Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9188634A8D811EFA165244A762E951A.roa
File: C9188634A8D811EFA165244A762E951A.roa (raw, json)
Hash identifier: 9fEUk7oiwsOlr2Xn87lf1JSZyuCq/PTQ3IkDJhZQRSA=
Subject key identifier: 48:46:A6:8A:A7:9B:6F:44:2B:A6:23:81:85:32:78:34:E8:B2:93:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01103B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9188634A8D811EFA165244A762E951A.roa
Signing time: Fri 22 Nov 2024 13:50:51 +0000
ROA not before: Fri 22 Nov 2024 13:50:47 +0000
ROA not after: Mon 02 Dec 2024 13:50:47 +0000
asID: 44559
IP address blocks: 154.211.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69691 (0x1103b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 13:50:47 2024 GMT
Not After : Dec 2 13:50:47 2024 GMT
Subject: CN=67408c3b-10a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e2:b4:f5:16:5f:47:cf:eb:b0:eb:69:61:c6:
d3:4e:8b:f4:d9:36:12:fe:26:4b:a4:6b:8e:c4:cc:
51:1e:8c:de:6b:bc:f1:87:87:ab:e6:08:f0:34:34:
66:d5:e8:64:05:d2:39:1d:03:c8:1d:da:d9:f6:1d:
fe:cb:87:4d:89:b5:0f:5b:ba:05:37:ca:ff:34:89:
4d:ad:ef:8d:54:bf:7e:91:a7:96:81:83:20:36:69:
3f:f4:6d:50:aa:1f:e6:86:fc:ba:a4:03:ee:65:4c:
34:c6:ce:50:30:7e:5f:fc:de:d7:3a:43:29:50:a9:
c4:8b:24:20:64:e7:8e:ce:65:e6:60:aa:59:cd:b8:
12:fc:b3:c0:f5:89:c1:27:d0:d3:31:0d:cb:44:20:
06:1d:7d:37:07:fa:d6:bd:5f:db:15:c0:ae:cd:1a:
47:a3:fe:e6:61:92:04:85:c3:77:39:c3:09:03:6b:
53:6f:f9:29:a3:af:e7:f4:23:8d:73:8a:4a:6a:4a:
bc:6d:a5:58:d1:f4:f2:c1:5a:e8:fb:90:ac:9d:58:
39:f6:38:9d:41:05:1d:ba:57:3b:45:d1:c8:ad:2a:
7b:cf:c8:4d:de:44:b3:07:f5:52:56:60:1d:bf:31:
e0:37:02:d5:36:bd:0b:25:15:bc:e3:e2:01:b8:d3:
bc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:46:A6:8A:A7:9B:6F:44:2B:A6:23:81:85:32:78:34:E8:B2:93:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C9188634A8D811EFA165244A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.47.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:a9:94:2f:27:b8:a0:33:61:f8:49:61:8f:d8:4c:ad:a6:b7:
b6:52:de:e5:09:2d:3d:d1:c3:ae:b8:5a:a0:c9:59:06:6f:27:
59:49:4d:53:5f:cf:77:05:e0:a6:d7:7c:f7:2c:8d:2c:e1:6e:
8e:c6:af:e9:3d:ad:13:00:09:94:28:0a:f2:0b:c3:bd:f9:e0:
cf:a8:85:f0:f9:4b:74:1a:21:28:d7:2d:b0:db:1e:c6:3e:16:
85:7b:cc:fd:40:7f:40:58:9d:2d:80:48:40:12:bb:80:62:f1:
56:ec:49:cf:e6:18:75:16:14:f3:16:de:62:2f:1c:9c:51:65:
3f:99:4a:8a:b0:06:ef:43:b5:e0:38:bd:47:3c:10:98:22:3b:
02:0c:1c:8c:cd:73:b7:a6:e0:24:70:d8:ed:b6:2f:18:0e:7c:
ff:64:de:54:09:20:45:6c:fb:4e:b2:78:45:88:f5:ea:52:e2:
01:b1:0a:73:27:97:99:e5:81:72:46:34:c2:15:d9:7b:99:40:
df:67:b0:24:ad:0b:18:cf:c6:e1:b8:95:3e:a1:e4:ac:7c:27:
33:7e:a4:39:39:d4:43:bb:e6:28:c9:73:09:f7:6a:d1:b3:1b:
03:32:e7:e5:60:75:9f:fb:e3:cf:90:ad:26:bb:0e:a7:60:48:
30:c1:77:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:35 2024 by rpki-client on console-ams.rpki-client.org