Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B902286CA73A11EFBDA18799762E951A.roa
File: B902286CA73A11EFBDA18799762E951A.roa (raw, json)
Hash identifier: ibQUR+mdFouCEVikEumKNaSvH0m+HepyU6t2YVySWPE=
Subject key identifier: 0B:92:F7:C5:2E:72:98:14:58:D9:E6:91:EE:61:94:E3:EB:1A:0D:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F9F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B902286CA73A11EFBDA18799762E951A.roa
Signing time: Wed 20 Nov 2024 12:26:53 +0000
ROA not before: Wed 20 Nov 2024 12:26:49 +0000
ROA not after: Fri 29 Nov 2024 12:26:49 +0000
asID: 5065
IP address blocks: 154.95.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69535 (0x10f9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 12:26:49 2024 GMT
Not After : Nov 29 12:26:49 2024 GMT
Subject: CN=673dd58c-b5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8a:70:58:d0:71:b2:d3:b3:49:63:d6:6d:d3:
ed:62:80:19:2c:26:e7:fb:9e:86:88:d1:a8:ae:d7:
47:98:d9:0d:11:c6:b9:f6:cd:17:e5:35:b8:03:55:
cf:7e:19:7e:e1:a0:29:11:4c:95:1b:02:d1:b3:ea:
eb:f3:3a:fa:8f:83:8f:2a:71:04:1e:9a:51:f6:4a:
89:34:dd:e4:a1:79:eb:b6:85:5d:59:cb:2d:2d:9f:
2d:73:1c:77:c7:87:d8:3c:45:3e:ff:ed:10:8a:f8:
21:6c:e4:c3:ff:3c:d2:a5:5a:fa:46:20:79:3b:3a:
21:97:63:2a:49:8f:12:af:21:e1:6f:12:12:d7:c2:
93:c5:54:70:85:19:0b:82:e8:1e:a5:3a:b4:54:be:
a8:f3:11:91:0c:d4:14:59:bb:0f:d9:38:7c:65:5b:
a3:9f:5b:a0:31:a2:9c:fe:b7:5a:7e:16:ce:aa:2c:
0c:a0:c2:4d:7b:b9:d7:02:4b:ce:b6:96:73:2a:2f:
28:03:93:90:92:fc:76:4c:d8:1c:bf:7b:c8:73:50:
e4:c9:1f:dc:0d:8a:c2:76:50:5c:ec:42:fc:ae:25:
40:02:3a:ae:73:43:4e:30:8a:b4:69:fe:9e:9e:50:
00:14:bd:00:f9:ea:e3:dd:0a:75:4f:3a:f4:a5:16:
41:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:92:F7:C5:2E:72:98:14:58:D9:E6:91:EE:61:94:E3:EB:1A:0D:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B902286CA73A11EFBDA18799762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.20.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:25:ea:2b:fe:da:01:b8:22:87:cf:a4:98:03:85:b1:8c:73:
5b:99:f3:ca:7b:8b:7c:2f:cb:f8:da:97:97:19:0f:1d:cc:82:
d3:13:3a:c1:d5:89:3b:97:f7:fa:5d:96:bb:c8:94:1f:f8:ba:
fb:3c:e1:7d:fe:80:d7:72:dc:03:2a:51:13:a5:55:9e:07:1e:
cb:eb:85:86:af:a2:01:e5:d8:1d:d2:41:7e:b3:ec:e5:d4:d2:
46:c5:4c:18:50:51:30:d1:5c:c8:72:97:d7:06:90:82:b3:ef:
12:a7:24:dc:e6:10:83:38:fe:fe:c1:46:b8:ea:bc:48:51:cb:
e9:5a:f4:dc:d1:68:10:6a:76:b4:85:47:8c:b1:31:3e:99:47:
a4:ae:d1:29:35:78:10:ed:d4:f3:34:48:22:ff:67:4a:11:0b:
22:b5:f8:61:d8:93:5f:e7:10:61:85:52:2b:63:ec:7c:90:d5:
cb:d7:d1:2e:f6:bd:48:1c:2d:2f:99:8a:e1:4e:b1:d8:b5:d0:
f5:d3:c3:ce:68:ca:13:f2:4b:e0:9f:4e:88:a4:e7:97:dc:46:
49:09:80:c2:75:f7:99:68:05:ee:17:ff:2c:09:9a:36:81:ae:
1e:ca:d7:e7:5f:a2:23:d4:19:e4:ad:b5:64:41:6a:b1:e2:85:
92:9a:b9:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 18:35:17 2024 by rpki-client on console-fra.rpki-client.org