Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6B761629B8611EF8838CA4B762E951A.roa
File: C6B761629B8611EF8838CA4B762E951A.roa (raw, json)
Hash identifier: DFF1dYh17iVKM4uTtkqukl0NQlClh47+2yfmJ1ZeQbY=
Subject key identifier: AF:2E:BC:09:18:45:16:5A:FB:8B:ED:A6:F0:6C:8D:68:08:FE:E8:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010819
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6B761629B8611EF8838CA4B762E951A.roa
Signing time: Tue 05 Nov 2024 15:01:03 +0000
ROA not before: Tue 05 Nov 2024 15:01:00 +0000
ROA not after: Sat 07 Dec 2024 15:01:00 +0000
asID: 51896
IP address blocks: 154.194.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67609 (0x10819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 15:01:00 2024 GMT
Not After : Dec 7 15:01:00 2024 GMT
Subject: CN=672a332f-03ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bc:7c:c4:52:82:5a:28:1e:f4:55:c0:47:03:
a6:97:f4:d8:2e:f7:e9:a3:0a:08:3e:ff:4b:53:86:
e2:ae:2a:c0:06:3f:6f:4c:4e:6f:52:7d:7b:e8:d9:
0b:d1:d0:ac:f6:ec:f9:b4:4b:f4:9c:20:0b:89:41:
6e:64:28:f9:5e:3c:9d:bb:92:f0:76:cb:56:f1:b4:
d6:ee:ec:9a:41:91:e0:34:0a:76:40:f3:c5:ba:f1:
22:0c:58:d8:32:ec:b3:bd:ae:16:9c:98:a1:c8:35:
23:b6:59:bb:b8:57:b2:a8:bc:f8:e5:c2:be:e6:cf:
28:70:f3:0c:81:a4:e3:cc:9a:82:17:af:15:d4:7c:
eb:b3:9c:49:24:73:9c:52:e5:a1:b2:b8:9b:92:4a:
ff:0a:af:91:c2:1a:9d:ae:ca:35:9e:bd:f1:b8:f9:
02:6c:e8:27:28:6c:db:87:90:1b:6f:48:4a:bb:d7:
2b:e8:38:41:3b:7e:50:9e:1b:c3:4b:41:2a:05:d6:
65:07:74:a0:3e:a6:86:81:a2:91:1d:41:17:e8:9f:
1c:56:14:19:88:ce:a3:fd:31:22:24:9e:11:c1:2c:
03:81:9e:4c:14:de:01:cb:67:f0:22:ed:ff:79:24:
96:1a:14:ea:b7:87:62:87:31:d3:37:12:2a:78:9f:
00:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2E:BC:09:18:45:16:5A:FB:8B:ED:A6:F0:6C:8D:68:08:FE:E8:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6B761629B8611EF8838CA4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.43.0/24
Signature Algorithm: sha256WithRSAEncryption
af:3a:2d:17:ec:a3:9c:dd:42:7b:59:57:ad:34:ff:67:72:6e:
dc:ca:62:73:78:6f:51:e2:44:a6:38:50:a6:a2:40:ff:58:e8:
8d:13:da:fc:9f:ca:05:e0:61:3d:37:46:8b:10:da:8e:93:0d:
b8:90:b9:0e:b7:d1:4c:ae:00:02:23:25:a8:24:1a:76:72:ab:
91:8e:b6:fd:96:d2:63:8b:02:04:55:8d:d8:b9:4b:be:1c:ad:
45:3e:bc:66:e9:3b:02:74:29:30:13:1a:a5:10:46:24:7e:ae:
2d:7e:51:23:67:57:fd:da:3a:52:95:ad:36:e3:5f:a9:ae:46:
df:64:6b:17:5f:f0:77:e3:c8:d9:a6:96:25:13:7e:8e:fe:a1:
44:5f:cb:3e:7b:db:dd:95:ee:5d:7a:1b:34:d8:13:b3:09:25:
15:02:ee:6b:55:86:17:27:cb:10:d2:d7:b9:95:42:15:39:04:
54:8f:cd:0c:94:fe:5c:e6:92:e2:82:62:0e:80:de:72:a7:ce:
55:a1:d5:27:28:ab:29:3d:69:42:3e:87:7b:b8:3b:27:2f:da:
10:ee:5b:43:a0:b9:7c:af:10:09:11:83:66:4b:ec:f4:7f:93:
f8:53:c1:b2:c2:8a:ff:89:23:44:d7:ac:b4:8b:dc:e4:46:67:
f6:b1:f8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:35 2024 by rpki-client on console-ams.rpki-client.org