Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE442F56983211EF8655FA4E762E951A.roa
File: DE442F56983211EF8655FA4E762E951A.roa (raw, json)
Hash identifier: PuNoEQKqo1/CGrTzdeQ+STtXJHRqE//M4MbKTYxpoAQ=
Subject key identifier: 86:FC:DD:7C:86:33:39:17:72:9B:8E:FF:4B:8B:BF:35:3F:AC:B8:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104B5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE442F56983211EF8655FA4E762E951A.roa
Signing time: Fri 01 Nov 2024 09:22:52 +0000
ROA not before: Fri 01 Nov 2024 09:22:48 +0000
ROA not after: Sun 01 Dec 2024 09:22:48 +0000
asID: 399195
IP address blocks: 154.193.112.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66741 (0x104b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 09:22:48 2024 GMT
Not After : Dec 1 09:22:48 2024 GMT
Subject: CN=67249dec-b639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:70:9e:c3:c5:2f:a9:56:49:b1:5d:88:85:c6:
8c:01:fc:14:4e:95:ca:4f:6c:74:4c:ee:e9:fb:b5:
0f:86:16:17:ac:29:22:00:28:dd:d4:f4:e0:fc:d2:
a7:35:6e:d9:3b:5c:7c:ca:06:a6:10:58:83:57:28:
bb:c6:bc:73:d0:97:3e:bb:48:6a:2b:49:38:4d:cf:
0e:77:b4:05:04:84:6d:23:ce:6c:34:3b:27:1b:4a:
bb:bb:d0:d3:88:11:17:f2:eb:8d:32:bb:2d:47:7f:
bf:a9:38:74:a0:84:67:2e:da:26:e0:09:d7:13:f0:
ba:0f:12:70:ae:28:4a:44:09:07:cc:80:c3:cd:70:
50:1c:48:7f:02:1a:49:e8:cf:9f:49:29:f8:23:ed:
af:57:c2:56:44:e8:9e:be:1a:51:1f:c9:1b:6c:8b:
ee:22:98:8b:60:40:7d:4c:9c:f4:43:9e:1a:40:16:
5b:c0:22:c5:09:27:f5:f0:d7:10:3e:3a:28:2c:69:
c8:06:f9:95:95:e7:98:ca:40:54:72:3f:c0:ba:06:
13:83:c8:f0:b8:92:a8:0c:f2:67:e3:fe:9f:4c:ae:
ad:65:34:dc:8f:53:c4:ea:7f:60:5e:fc:b4:b0:47:
a4:6c:ca:9d:9e:8c:95:d4:27:37:66:d5:24:22:b3:
43:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FC:DD:7C:86:33:39:17:72:9B:8E:FF:4B:8B:BF:35:3F:AC:B8:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE442F56983211EF8655FA4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.112.0/20
Signature Algorithm: sha256WithRSAEncryption
0d:30:13:14:22:1a:e2:be:f1:65:81:ef:8c:e7:3f:6f:23:4e:
1a:6c:32:06:0e:4c:76:66:e5:87:30:ed:70:b8:33:23:2d:33:
49:a3:53:c7:00:af:d9:55:4b:52:d8:92:ad:a0:b5:d9:38:b5:
71:53:c5:7a:d5:6c:ee:f4:8d:b1:b8:22:b2:4d:91:83:15:e8:
04:73:5c:14:8f:8f:53:96:83:be:c7:bb:88:9b:80:45:fa:50:
34:0a:30:2e:40:cc:74:52:96:21:df:98:7e:80:d2:4c:fa:e4:
26:b1:e8:10:d5:9c:3b:3f:04:84:58:e8:e7:6f:64:5f:f6:b9:
5d:d3:24:df:32:6e:da:d3:34:d7:c7:35:f9:a7:19:0d:da:d9:
5a:34:38:22:62:05:23:bc:0d:62:28:56:52:04:42:4b:90:4a:
79:ab:6d:6c:11:57:bf:4a:d7:39:72:7b:fe:1d:43:b6:a9:e5:
eb:8d:68:10:32:21:48:01:98:f6:ff:26:9e:e7:91:4c:2e:4c:
a2:33:34:cb:19:b8:57:c3:91:9f:c9:bf:9f:cb:0c:75:57:b6:
7f:47:52:81:2c:7c:70:42:e5:30:a1:cb:45:89:b4:75:d3:f0:
7c:b4:a0:0d:87:d8:d5:ec:92:bc:09:32:a3:b3:90:84:84:c7:
e0:82:94:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 15:53:19 2024 by rpki-client on console-ams.rpki-client.org