Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB13B03695DA11EFAAC8FD85762E951A.roa
File: DB13B03695DA11EFAAC8FD85762E951A.roa (raw, json)
Hash identifier: 17XiJD+jVau67c4IPpr0VSIrenie8zs679LgbfcF2SA=
Subject key identifier: 3A:07:62:BA:08:39:15:2D:7C:C7:24:05:A6:34:2A:2B:6E:6D:9E:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010396
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB13B03695DA11EFAAC8FD85762E951A.roa
Signing time: Tue 29 Oct 2024 09:47:48 +0000
ROA not before: Tue 29 Oct 2024 09:47:45 +0000
ROA not after: Wed 04 Dec 2024 09:47:45 +0000
asID: 61112
IP address blocks: 154.83.96.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66454 (0x10396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 09:47:45 2024 GMT
Not After : Dec 4 09:47:45 2024 GMT
Subject: CN=6720af44-0fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:69:cb:0c:10:27:d4:b9:9f:8e:d8:a9:56:df:
58:2c:03:f0:f1:fd:bf:4a:da:89:7f:b8:63:09:1e:
b4:85:5d:ca:5a:3d:f5:1a:66:c3:50:28:39:33:60:
ac:a3:00:bc:03:55:e1:a1:21:d2:4c:49:17:5e:a0:
81:ef:db:0c:8d:49:ad:95:56:35:4f:89:75:ab:3f:
95:bb:0b:26:f8:b2:9e:3d:0c:1d:33:13:6f:0f:19:
b6:2d:0d:74:51:37:83:43:39:08:d5:4a:59:8c:7e:
12:51:51:d3:1f:22:c3:ed:9b:1e:cf:51:45:2f:58:
f3:f3:74:b7:6e:05:1f:81:7d:97:0c:3c:cc:4e:a3:
d1:b8:51:49:29:12:56:1d:87:79:32:6b:9a:3f:67:
4f:ed:36:ce:bb:32:31:d5:71:dc:23:b0:68:bd:79:
be:5a:a8:af:b0:4b:34:1c:72:79:e4:1c:de:28:00:
57:c8:f5:43:4d:f2:c8:63:80:5d:8e:82:c9:b5:e4:
52:24:58:18:d4:0d:49:59:4d:1d:e4:64:cf:29:c7:
97:e4:8a:4e:a9:54:d4:cc:51:bd:c2:16:8b:45:d4:
79:06:23:cc:41:2b:6e:a7:58:2e:61:76:1c:a3:d3:
95:04:a7:86:9f:0b:69:22:dc:54:37:ae:e0:2c:95:
50:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:07:62:BA:08:39:15:2D:7C:C7:24:05:A6:34:2A:2B:6E:6D:9E:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB13B03695DA11EFAAC8FD85762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.96.0/23
Signature Algorithm: sha256WithRSAEncryption
73:3e:71:f1:ed:eb:5e:21:cb:19:ca:e1:20:4a:42:90:46:d9:
33:eb:9e:90:cb:5f:c5:b0:58:91:59:0f:32:67:6c:c8:38:5e:
e9:75:5d:37:4d:1c:e7:67:84:ce:3e:1b:a1:74:28:82:95:5e:
91:c6:7c:0a:7f:2e:b5:e5:58:a0:51:26:62:f5:e0:6f:01:89:
99:14:21:2a:9b:f1:ad:51:e8:36:fe:e2:1b:ca:28:96:8f:8c:
9f:67:75:23:b5:98:c2:bd:b9:94:5f:63:dd:20:7a:42:4d:ca:
b3:7d:1e:49:8e:3b:43:e6:0f:2d:1e:ae:a8:83:80:8b:73:32:
3d:c8:e7:64:46:dc:78:b6:71:17:0a:81:87:2e:60:d0:95:6d:
c5:aa:08:df:d0:b3:99:71:10:fc:98:af:b8:a2:0e:e8:c2:7d:
f5:e5:bb:90:2a:6c:2a:34:ee:58:5b:06:20:78:65:a0:96:f0:
ce:af:81:41:0a:1b:45:47:70:57:0a:64:38:f3:b5:16:19:2e:
69:72:1d:e5:30:01:c8:33:7d:98:c0:d5:03:41:21:e6:b4:4a:
8a:6f:4a:6c:73:ea:5c:4b:2f:74:af:d7:85:99:67:24:e1:5c:
b8:fc:47:51:f0:ca:cb:dd:31:e5:96:25:d2:1a:ae:dd:ed:d2:
f1:d5:f5:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:30 2024 by rpki-client on console-ams.rpki-client.org