Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1DE988E986211EFB478A079762E951A.roa
File: D1DE988E986211EFB478A079762E951A.roa (raw, json)
Hash identifier: lJi9vbTbVkoiIogN9AAx/16t9BHOgLHs1RX13aJ2hy8=
Subject key identifier: F1:6E:D6:6F:D8:8D:BA:26:EC:F6:8D:CF:C8:FA:F8:C0:C2:A5:30:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010507
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1DE988E986211EFB478A079762E951A.roa
Signing time: Fri 01 Nov 2024 15:06:07 +0000
ROA not before: Fri 01 Nov 2024 15:06:03 +0000
ROA not after: Tue 03 Dec 2024 15:06:03 +0000
asID: 203020
IP address blocks: 154.207.140.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66823 (0x10507)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 15:06:03 2024 GMT
Not After : Dec 3 15:06:03 2024 GMT
Subject: CN=6724ee5f-bec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5b:d4:34:d5:8a:ef:c1:81:e8:a3:24:b4:72:
20:b6:16:45:2c:bd:32:12:1d:80:d1:9f:cd:81:1c:
f0:bd:43:e3:fa:c3:00:c2:ee:16:40:14:a5:a1:10:
5f:ae:d9:4f:94:18:3c:9c:ae:f1:1f:93:1c:75:c6:
43:18:18:0b:0a:f1:71:ed:d5:0b:4f:2b:b1:99:97:
a5:49:3c:74:68:c4:09:2b:52:96:f8:41:8d:35:5a:
49:bc:f6:d0:ec:fe:9c:1c:c6:e1:9c:04:76:0f:12:
eb:30:5d:cd:ff:10:b3:3e:dd:9c:83:6e:39:ab:e4:
09:ca:51:73:b7:1c:36:7f:db:40:f4:9a:13:31:78:
ac:3f:2d:4e:78:e3:3f:8d:9a:26:57:84:ec:e0:d6:
49:3b:fc:10:29:79:1d:6f:31:ed:97:84:f4:fa:21:
e5:06:1e:62:ea:2f:22:61:8f:38:a8:9b:15:ce:33:
17:56:6d:45:57:ef:4f:87:b9:84:19:b7:09:27:ee:
ca:e4:0d:07:0c:b2:b3:50:aa:65:50:ed:69:cd:8a:
33:9f:2e:37:db:de:a2:06:14:2c:32:0a:81:1d:aa:
54:ae:ce:c0:be:12:74:2f:ca:fa:d4:ac:cb:a7:3c:
c5:bd:04:3a:53:82:14:1e:39:af:0c:34:63:c9:51:
34:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6E:D6:6F:D8:8D:BA:26:EC:F6:8D:CF:C8:FA:F8:C0:C2:A5:30:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1DE988E986211EFB478A079762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.140.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:be:e7:88:fe:9f:9d:50:24:e6:ba:89:d7:c5:9f:11:90:26:
eb:75:5c:96:84:0a:c9:cd:75:62:ce:4f:23:bf:c0:66:af:26:
01:69:0b:e9:45:5a:3b:53:b2:7f:f0:0c:5a:4c:21:c9:65:75:
60:9c:4d:20:54:9d:04:da:a2:46:ed:82:44:ef:9e:a0:11:02:
6f:43:2e:9e:da:d2:52:ac:5d:b6:a7:99:d2:12:cd:99:8a:9f:
c0:7f:a8:6a:34:83:96:72:1d:e6:37:58:f4:27:a7:6c:0c:1f:
f5:46:89:62:d3:d7:29:93:cc:0f:96:17:66:d7:02:20:57:b5:
37:f4:2c:9a:9d:87:09:54:5e:fb:93:b0:8d:87:0b:f2:96:cb:
24:fc:06:6b:f8:14:35:0b:a4:80:bb:63:1a:85:e7:af:15:62:
4b:61:40:9b:04:c3:e0:1b:25:6c:80:10:6c:75:b7:e8:50:4c:
c6:71:36:4e:07:a8:43:9c:3a:8a:06:cf:6d:6f:44:07:58:c8:
c5:b1:9f:e4:1b:56:b0:3b:e8:17:1a:28:b6:15:20:1f:9e:d2:
4f:0b:0d:ce:ed:c0:fd:d8:10:b1:3f:50:33:82:03:96:d0:3c:
74:b8:4e:45:a2:d1:cc:c6:72:d1:96:c2:43:12:d9:aa:7c:30:
40:e8:2c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:26 2024 by rpki-client on console-fra.rpki-client.org