Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5637BDEA9A911EFB94AD86B762E951A.roa
File: D5637BDEA9A911EFB94AD86B762E951A.roa (raw, json)
Hash identifier: FCpCRswo/Ela/z6SDrp3JgHxa1GWArMNe8eK+qLvrJg=
Subject key identifier: E0:9D:93:1C:6E:46:E3:C5:57:B2:DC:3B:08:C5:00:9A:DD:FB:48:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01117A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5637BDEA9A911EFB94AD86B762E951A.roa
Signing time: Sat 23 Nov 2024 14:47:17 +0000
ROA not before: Sat 23 Nov 2024 14:47:13 +0000
ROA not after: Mon 23 Dec 2024 14:47:13 +0000
asID: 6079
IP address blocks: 154.202.138.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70010 (0x1117a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 14:47:13 2024 GMT
Not After : Dec 23 14:47:13 2024 GMT
Subject: CN=6741eaf5-4c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d7:62:ff:78:b0:c6:72:03:07:d5:6f:92:6e:
49:8b:ee:6c:70:2f:55:8e:7b:f7:69:6f:39:c8:13:
d0:08:0d:a0:cd:b7:f8:27:71:96:a2:5c:5b:78:2b:
fe:a5:2a:5a:64:50:e4:27:f1:38:88:3f:d8:e8:74:
30:38:ed:28:da:9d:d5:cf:a5:13:2e:c5:a7:38:db:
3e:88:a5:41:79:b6:91:24:b2:50:1d:29:0b:55:80:
e1:d9:41:04:c6:00:5e:e2:7a:49:1c:e2:5f:f0:4c:
43:ff:27:f4:aa:1f:8b:78:02:6f:47:5f:72:0d:de:
f6:fe:13:93:7d:fa:f6:31:a0:73:8a:6b:4b:28:02:
b8:26:5f:f3:6b:1d:a0:fa:19:1c:49:46:c0:94:af:
b8:39:40:e0:fd:40:e0:c6:46:ab:d7:26:7b:29:83:
2f:5c:71:e8:aa:d9:69:7f:9e:e3:e9:4e:10:ca:24:
fa:2b:4e:3e:7e:f7:d5:10:e6:1d:8f:39:a2:19:17:
be:d4:cb:13:bb:18:70:32:7c:81:b1:b2:ff:40:44:
49:07:d5:06:14:d8:d1:7b:77:aa:cd:26:aa:d7:e0:
de:b5:59:d2:f4:b2:fb:ed:be:08:cc:48:fb:2b:ee:
d8:b5:2f:62:14:e1:65:94:79:55:9f:4e:2c:65:c5:
cd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9D:93:1C:6E:46:E3:C5:57:B2:DC:3B:08:C5:00:9A:DD:FB:48:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5637BDEA9A911EFB94AD86B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.138.0/23
Signature Algorithm: sha256WithRSAEncryption
06:e0:9a:a3:3f:14:89:30:01:a1:16:e6:70:66:18:31:5a:6e:
73:e4:ac:fc:86:70:b1:b0:39:34:3f:f2:9e:e6:a1:ae:da:76:
f7:ca:c0:54:d4:96:b7:a3:0b:57:c9:41:50:84:e3:8a:f6:78:
f5:02:04:0c:8a:91:16:40:6e:fe:80:aa:86:a8:08:06:7f:54:
45:d6:8e:cd:8b:f3:68:b0:8a:31:cd:46:b6:a7:5e:07:13:e7:
0f:fd:70:f1:9a:d3:e4:39:60:41:f0:56:ac:9e:1b:7b:24:24:
a5:a4:91:a4:a3:79:ea:2f:34:34:6f:84:b9:4e:4a:52:db:80:
5a:12:b0:ff:19:96:19:6f:b2:5e:c0:cf:27:54:c1:f4:3b:5c:
bf:cb:45:b4:73:f8:2b:eb:01:01:a6:3b:a5:e2:c7:74:cc:c3:
09:b5:4c:47:ed:21:77:ec:3b:74:fb:e4:56:0b:ff:64:53:ee:
e7:45:21:7e:92:cb:f5:82:cc:21:c9:9e:1d:aa:33:11:f3:ce:
24:c6:93:3d:d4:9b:ce:1b:af:4c:53:ea:18:13:a4:4f:12:1d:
74:5c:e3:32:ca:57:97:6b:1f:3c:a0:8a:a7:04:a9:ca:87:77:
b3:f5:5e:57:0c:03:61:2b:1f:ae:cb:b4:f9:cd:a0:93:1c:68:
6d:41:09:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:48 2024 by rpki-client on console-fra.rpki-client.org