Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E47929729D9F11EFA1C7998D762E951A.roa
File: E47929729D9F11EFA1C7998D762E951A.roa (raw, json)
Hash identifier: 7VCLlhDKm50ejciu4+Nrlj7B60SJchMDrFZY5syEktA=
Subject key identifier: 4B:B5:CC:2D:7F:38:F6:BE:12:CA:A9:BD:FE:3B:AB:72:08:E0:09:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109A6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E47929729D9F11EFA1C7998D762E951A.roa
Signing time: Fri 08 Nov 2024 07:05:53 +0000
ROA not before: Fri 08 Nov 2024 07:05:49 +0000
ROA not after: Thu 12 Dec 2024 07:05:49 +0000
asID: 54600
IP address blocks: 154.202.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68006 (0x109a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:05:49 2024 GMT
Not After : Dec 12 07:05:49 2024 GMT
Subject: CN=672db851-598c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f7:40:94:0d:f2:52:1b:86:3f:d4:c3:87:52:
f2:cb:94:46:b9:7b:05:0e:ab:34:22:5d:a2:77:f1:
28:f7:f2:6d:9f:2b:00:d8:dc:b7:15:22:2c:46:fb:
9d:18:61:ad:3b:ef:f0:fa:b0:29:ca:d0:77:89:06:
b8:c2:51:2e:aa:d7:5e:eb:36:6c:2e:4f:f8:4d:8f:
90:64:c8:fa:08:2d:d2:1c:04:3a:ab:24:9b:cf:8c:
de:29:b9:bb:54:55:7e:3c:c8:1b:08:9e:b9:18:2a:
5d:3d:fb:b1:d1:9b:5f:50:b1:5e:f1:7c:c2:ba:41:
5b:d0:56:1c:da:5c:53:ad:ea:b0:20:1f:09:6e:5e:
59:99:2e:02:81:0a:2b:56:49:a1:9e:48:4c:b5:49:
31:b2:2a:ae:82:5f:35:c9:c4:7d:8c:d5:53:76:66:
1e:f0:6f:d3:c3:d7:7d:70:49:36:7a:70:08:5b:ca:
1a:bc:df:dd:66:a5:23:97:d5:f9:6e:17:3e:36:21:
bc:c3:54:38:3c:ed:87:5a:df:04:a4:57:42:12:56:
fd:12:50:4d:81:f5:ef:02:85:c8:14:c4:d7:89:c5:
4d:99:e2:1a:00:c0:75:bc:0a:ef:4f:80:89:39:bc:
99:a2:3b:1e:93:3d:bb:c9:48:b2:1b:f4:8f:40:eb:
ca:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B5:CC:2D:7F:38:F6:BE:12:CA:A9:BD:FE:3B:AB:72:08:E0:09:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E47929729D9F11EFA1C7998D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.160.0/19
Signature Algorithm: sha256WithRSAEncryption
66:68:3e:b1:fe:cc:f8:d9:b0:a7:e2:a0:51:95:32:ba:f4:77:
a6:b8:76:3f:ec:5e:ab:fa:f1:d2:f0:47:09:f0:d5:0b:35:43:
48:8f:7f:cb:b0:d8:ab:b5:dd:af:1e:3e:f8:0e:f5:ef:27:9a:
2a:94:62:18:ac:0e:4f:b7:e8:70:b1:10:dd:c7:ae:2e:6a:c1:
cc:4e:a7:c0:b9:a5:5a:f9:9c:8d:b1:a6:0b:0e:bd:d5:20:4b:
88:d6:cd:07:d3:5b:3d:2d:7f:4b:0c:aa:05:e5:01:f9:be:a5:
4d:90:f2:7a:62:a4:cf:41:06:61:e4:59:6a:3f:48:b3:a5:e9:
49:e8:29:fa:cc:11:5b:ed:3a:e0:f7:01:20:20:ca:1c:cd:71:
d9:25:7c:55:5d:f2:d0:b3:72:b0:aa:d6:71:19:5c:f8:6c:c3:
ac:58:38:60:41:34:8e:ad:24:6b:23:63:fc:6d:c2:92:74:d6:
4a:55:51:c8:9e:45:a6:49:61:23:05:fe:90:f8:0c:1e:c3:75:
90:c2:ae:c3:3e:f3:cc:86:45:18:b6:bb:d6:1d:48:b9:e1:10:
cc:82:2a:28:34:2a:ef:d2:37:c0:28:17:19:11:09:a1:75:4b:
5b:eb:3a:d2:eb:68:9f:9c:f7:a3:8a:11:63:ff:fd:da:5b:d7:
14:54:5e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:29 2024 by rpki-client on console-fra.rpki-client.org