Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CDD9713C344911EFAF235F79762E951A.roa
File: CDD9713C344911EFAF235F79762E951A.roa (raw, json)
Hash identifier: zPgf7gnwiHGiP2o2Cwpnp+Q+f+nI1/wJdr1IZOYos7c=
Subject key identifier: 75:85:85:DB:18:38:73:BD:48:87:B6:84:0A:96:9C:FE:45:C1:8C:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C771
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CDD9713C344911EFAF235F79762E951A.roa
Signing time: Thu 27 Jun 2024 05:55:06 +0000
ROA not before: Thu 27 Jun 2024 05:55:02 +0000
ROA not after: Mon 30 Dec 2024 05:55:02 +0000
asID: 984
IP address blocks: 154.90.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51057 (0xc771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 05:55:02 2024 GMT
Not After : Dec 30 05:55:02 2024 GMT
Subject: CN=667cfeba-6a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:27:09:cc:3a:17:42:4d:5a:47:e8:5c:ac:
b6:64:ab:89:d9:6e:ab:e9:e4:2a:4f:c4:c5:0d:26:
0f:44:55:c5:c2:47:fb:f8:3f:2e:e3:5a:59:12:4b:
aa:91:1c:25:e1:4e:a5:2b:44:6c:0c:79:94:5e:f4:
10:1e:8e:09:4e:28:4e:dd:0f:8c:c4:1e:bd:bf:23:
b1:00:b1:a5:d1:cc:cb:ed:2a:fb:26:fb:0e:49:51:
2f:9c:23:b6:95:32:06:d5:55:e1:f9:e1:ee:eb:fa:
88:60:94:75:45:58:c6:b9:7e:f2:b2:05:0e:92:2e:
f3:8c:80:20:a6:88:95:81:cb:24:af:09:c6:78:b6:
32:21:45:9e:8e:b3:90:a8:d2:2f:39:d1:ea:aa:91:
63:11:31:9a:fc:4e:9d:16:e1:79:ea:dc:dc:54:49:
9e:5c:74:42:89:a8:a6:44:6b:9f:68:e3:ce:8a:24:
27:0b:ea:57:7f:22:24:9c:9f:a1:aa:32:99:6d:7e:
86:01:98:93:4c:a0:b1:a9:22:73:1e:80:a8:d8:88:
9b:2c:5b:fc:d6:32:07:b3:aa:e0:1c:cc:27:a5:a8:
dd:e8:c0:d4:1c:89:17:8e:25:65:f0:6a:29:1c:cc:
d8:bb:17:50:ce:4c:f3:45:4e:25:d8:f2:12:39:bf:
3b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:85:85:DB:18:38:73:BD:48:87:B6:84:0A:96:9C:FE:45:C1:8C:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CDD9713C344911EFAF235F79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.64.0/18
Signature Algorithm: sha256WithRSAEncryption
d0:1c:86:32:b5:0f:d6:a7:70:ce:00:65:e9:bb:0e:52:4e:3b:
ca:ef:36:6c:3f:5e:c2:49:8b:94:b0:f0:1c:15:56:21:b5:fc:
99:7b:77:be:e2:81:a3:5c:96:e6:54:df:ee:54:72:ea:c1:e6:
86:1c:06:e9:29:00:04:b6:3d:fc:25:2c:58:fa:8f:13:bf:d8:
0b:c8:71:90:1f:fd:8a:5a:f7:7f:3f:82:4b:b5:92:58:02:df:
79:f6:6d:55:f5:e5:e9:4f:e6:fa:cd:d4:30:85:03:95:bb:04:
9f:90:b1:88:17:b3:00:f7:26:3a:d0:7c:28:58:99:0e:ab:33:
2f:9f:1c:e0:c6:32:5e:a5:91:79:10:55:20:2b:1a:52:62:b2:
a2:fd:33:64:86:e3:6d:17:6d:2c:7d:24:23:b2:9f:c8:52:fd:
b4:9b:c4:bb:44:e4:90:ab:1e:33:f7:8a:fd:df:86:eb:99:07:
0c:42:f6:db:8c:be:06:7e:81:36:a6:43:14:23:a1:83:47:29:
cc:c7:08:0a:8b:e4:39:dc:9a:1c:fb:46:af:0c:66:5c:be:b1:
4c:da:b9:43:3a:1c:83:2f:a2:50:16:e0:2a:b6:6f:b4:34:b9:
de:6b:ba:52:b7:01:eb:07:b8:06:45:74:2b:9d:99:2f:5c:7e:
ac:c3:c0:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:59:14 2024 by rpki-client on console-fra.rpki-client.org