Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB800F10A72411EFB47A8F91762E951A.roa
File: CB800F10A72411EFB47A8F91762E951A.roa (raw, json)
Hash identifier: Em2qoB6n0bqad7nujXvaHqXM0E4PMboDD5gxyPKG5i4=
Subject key identifier: 06:45:98:1D:30:95:9A:94:6B:E4:ED:76:F7:AA:8C:BB:B6:9F:25:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F79
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB800F10A72411EFB47A8F91762E951A.roa
Signing time: Wed 20 Nov 2024 09:49:55 +0000
ROA not before: Wed 20 Nov 2024 09:49:51 +0000
ROA not after: Sun 15 Dec 2024 09:49:51 +0000
asID: 51396
IP address blocks: 154.213.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69497 (0x10f79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:49:51 2024 GMT
Not After : Dec 15 09:49:51 2024 GMT
Subject: CN=673db0c3-4e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:bf:dd:b5:1c:b5:93:0e:ca:80:2f:19:5a:dd:
53:50:85:0a:41:40:78:0e:1a:af:3a:dd:39:d5:78:
86:e8:48:7f:8c:1c:18:f3:8d:c6:32:7f:01:15:a8:
47:33:0a:70:63:d2:a4:e0:db:c2:a2:c6:ea:6f:a5:
2e:be:6a:45:0c:84:5b:07:5d:07:f6:1b:80:8b:26:
5b:91:b7:89:e8:b3:5d:56:96:ad:8c:8e:86:d9:0b:
ec:94:b5:a8:3a:9d:b5:b0:dc:05:ef:cb:5c:b2:a5:
03:d0:b8:e0:a0:f3:95:48:5c:86:1f:c0:eb:b2:2a:
d0:d0:0d:92:d3:1b:0a:a4:5b:01:85:47:6d:7d:0d:
68:55:b2:22:34:3a:1d:d2:53:40:7d:28:01:ff:35:
39:df:44:61:94:89:91:69:ef:80:36:4a:27:f5:b6:
84:75:6c:09:91:0f:38:04:af:69:42:83:46:78:02:
c5:4f:1f:2a:97:fb:f6:da:fd:2b:2d:97:fa:4f:71:
7e:b9:3c:16:bd:c2:6a:57:05:10:4e:73:02:56:4a:
85:4a:c4:9b:0a:f5:44:b4:e6:9a:56:13:23:50:83:
69:8c:b9:49:5f:2d:20:3e:ae:0a:a6:f7:5a:ef:15:
78:e7:48:0c:b7:09:06:d4:b4:ae:56:70:ce:a7:51:
05:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:45:98:1D:30:95:9A:94:6B:E4:ED:76:F7:AA:8C:BB:B6:9F:25:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB800F10A72411EFB47A8F91762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.192.0/24
Signature Algorithm: sha256WithRSAEncryption
34:a4:ae:c0:22:c8:83:c3:c8:23:ca:bd:9b:36:fb:16:22:5e:
c9:00:af:ce:6c:fe:2e:b6:d1:f9:1f:66:55:91:74:05:18:ad:
da:ba:9b:6c:8d:29:92:d7:a3:c4:9e:75:03:78:cf:8d:a6:97:
f9:c5:0e:f8:2a:f5:48:8e:89:ea:bc:0f:60:1d:cc:a2:62:48:
49:3b:3f:3a:0b:43:db:37:00:41:5f:3d:28:9f:3e:82:bd:f9:
aa:9e:11:b6:7d:da:2c:2e:24:27:c7:4d:dc:04:36:2e:ea:a5:
ac:78:8d:7d:2f:64:f8:54:6a:fe:19:d6:0a:3b:5c:49:06:06:
d5:d6:91:70:9c:c0:ad:7c:eb:6a:e5:47:38:18:a2:34:76:a8:
41:bc:36:ef:ef:58:b3:d5:27:e8:98:50:9b:d9:8c:03:31:d7:
74:76:e2:6a:26:42:f9:11:38:44:07:86:68:51:d1:2f:09:1f:
2c:c0:6e:37:64:c3:ca:f3:f4:5a:6c:62:0b:35:8e:ea:47:62:
f7:bb:09:8e:14:6b:13:de:c6:df:e1:ee:a2:30:e4:b0:ba:fa:
3e:fb:55:97:1f:d3:26:11:9d:ba:1c:7f:96:f9:a6:8f:37:28:
23:f9:55:c9:9b:40:ba:a2:55:8c:b9:40:02:5f:74:96:c5:02:
18:bb:db:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:32:27 2024 by rpki-client on console-fra.rpki-client.org