Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B89D37ACA73C11EFB2385BA6762E951A.roa
File: B89D37ACA73C11EFB2385BA6762E951A.roa (raw, json)
Hash identifier: Mv0BzHczD1Z9D0sgLKpqbYeztqy+yPIQ3LR5UYnzS5E=
Subject key identifier: 3E:66:A6:F9:B0:4F:AF:4B:88:FA:F1:56:6B:A4:D3:38:7C:69:18:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FA3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B89D37ACA73C11EFB2385BA6762E951A.roa
Signing time: Wed 20 Nov 2024 12:41:11 +0000
ROA not before: Wed 20 Nov 2024 12:41:07 +0000
ROA not after: Sat 30 Nov 2024 12:41:07 +0000
asID: 139471
IP address blocks: 154.210.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69539 (0x10fa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 12:41:07 2024 GMT
Not After : Nov 30 12:41:07 2024 GMT
Subject: CN=673dd8e7-97e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:16:b1:f8:57:e3:28:d7:73:ad:2d:ca:31:a4:
0a:26:e5:c5:6b:bf:36:db:50:57:49:fe:df:6f:58:
f0:b7:7e:2c:61:94:7b:b2:a3:27:af:4c:57:83:3e:
7a:e7:22:b0:21:e4:6b:96:c5:46:78:fb:ef:bc:78:
7f:c5:3e:e5:89:95:e2:67:df:d3:9e:bd:29:35:4d:
4d:b1:f9:a0:13:38:ff:06:ad:f1:fc:40:18:a1:87:
23:d4:a1:d7:d4:5a:17:8c:34:2d:3a:3c:59:18:3b:
c4:6e:b1:fc:61:e6:0f:13:70:ee:a6:00:85:03:69:
51:d7:2d:c6:2d:4b:79:f1:1e:5a:84:2b:5a:fc:c3:
ea:d0:fc:fd:07:11:90:e7:d0:02:41:9f:f3:96:c5:
d0:26:2e:cd:d6:42:dc:4d:39:c1:a7:13:70:57:f8:
8e:58:fd:49:14:27:8e:7c:8f:dc:18:50:3b:b1:fa:
c2:4c:62:78:bd:e8:4c:db:de:94:71:21:92:03:03:
85:fd:90:53:1e:ba:56:81:f5:27:a1:23:06:f1:99:
bf:f9:39:59:a0:99:d8:91:2a:2f:ef:72:b2:90:3b:
3f:3a:43:dc:05:26:8d:7f:bd:02:93:0a:35:8b:4b:
94:ad:6f:d4:1e:8b:1d:90:de:9f:cf:4e:0a:a9:b8:
ed:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:66:A6:F9:B0:4F:AF:4B:88:FA:F1:56:6B:A4:D3:38:7C:69:18:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B89D37ACA73C11EFB2385BA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.32.0/19
Signature Algorithm: sha256WithRSAEncryption
22:eb:a2:cf:10:a6:51:30:b3:42:64:07:20:37:8e:49:28:13:
6b:29:1f:f6:2f:3d:c4:86:b4:f5:e3:f5:83:6d:11:64:8c:da:
30:26:76:9f:3d:80:6c:18:04:07:39:81:35:61:53:52:2d:af:
c9:9a:42:38:77:bd:b8:93:bc:37:d1:47:2c:0a:d6:b6:2a:14:
d6:14:72:09:d2:32:a5:e6:53:4d:67:7c:0f:6e:be:7b:7d:42:
28:66:56:5a:92:af:03:99:63:c3:5d:b8:fb:bc:d9:ec:48:bf:
b8:c3:13:e9:c2:b3:ee:72:74:f4:28:b3:df:49:32:4a:ee:1c:
bf:a1:d1:88:b8:5b:75:f4:a9:05:97:40:4b:7c:1b:86:80:59:
fc:bb:8a:b1:aa:e3:32:6f:ac:56:ba:38:a8:03:cf:95:fc:2c:
e2:62:25:ce:3a:16:d6:bb:96:f2:6f:c5:37:c0:6a:8b:85:c0:
34:4f:34:dd:3e:b0:ac:49:80:eb:d2:75:b5:80:75:63:83:68:
99:7f:0a:d5:a1:5f:26:d5:08:1c:4f:df:86:22:ca:d2:4f:0b:
d0:d3:ef:f1:36:33:8f:de:d9:59:d2:39:4f:33:25:9e:44:1b:
68:c5:3d:bf:0d:1d:e7:e7:37:de:05:01:0f:3b:88:71:e4:9c:
90:7d:26:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:25 2024 by rpki-client on console-fra.rpki-client.org