Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CABE20C29C1A11EFB3E94C76762E951A.roa
File: CABE20C29C1A11EFB3E94C76762E951A.roa (raw, json)
Hash identifier: 6oMJ7gFNX+4+RIUZZwR1CY/VBVTSvEZpYgu7mY0tXdU=
Subject key identifier: 6A:85:D3:B6:D6:BC:43:E7:2D:3A:27:70:6F:AC:CC:BC:7B:5E:80:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01085A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CABE20C29C1A11EFB3E94C76762E951A.roa
Signing time: Wed 06 Nov 2024 08:40:36 +0000
ROA not before: Wed 06 Nov 2024 08:40:32 +0000
ROA not after: Mon 30 Dec 2024 08:40:32 +0000
asID: 136907
IP address blocks: 154.93.100.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67674 (0x1085a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 6 08:40:32 2024 GMT
Not After : Dec 30 08:40:32 2024 GMT
Subject: CN=672b2b84-309a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b2:40:48:88:a8:03:61:d0:72:77:12:2f:ca:
14:a1:7b:15:86:ea:67:7b:7f:e8:60:3a:84:68:9b:
65:cc:87:d6:8a:b4:c6:ec:f5:4b:0a:87:db:2c:70:
96:6d:9d:2d:fd:33:f3:dc:10:1c:02:2a:28:da:16:
67:9c:05:a9:74:78:23:f4:77:4b:2b:29:9a:ac:14:
ec:2b:8d:bf:9f:5d:6d:59:52:02:28:38:f5:e0:24:
78:ad:a5:8a:1a:13:f6:e2:8d:1f:fc:17:f8:2c:a5:
0c:3b:b7:e8:17:ad:d1:37:06:68:19:de:de:d1:29:
26:3e:14:12:1d:1c:0b:4f:97:e2:a8:4f:d0:88:ac:
bd:17:46:51:6c:8b:af:6e:3a:10:27:4e:22:28:2f:
00:37:fd:c7:80:07:c7:58:2e:6f:4d:07:05:96:c7:
3d:7f:28:2d:9c:b6:f9:04:b9:66:44:ba:2a:5a:14:
bb:5c:33:37:66:a6:a7:a4:c5:18:3d:8b:a4:b5:1a:
d8:55:a8:ac:b4:15:0a:cf:59:22:3c:90:ed:41:d1:
b8:71:d9:36:43:d8:87:be:47:c5:17:3a:57:f1:16:
62:66:ac:2a:34:35:91:e5:54:89:91:ba:ec:9d:c7:
93:ba:6b:b6:4c:49:bf:d6:bf:6a:c7:3c:79:cb:25:
44:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:85:D3:B6:D6:BC:43:E7:2D:3A:27:70:6F:AC:CC:BC:7B:5E:80:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CABE20C29C1A11EFB3E94C76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.100.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:58:37:69:81:49:c9:72:b4:f3:b0:b3:6c:ea:ba:4f:af:90:
81:72:8f:6a:40:c8:12:c3:d3:3c:bc:50:76:40:d4:1d:df:d8:
bb:db:89:bc:af:f9:f9:19:6e:3c:d9:73:d2:b0:58:d1:0f:df:
3f:89:31:c4:67:76:21:fb:01:04:4f:dc:9c:89:ed:d0:2b:e0:
18:03:98:85:a1:22:f8:81:cd:cf:2f:7c:af:e9:84:c8:49:c4:
07:1f:60:7b:b7:08:ea:f3:74:a7:7f:d3:e6:b4:83:3f:cd:4d:
71:3e:36:34:7c:f5:7b:94:ca:3d:77:94:4c:12:cc:73:cc:de:
bf:c5:c4:ad:34:52:6c:a1:4a:0f:2c:1f:db:05:38:54:c4:d8:
35:21:55:ec:57:b3:3c:7b:9c:b8:e7:e9:f1:7b:10:ed:fd:6c:
b0:65:2c:d7:c3:b2:dc:55:b8:73:24:52:9f:da:3c:4f:5b:dd:
12:98:53:1c:ed:b5:52:63:16:17:68:92:bb:50:6a:6c:e3:ba:
db:20:08:fe:a7:7e:f0:e7:a0:27:3f:12:da:f7:9d:6b:c2:60:
36:73:2f:50:d1:04:50:6f:b9:9e:db:bd:82:64:10:67:c6:0c:
de:6c:0e:be:25:11:e6:94:ce:22:23:f5:0c:7a:c4:c1:bf:84:
4b:ae:a3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:27 2024 by rpki-client on console-ams.rpki-client.org