Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDD6BBEA9DA411EF847EA0AB762E951A.roa
File: BDD6BBEA9DA411EF847EA0AB762E951A.roa (raw, json)
Hash identifier: cDpQ4hayJ8AIttwMHd7HbqCguNrlCSU0j80AkJOMBD4=
Subject key identifier: 3E:12:8D:F6:A1:37:03:EB:14:61:6C:27:9A:D9:33:6E:01:23:FB:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDD6BBEA9DA411EF847EA0AB762E951A.roa
Signing time: Fri 08 Nov 2024 07:40:36 +0000
ROA not before: Fri 08 Nov 2024 07:40:32 +0000
ROA not after: Sat 30 Nov 2024 07:40:32 +0000
asID: 18229
IP address blocks: 154.210.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68050 (0x109d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:40:32 2024 GMT
Not After : Nov 30 07:40:32 2024 GMT
Subject: CN=672dc074-c0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7c:98:99:1d:b2:46:dc:d1:e9:64:28:ca:4d:
7f:7f:7e:32:cb:2d:8c:fd:ae:cb:0f:3c:d9:64:bf:
27:5d:c5:42:8a:0e:81:6c:d1:5d:55:65:fe:41:3a:
5c:cb:87:5c:49:4a:85:54:fe:d8:56:f5:f8:ee:cd:
32:a9:32:fe:d7:68:af:c1:cb:e8:b0:8e:31:26:d7:
4b:e9:f0:14:45:2e:aa:60:8e:b5:f2:82:5b:44:7a:
82:41:58:4b:6a:a6:d8:64:55:56:d6:dc:be:1d:a1:
5f:f3:15:5e:75:51:c3:c8:05:bc:0b:9a:cd:6e:03:
d9:7c:d8:43:96:ed:ca:c6:30:c0:7c:d1:c7:43:73:
d3:8b:e4:97:4e:4f:29:43:61:69:65:11:2c:26:3f:
7d:20:5b:63:1b:26:25:a5:fa:6e:68:90:74:02:e8:
ae:10:c5:03:7a:c1:8b:85:e3:9d:f1:e1:b3:1b:28:
57:95:79:a6:4a:17:64:28:7a:fd:12:61:14:32:26:
27:ef:de:ce:9a:82:a5:ce:39:13:30:95:ea:d0:56:
44:39:2a:25:70:6a:6e:df:90:f2:88:10:d7:3c:83:
58:f1:42:73:0d:63:33:e4:bd:c9:a6:be:5f:f9:c1:
dc:68:50:52:2e:d6:4a:37:2f:d6:0e:38:c6:4f:48:
8f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:12:8D:F6:A1:37:03:EB:14:61:6C:27:9A:D9:33:6E:01:23:FB:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDD6BBEA9DA411EF847EA0AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3c:67:d1:ad:4e:b4:e7:19:1f:2c:df:4c:a3:38:33:bb:46:92:
09:d0:50:8f:5e:e2:66:64:cc:b9:82:5b:76:90:b1:9e:a7:13:
9c:50:70:a2:f2:2c:1d:61:e0:d6:04:fc:d9:6a:c0:26:76:e1:
cd:26:10:9b:98:a3:2b:d7:a3:32:fd:d1:b3:af:3a:4a:ac:e4:
c1:9f:ac:b3:25:e1:70:6a:d2:74:56:0d:bb:31:cc:4a:47:e8:
87:b5:c8:01:5e:0b:dc:fa:2b:98:4c:a2:55:13:50:26:6c:21:
46:53:fc:9d:8e:e7:6d:46:e5:b4:3f:18:cd:a0:38:6c:0e:7f:
4c:e3:9f:6a:f1:f6:e8:fb:38:01:37:b8:99:f2:db:b8:ff:d1:
f6:6c:11:09:b5:65:55:9e:24:0a:c8:db:04:d9:1c:e7:09:11:
cf:0f:d0:50:63:79:c4:84:12:96:a1:49:b7:19:7b:32:62:8c:
e9:5c:1e:c5:ce:2f:e4:d6:d5:94:ba:39:40:5f:f2:19:80:7a:
70:4f:35:55:a3:de:62:87:88:65:31:ac:fd:50:57:15:2c:98:
6e:39:83:f4:2b:44:46:04:5d:79:6f:4d:13:12:fe:28:33:dd:
f3:ca:bb:0b:fa:66:1f:5f:82:5c:53:6f:88:2c:5b:25:f3:90:
e4:78:fe:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:25 2024 by rpki-client on console-ams.rpki-client.org