Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFC72A2C886A11EFA3AE0C44762E951A.roa
File: DFC72A2C886A11EFA3AE0C44762E951A.roa (raw, json)
Hash identifier: bsyFC9V9lZNmnULGIW9P29NSC3xlE3/NrW2Wr2p4BLw=
Subject key identifier: 7D:99:D1:F7:C0:C8:15:63:7D:F2:FE:2F:90:2E:9E:A2:01:F2:30:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FDC1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFC72A2C886A11EFA3AE0C44762E951A.roa
Signing time: Sat 12 Oct 2024 07:23:27 +0000
ROA not before: Sat 12 Oct 2024 07:23:24 +0000
ROA not after: Sat 30 Nov 2024 07:23:24 +0000
asID: 138915
IP address blocks: 154.93.120.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64961 (0xfdc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 12 07:23:24 2024 GMT
Not After : Nov 30 07:23:24 2024 GMT
Subject: CN=670a23ef-2caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e6:50:2f:ab:14:1c:19:f4:d1:85:22:fd:d7:
45:79:86:0f:4b:7a:f0:ff:8b:93:1e:f3:2d:65:e6:
5f:a4:f2:12:07:c2:ad:e4:3a:82:64:d8:46:be:f4:
ff:06:96:dd:93:f8:5c:65:a4:f4:b3:1b:37:0f:c5:
73:87:a2:97:b4:d6:25:f4:da:d4:d3:39:29:ec:14:
62:b1:fd:56:59:02:7e:b4:4b:d8:70:60:0c:d4:6f:
08:60:b0:92:bd:33:3a:22:ef:fd:9d:b9:f7:c7:b4:
ef:8c:5b:02:9a:11:28:05:1f:f3:7c:2c:b7:d2:42:
01:ab:a8:dd:dc:f9:5f:a5:81:00:fd:da:9d:55:67:
4b:8b:e0:ee:4c:2d:15:d5:81:dc:d2:11:fa:e5:48:
46:88:85:19:c6:31:68:c1:39:7e:17:09:3d:e2:97:
8c:3c:81:8e:da:37:65:b3:79:8d:ee:cc:d6:a1:4a:
c0:93:2a:6d:f3:22:c2:4c:6d:40:77:17:cc:e3:af:
51:64:cf:3b:36:90:38:bd:cf:e5:a9:4b:86:6a:ce:
42:0d:e4:fc:3b:ef:dd:dd:a4:46:4b:7d:e1:13:e6:
54:ab:fb:fe:58:1b:8a:a3:61:f7:99:12:84:8a:10:
b0:60:39:21:78:72:5c:0f:01:97:ec:77:dd:14:d0:
98:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:99:D1:F7:C0:C8:15:63:7D:F2:FE:2F:90:2E:9E:A2:01:F2:30:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFC72A2C886A11EFA3AE0C44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.120.0/23
Signature Algorithm: sha256WithRSAEncryption
42:0b:dc:fa:17:62:f8:df:65:1b:df:97:90:1a:6b:df:b8:38:
08:ab:4d:4a:35:02:b1:7a:61:50:f7:71:68:5d:6f:48:32:dc:
bf:ba:50:16:6b:80:e1:bc:39:73:ff:3d:c0:7a:c3:40:63:8b:
21:6b:45:c5:88:56:c8:92:5a:5c:7e:65:7e:9a:f3:71:84:f4:
6a:ae:18:96:d6:c5:45:0f:7a:56:96:ca:86:19:e3:8a:b6:3f:
78:4f:ec:76:24:00:3f:3b:f5:88:2e:40:72:b7:c8:e3:a0:47:
e5:e8:26:1e:9c:f3:d3:14:8f:e0:d7:a5:5d:d3:b4:9e:1a:1c:
c8:32:3d:65:7d:1c:0d:c7:d8:84:62:1f:c8:99:fc:78:59:b3:
23:b0:30:23:30:97:d3:f8:ee:fa:f8:39:85:30:39:df:57:85:
c9:c9:e6:cc:b7:bc:39:16:bb:0c:23:66:3d:6f:ff:75:99:63:
4e:6a:64:70:4f:94:da:c9:33:cd:5e:7e:84:61:cc:f4:5b:f4:
60:80:b8:25:1b:51:1e:48:5f:45:4b:4a:bd:d4:65:f7:de:85:
5c:6e:4d:de:74:7c:61:46:97:b8:89:a5:aa:c1:9d:15:5e:b5:
4d:65:61:5d:87:b9:61:13:3c:76:65:34:a9:21:71:11:08:48:
da:c4:6d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:50 2024 by rpki-client on console-fra.rpki-client.org