Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5C29ECEA45011EFA574DF47762E951A.roa
File: D5C29ECEA45011EFA574DF47762E951A.roa (raw, json)
Hash identifier: VIAfUJeNRfOnwRgZC4H1d6XIOumMa9E1SLJ+ePy13sM=
Subject key identifier: 5B:22:E1:94:EF:F0:29:66:0A:C7:3C:BF:76:66:E9:2C:4F:B2:EA:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E1D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5C29ECEA45011EFA574DF47762E951A.roa
Signing time: Sat 16 Nov 2024 19:27:36 +0000
ROA not before: Sat 16 Nov 2024 19:27:32 +0000
ROA not after: Mon 25 Nov 2024 19:27:32 +0000
asID: 9009
IP address blocks: 154.92.124.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69149 (0x10e1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:27:32 2024 GMT
Not After : Nov 25 19:27:32 2024 GMT
Subject: CN=6738f228-a506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0a:5e:bc:74:cc:d9:57:b5:27:b9:13:45:78:
a7:c5:23:e1:be:a5:fd:2b:1b:73:a0:33:b7:17:0f:
ce:9e:b4:88:0e:b6:9a:8b:a4:33:d8:ab:bb:b1:a2:
ee:6c:9f:a1:91:1a:2f:b3:09:bc:1e:e5:0f:df:21:
8a:88:b4:7d:33:15:a3:ae:5b:46:05:91:b8:38:f7:
06:62:54:b2:4c:31:69:3b:77:61:f8:83:ca:39:5d:
ab:3d:c7:c5:d5:fe:6e:df:07:78:07:03:ba:48:0d:
30:58:cc:e3:6d:d8:2f:6f:4c:2f:4a:6d:c5:49:b0:
23:94:fe:3f:61:a4:53:93:84:55:2a:0e:b7:a5:ce:
19:3f:65:5b:9b:de:19:37:5a:28:7a:dd:98:1f:75:
04:73:d4:15:75:10:7f:eb:77:6b:c1:bf:e2:83:a7:
f2:88:b2:03:ce:0f:03:16:f9:11:e9:10:e0:cc:e4:
bd:f1:66:f1:62:0d:d9:7e:cd:89:b5:5b:bf:a6:83:
a0:9b:96:8c:5e:76:1c:41:b0:57:ad:37:88:46:ac:
63:31:c3:5f:dd:99:7b:54:7e:38:ff:fe:f1:00:64:
71:e1:2c:b9:9d:19:58:7a:8e:c4:2f:eb:11:ac:89:
9f:b6:df:4d:8d:57:ed:38:88:f5:b5:c8:0c:b3:1b:
e2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:22:E1:94:EF:F0:29:66:0A:C7:3C:BF:76:66:E9:2C:4F:B2:EA:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5C29ECEA45011EFA574DF47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.124.0/23
Signature Algorithm: sha256WithRSAEncryption
92:32:e7:3d:4b:80:17:c3:6e:b2:99:ec:01:38:50:9a:dc:f1:
e8:05:62:d7:a8:3f:6f:cd:3a:a4:0c:69:03:29:77:74:6d:bb:
7e:40:c9:ac:23:b3:a1:bc:fd:21:8e:80:26:ea:fb:77:e0:82:
e6:34:fe:f0:54:2f:9b:37:cc:15:24:b4:fb:ec:a9:ce:ce:a1:
0a:38:b5:fd:20:4e:0b:23:bd:e9:55:83:89:c7:fc:c7:1b:e6:
13:c8:56:dd:f6:95:45:c3:99:57:6d:e7:4f:6f:8c:3c:0f:72:
d2:97:4c:d7:1c:5f:4d:06:30:42:0b:44:81:bc:7e:f7:c1:25:
22:5e:36:97:bb:50:9b:8e:e2:a9:cb:9b:a7:35:c0:e3:be:e7:
5e:e1:b8:43:9a:db:1a:6a:fe:a1:2e:3e:63:9e:cb:d2:75:7a:
c1:02:d6:73:d6:63:36:65:31:dd:9e:7d:28:31:61:20:97:99:
a9:28:27:5f:db:63:b8:bb:97:7a:d3:10:68:a1:ab:f1:2d:5b:
24:b1:9f:fd:c9:93:50:80:7c:af:1a:cb:5b:03:89:cc:9c:dd:
97:c1:76:a3:f8:eb:a0:f1:72:cb:d2:e3:13:b5:77:80:07:c5:
ad:f8:03:36:20:3a:10:80:12:05:c9:ba:2f:26:12:a5:4a:be:
a6:76:a9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:09 2024 by rpki-client on console-ams.rpki-client.org