwouOVQHQY=
Subject key identifier: 30:D2:66:F3:C8:04:CA:43:9C:DC:57:25:24:EB:0D:F5:EE:C7:49:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C56
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7EC6132A0E511EF90FC659B762E951A.roa
Signing time: Tue 12 Nov 2024 11:03:16 +0000
ROA not before: Tue 12 Nov 2024 11:03:13 +0000
ROA not after: Fri 22 Nov 2024 11:03:13 +0000
asID: 39600
IP address blocks: 154.205.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 11:03:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68694 (0x10c56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 11:03:13 2024 GMT
Not After : Nov 22 11:03:13 2024 GMT
Subject: CN=673335f4-c44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:2e:18:c6:6b:c0:0d:46:02:45:bf:98:18:
b4:d4:68:e7:3d:6b:8d:da:e7:d3:16:09:67:94:36:
6f:02:a1:92:54:79:8c:4c:cb:9b:ad:c3:b9:fe:f4:
07:98:df:f4:13:68:91:66:e2:0d:f6:a9:25:b1:a2:
44:be:84:19:24:22:8f:a8:fc:72:4d:1a:93:73:18:
4a:b5:82:b2:72:ff:14:31:ce:79:d9:c5:61:63:6f:
88:a8:04:e9:52:3b:08:e6:98:e7:76:fa:c5:3b:61:
fa:9d:1c:16:0c:03:05:c3:43:8f:44:a3:f3:d4:ef:
da:f4:02:03:95:35:20:81:d2:5a:3e:2a:8c:98:38:
9d:5f:40:15:f9:38:b4:64:f1:e7:e8:73:cd:aa:16:
77:f9:98:07:16:4d:22:67:84:57:7a:df:1f:7e:31:
8a:8a:38:21:e1:ab:d4:bd:33:f1:0f:e1:85:31:e8:
d7:94:37:d8:55:e2:78:0b:73:d9:69:db:d3:9b:fe:
15:96:2e:32:6b:98:a3:62:ec:0d:74:04:4c:84:87:
57:f0:52:6c:9c:e5:9e:ae:f1:82:ec:15:c9:1e:68:
6a:a8:1a:76:9b:d8:2c:44:54:fa:37:f4:a6:a9:c1:
56:84:7f:f4:46:88:28:c7:c5:bf:0f:1b:01:d5:3d:
36:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D2:66:F3:C8:04:CA:43:9C:DC:57:25:24:EB:0D:F5:EE:C7:49:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7EC6132A0E511EF90FC659B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.160.0/21
Signature Algorithm: sha256WithRSAEncryption
69:d6:13:bf:63:8e:af:51:2b:5b:4c:2e:c6:d9:a2:41:9e:68:
23:87:92:45:0f:ac:22:38:39:11:57:fa:21:14:cd:9a:2a:cf:
e6:21:7f:2b:46:b8:bf:3c:e8:f8:d0:f1:87:7c:af:cf:10:8a:
95:58:83:84:da:b5:4d:d6:9a:dc:71:2d:e9:c7:6a:74:b0:d8:
80:1d:6a:83:38:3a:dc:80:7b:bf:4f:00:23:6f:33:60:50:93:
93:26:91:c6:65:a4:43:cc:bb:7d:cc:39:f4:2f:94:60:9b:e5:
9d:2e:d5:e9:07:d8:6f:d9:fd:f2:84:11:f7:5b:ea:75:f5:9f:
3b:18:f2:8d:a2:d5:c5:f8:56:b0:6d:4d:e3:f2:cf:70:1b:8b:
ed:b0:48:58:31:e7:c2:b0:6a:9b:5b:8c:fb:40:43:ed:36:59:
17:bb:8c:a9:1a:8e:d5:50:06:55:09:e8:99:2b:14:48:b1:11:
d2:29:73:2d:1c:9a:4a:1b:5e:6e:83:9c:5b:04:05:af:25:f3:
66:74:1c:df:52:ac:c6:a4:64:18:9b:5d:56:de:ca:a1:a8:34:
ce:ca:ab:92:f1:1d:8b:1e:96:45:97:fc:5f:de:5e:63:74:91:
2a:33:42:c7:c4:36:62:5a:c0:f6:57:37:4f:72:5a:c1:0e:2a:
89:28:92:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:22 2024 by rpki-client on console-fra.rpki-client.org