Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D36CE798286211EF88D4AFEC7CDC24C2.roa
File: D36CE798286211EF88D4AFEC7CDC24C2.roa (raw, json)
Hash identifier: EjqdrCJAQKmdWdxyXyyJEKg1era+ZRJMmjanoQmZa/g=
Subject key identifier: D7:B6:4A:54:A8:2A:46:37:BF:93:11:DF:C5:2F:C3:7C:81:D4:AD:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C1C9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D36CE798286211EF88D4AFEC7CDC24C2.roa
Signing time: Wed 12 Jun 2024 02:23:59 +0000
ROA not before: Wed 12 Jun 2024 02:23:56 +0000
ROA not after: Sun 15 Jun 2025 02:23:56 +0000
asID: 134687
IP address blocks: 154.197.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49609 (0xc1c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 12 02:23:56 2024 GMT
Not After : Jun 15 02:23:56 2025 GMT
Subject: CN=666906bf-cc14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a1:20:bb:42:6e:1d:a0:f8:7c:0f:ad:17:43:
a2:05:18:b0:71:df:d6:58:ea:0b:48:5a:69:56:59:
b6:ef:49:b4:13:51:f3:0e:57:4f:30:98:25:81:1f:
e5:98:28:d0:d8:e9:a5:2b:cb:78:c6:79:45:d2:db:
85:13:3e:e4:bd:f6:86:0f:cf:da:24:35:81:97:3e:
21:0e:53:ed:ad:f3:95:68:2a:d5:7e:d5:c0:0d:71:
4a:71:e0:59:6d:b7:13:86:09:82:d5:de:65:77:b6:
55:7f:77:7e:2c:9a:3c:12:c8:cc:77:91:c1:6b:6a:
83:9f:f9:13:c6:b7:a9:f1:dd:60:01:2c:d3:4a:5c:
55:ad:e2:f8:06:77:ec:2a:ce:8e:93:32:05:4a:11:
1c:52:96:dc:68:8a:29:de:9e:af:a1:7e:b0:0c:78:
97:ac:0e:8f:1b:db:22:d3:f0:13:da:02:76:92:9e:
2e:c3:15:a7:db:4b:cd:fb:fb:51:1e:67:80:3a:d0:
af:2d:cd:8b:6c:97:e4:67:bd:a8:f5:d7:53:db:9b:
32:7c:5a:d5:eb:8e:4c:36:1e:3d:3f:15:bb:20:43:
44:1d:15:94:b7:6f:7d:de:56:04:04:3f:f8:41:c7:
f2:64:45:00:15:b0:73:e2:ef:e1:fb:3f:97:b1:46:
53:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B6:4A:54:A8:2A:46:37:BF:93:11:DF:C5:2F:C3:7C:81:D4:AD:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D36CE798286211EF88D4AFEC7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.37.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:54:49:d6:68:65:1d:58:9a:26:54:9d:7c:68:5d:3f:67:f7:
9e:59:c3:79:83:db:0c:6f:64:d3:a4:11:b4:76:b7:e2:39:60:
ec:bc:a4:8c:4b:8a:7e:c4:ad:02:15:89:47:d7:2f:97:8c:af:
30:c6:51:0e:ab:65:68:43:d6:f7:6e:a5:1c:2c:34:c8:30:31:
d2:f6:ab:e1:34:21:26:db:fe:cb:28:5e:1f:b8:ee:cf:53:8f:
35:43:76:59:6b:bc:24:00:29:3a:36:5d:d4:98:ef:bd:d0:f8:
73:1f:aa:52:59:8b:11:0d:67:5b:91:a8:1a:7c:a7:34:0c:5a:
87:dd:01:78:85:48:6b:8d:5a:16:25:7d:9a:41:7b:e6:16:8d:
70:b9:3c:27:e4:62:2a:36:64:c2:74:77:4b:c9:38:73:20:09:
b7:3e:59:22:11:20:f9:03:25:58:2f:8e:b8:76:43:6c:94:25:
e8:5f:28:46:ae:9c:12:c1:f1:55:95:68:22:e9:30:60:4c:a3:
d4:a9:8c:ae:24:80:05:9c:f5:90:93:43:7a:cf:a6:ef:50:b8:
19:d5:f7:33:01:44:05:df:d3:b3:75:41:e4:83:07:f4:38:d7:
4a:ab:47:8e:fd:16:b4:d2:81:7e:24:b8:6f:64:20:09:12:86:
11:dd:90:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:29 2024 by rpki-client on console-ams.rpki-client.org