Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA9431DEA4C411EF8D1771A9762E951A.roa
File: BA9431DEA4C411EF8D1771A9762E951A.roa (raw, json)
Hash identifier: btRYZPY63uVKTkXK/xJytYKEeUAlVPpzJSFhXIfD+bA=
Subject key identifier: 4B:3F:2C:34:7E:82:AF:04:73:E8:22:CF:D9:5E:EE:C2:6F:70:C3:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E76
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA9431DEA4C411EF8D1771A9762E951A.roa
Signing time: Sun 17 Nov 2024 09:17:12 +0000
ROA not before: Sun 17 Nov 2024 09:17:09 +0000
ROA not after: Sun 24 Nov 2024 09:17:09 +0000
asID: 135097
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69238 (0x10e76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 09:17:09 2024 GMT
Not After : Nov 24 09:17:09 2024 GMT
Subject: CN=6739b498-ecf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2f:21:61:47:9a:f6:c9:ff:51:e5:5f:12:f0:
05:36:12:03:cc:01:32:e4:1b:0a:90:8d:71:62:a4:
98:68:3d:cc:76:74:ab:d5:04:10:e4:ee:e2:93:05:
d6:2e:b9:c1:51:e3:c4:5b:db:29:fc:3f:4a:1b:10:
f8:83:ec:ac:29:75:6b:99:dc:bc:5c:69:ed:73:d9:
2f:0c:cb:5a:06:f6:a0:8c:2f:6c:05:16:69:94:fb:
94:0c:8f:9a:73:24:26:a5:00:d1:b6:c3:80:16:ee:
22:d3:2a:68:61:6a:2e:8d:87:a0:09:a4:47:0c:b4:
ec:2a:fd:07:55:41:2f:f6:df:1c:e2:d5:31:1e:7f:
71:08:ba:c5:98:8d:f2:d4:79:0c:bc:6a:dd:65:d3:
33:ce:37:06:5c:29:10:85:17:95:ba:01:b6:fa:4a:
99:e8:b0:f3:21:9f:18:3c:a4:94:b2:25:db:18:ee:
ad:ad:1e:44:3e:d1:4e:c3:c0:3d:d8:20:a9:d2:a1:
9f:91:5c:dc:79:0a:f6:a1:73:3e:34:a2:a4:9d:94:
bb:c6:8c:11:8e:5f:4b:05:e9:f2:b9:5f:ff:26:bc:
cb:fc:ff:98:0a:b7:2f:ac:92:92:79:41:74:9b:61:
7a:cb:94:bb:75:d7:b9:9e:42:2e:76:1f:58:e6:c8:
85:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3F:2C:34:7E:82:AF:04:73:E8:22:CF:D9:5E:EE:C2:6F:70:C3:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA9431DEA4C411EF8D1771A9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2b:96:1d:6b:c4:fe:81:0e:ff:2f:76:78:2c:ab:a0:bb:b8:14:
45:8b:8d:96:b8:50:ec:44:b6:f7:5b:c5:d8:7e:57:9c:dc:d4:
d0:41:05:8b:21:e9:bc:99:cd:87:85:14:42:5b:9e:97:64:3f:
0d:40:6c:f3:72:8a:a5:bc:c5:27:bc:d0:84:b3:9e:04:de:0f:
94:d3:42:6e:b3:49:8a:74:04:c4:c8:4b:76:de:53:27:6c:eb:
47:02:b7:b9:a7:81:69:f5:9e:a6:f6:5f:62:25:49:b0:c0:dd:
53:b5:de:1d:ce:d4:2d:4a:4e:d3:25:a3:45:85:39:78:64:ba:
77:5d:69:91:9a:b3:cb:8d:5c:b6:41:db:18:33:a9:5f:c6:65:
3e:3a:da:20:ce:5b:c5:6b:bb:58:d9:9d:ee:90:a2:2d:b6:14:
fa:b5:de:6e:44:96:9e:5d:cb:ff:51:cf:fc:3f:d5:81:b4:42:
ce:a2:15:8a:c5:36:56:c5:23:60:6c:54:71:b1:c2:2d:b0:98:
68:2f:79:1f:c8:02:f7:61:18:dc:b0:47:61:50:54:ad:72:52:
ab:30:fc:d3:b8:d2:59:d9:42:ac:02:5a:1a:d7:9b:ca:32:59:
89:45:8a:c3:c0:c4:8c:76:88:be:19:d0:1a:f0:dd:22:95:f0:
a8:87:62:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:24 2024 by rpki-client on console-ams.rpki-client.org