Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB7CCCA2A45C11EF94C28B92762E951A.roa
File: DB7CCCA2A45C11EF94C28B92762E951A.roa (raw, json)
Hash identifier: 0DSUjtZgqBc2iHxhLgxzif0DgxykBazY5n1ZB8CUjAw=
Subject key identifier: E8:47:F9:64:52:90:1D:5C:6E:BB:3A:F0:42:1D:80:00:9A:27:1B:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB7CCCA2A45C11EF94C28B92762E951A.roa
Signing time: Sat 16 Nov 2024 20:53:40 +0000
ROA not before: Sat 16 Nov 2024 20:53:36 +0000
ROA not after: Thu 28 Nov 2024 20:53:36 +0000
asID: 139880
IP address blocks: 154.194.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69197 (0x10e4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:53:36 2024 GMT
Not After : Nov 28 20:53:36 2024 GMT
Subject: CN=67390654-4081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b5:56:d1:49:1f:96:d1:c1:c1:c3:23:e8:e9:
2b:8b:e9:12:13:e0:7a:75:da:85:ae:8b:ef:1e:87:
24:15:cb:4e:7f:f0:e6:73:ff:61:4f:b7:c3:c3:48:
30:4a:b8:bb:e3:70:0e:64:d6:57:b3:fc:98:ca:ca:
35:ce:72:17:9c:1d:e2:05:97:e2:e4:21:f7:a8:5c:
2c:21:5f:d6:e4:58:2d:fd:37:25:e6:22:1b:28:bd:
36:3c:21:04:f8:3c:4e:de:13:18:48:ef:99:14:64:
0b:fd:10:07:33:9f:0c:cc:3b:6e:29:ed:40:3d:8c:
09:f4:ed:bc:e7:a4:03:36:4f:41:45:4b:48:8c:cd:
7d:a5:f8:07:52:e2:20:0d:56:35:38:6e:92:8b:23:
47:88:70:06:aa:41:a3:29:5b:6e:0d:6e:e2:fa:cd:
0f:f8:52:31:73:8e:74:09:9b:5e:e9:b5:c7:13:e5:
d1:49:65:45:84:87:af:e5:ce:00:da:fb:a9:e2:7c:
fb:14:91:91:b2:67:fa:7c:f7:26:f9:e5:76:3e:44:
5f:e2:09:ed:a2:93:c1:d2:09:97:56:c0:1c:5f:16:
e7:a3:c9:7b:85:34:91:86:da:aa:af:7a:99:bf:e0:
d2:2c:5c:ae:7d:2c:7f:ab:8a:07:70:3e:13:9a:42:
54:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:47:F9:64:52:90:1D:5C:6E:BB:3A:F0:42:1D:80:00:9A:27:1B:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB7CCCA2A45C11EF94C28B92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.128.0/18
Signature Algorithm: sha256WithRSAEncryption
1d:a5:12:ac:9b:08:90:15:da:a3:ef:8f:d2:5e:95:34:77:51:
ab:70:3a:4a:69:5f:36:a5:cb:9f:d8:46:1b:b5:dc:14:77:02:
8d:33:1b:d1:e7:35:ac:c1:40:4b:29:df:0c:1e:f7:38:86:31:
2b:06:f0:44:88:c1:90:59:07:01:95:9e:a0:99:ef:ad:ae:b2:
49:d1:f6:3c:c5:7e:ab:ea:0e:b7:bb:7f:17:75:34:31:1b:d0:
92:f2:10:e5:6e:3c:06:5a:27:cd:d6:5b:9e:7c:e9:64:09:43:
0e:55:2e:78:fe:fd:1b:cc:40:ff:f0:7b:f9:53:8d:9f:e7:18:
cc:5f:46:fd:89:a0:0b:cd:49:32:d1:5e:94:ba:c3:fc:b6:29:
99:a1:53:a4:32:c3:4b:aa:11:ff:8b:4a:ec:73:c2:c6:e0:d9:
0e:55:b0:65:bc:38:4b:c4:48:52:7d:92:57:77:54:10:f4:01:
e8:68:28:9d:90:f7:6b:fc:b2:e0:b2:dd:5d:34:1f:0e:ce:2e:
82:77:bb:99:ec:77:df:bd:b3:e1:42:48:3d:08:fb:06:f6:a7:
47:21:e8:94:9a:95:ab:54:9f:a2:19:4a:f7:af:f4:d9:01:52:
b4:c2:6b:84:b5:ed:0f:f8:84:1b:13:31:f5:4e:e2:64:94:86:
9c:6b:f1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:49:47 2024 by rpki-client on console-ams.rpki-client.org