Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1977558A0E511EFB04B919B762E951A.roa
File: E1977558A0E511EFB04B919B762E951A.roa (raw, json)
Hash identifier: DjgoUp2rh+5eDn3nLp9ASwQpNA226JrH1QDZowZvvCM=
Subject key identifier: 34:B6:B4:2C:07:30:7B:38:72:57:39:01:64:A7:39:6B:B4:B4:2A:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1977558A0E511EFB04B919B762E951A.roa
Signing time: Tue 12 Nov 2024 11:04:26 +0000
ROA not before: Tue 12 Nov 2024 11:04:23 +0000
ROA not after: Fri 22 Nov 2024 11:04:23 +0000
asID: 39600
IP address blocks: 154.203.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Nov 2024 11:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68696 (0x10c58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 12 11:04:23 2024 GMT
Not After : Nov 22 11:04:23 2024 GMT
Subject: CN=6733363a-1391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1d:c0:5d:a9:b7:3e:c6:19:5a:51:09:aa:5a:
5d:b6:f0:8c:42:ea:ae:6b:c6:b1:54:53:8c:84:ec:
de:9e:c3:da:3b:a3:5c:ea:9c:29:7a:ba:ff:d1:39:
e9:19:76:7f:6c:0f:64:01:78:4b:55:72:22:d4:0e:
41:1d:f3:ab:cc:72:85:7a:0b:3d:5a:7c:cb:1b:b6:
a7:47:35:6e:6d:5e:7e:04:eb:7d:2d:93:80:73:1c:
59:ec:cc:8e:5b:4d:ab:86:f8:22:08:7c:e6:7e:6d:
2b:1c:4d:c8:a5:97:32:9d:9f:af:fd:dc:97:17:eb:
e6:b6:96:c8:d0:ee:f6:e8:d0:93:dc:bf:2b:35:b8:
a2:25:a0:96:ab:e8:a7:77:d3:60:51:1c:81:f8:f5:
e4:d5:08:3a:aa:b5:55:68:dc:e8:5b:36:ec:95:41:
2f:b0:f5:06:a8:a9:26:2b:57:7f:3e:18:3d:a5:9f:
f3:3b:1b:36:e9:29:5b:b1:74:f1:13:1f:84:a4:c4:
ec:40:63:4f:b1:77:ce:8f:25:fc:e1:fb:66:4c:0b:
20:fe:e1:36:29:d1:e7:5c:06:0d:19:d2:4e:bf:b9:
c1:e1:61:00:03:72:b0:18:b4:bd:d4:a6:e9:47:68:
9d:b7:aa:ce:4c:75:9d:7c:ad:36:03:63:c3:11:72:
aa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B6:B4:2C:07:30:7B:38:72:57:39:01:64:A7:39:6B:B4:B4:2A:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1977558A0E511EFB04B919B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.72.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:8e:75:35:74:f7:20:61:dc:b7:a5:32:e6:eb:92:38:19:bd:
e0:79:b0:2f:6c:ee:68:e6:95:30:0b:b9:d4:f0:2b:cc:85:ec:
e4:ff:8f:9c:5d:f7:6d:f0:82:4b:1e:08:49:31:58:d7:a6:71:
86:8c:4b:e3:b6:56:47:de:cc:e9:d3:d2:98:bc:43:e6:53:8c:
c4:23:1d:94:ac:1a:a0:09:6a:cc:f7:11:2c:d3:1b:fb:27:d9:
86:cd:7e:af:aa:81:5a:82:6a:8f:0b:9a:f3:d4:32:d0:73:02:
be:58:29:4a:94:70:fc:ba:5f:eb:f7:88:a9:1e:61:16:92:17:
3f:a1:70:47:b1:a4:20:88:e6:a4:49:91:ad:69:ac:62:0a:1a:
dd:bd:20:7a:45:af:c9:f8:f1:43:bf:e3:8e:9a:af:10:19:ac:
db:8c:8b:07:25:c7:d0:68:f8:c2:33:5d:d9:98:0d:c4:e9:7a:
64:44:34:d8:6a:35:fe:8e:ae:c1:4c:34:35:2c:c9:4e:62:44:
1d:eb:b2:8d:af:59:b3:ac:c9:0d:81:20:ef:ee:a1:da:c8:ec:
6c:13:ce:b9:c3:12:e4:29:30:df:89:bf:9e:ea:da:cf:1c:eb:
99:dc:18:58:34:81:9d:33:50:28:02:c9:f0:1f:c5:e8:c8:47:
9b:aa:14:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:31 2024 by rpki-client on console-ams.rpki-client.org