Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAF370CAA27011EFB1393479762E951A.roa
File: EAF370CAA27011EFB1393479762E951A.roa (raw, json)
Hash identifier: 7cUOQxa5+uF+CfRHC2B7BJcKzQPFbXxpSQtiwQK7wuI=
Subject key identifier: 19:03:8A:11:B2:CC:D9:8F:FB:57:D3:DB:2A:AE:19:56:C1:D9:3A:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAF370CAA27011EFB1393479762E951A.roa
Signing time: Thu 14 Nov 2024 10:12:13 +0000
ROA not before: Thu 14 Nov 2024 10:12:10 +0000
ROA not after: Sun 24 Nov 2024 10:12:10 +0000
asID: 135097
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68890 (0x10d1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:12:10 2024 GMT
Not After : Nov 24 10:12:10 2024 GMT
Subject: CN=6735ccfd-7ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3f:59:fb:a9:a3:ed:f2:14:33:50:96:d4:d7:
22:87:76:0b:d7:4e:1f:4a:b4:a1:05:c5:7f:01:03:
5c:35:a6:88:ee:12:2b:15:6e:99:de:22:66:4f:07:
92:a8:56:d4:36:6d:51:2d:ef:8d:b2:d3:60:8d:ff:
ff:23:97:7c:70:fb:22:49:f6:13:0a:e6:94:76:3c:
b0:55:9e:6f:47:f4:b8:a5:00:dc:bb:db:76:8a:68:
3b:fd:76:45:f7:17:63:c2:51:b5:4c:e0:dd:8a:76:
71:0f:1b:e0:af:fc:32:d9:75:8f:23:e1:19:47:10:
6a:cb:88:56:2b:59:6a:3e:a3:2f:fa:be:30:74:91:
b5:3e:f8:7c:fb:45:ce:46:18:08:fd:d2:1d:f6:0c:
d7:89:ec:3b:f9:f6:1f:60:2a:d3:c1:27:6c:75:19:
42:ef:a9:f7:82:b8:57:72:cc:50:c2:55:c4:6a:49:
a1:4a:0d:6f:cd:2b:4c:e3:db:6d:0c:f2:9c:49:c6:
e6:3d:89:69:32:f0:71:9f:f5:cb:4f:ba:9d:ab:7b:
fe:1f:ef:6a:2f:5c:26:9c:1e:0c:24:49:ee:6d:12:
9e:90:e7:fc:1e:59:c1:44:43:2e:4f:c7:f1:38:c2:
e3:46:1e:a1:32:d7:fb:15:cd:4e:de:cc:b2:17:bc:
58:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:03:8A:11:B2:CC:D9:8F:FB:57:D3:DB:2A:AE:19:56:C1:D9:3A:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAF370CAA27011EFB1393479762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5f:e5:25:b6:c7:f3:8d:2b:0b:ab:5b:dc:9d:cc:db:c5:a0:5e:
c7:e8:87:82:15:6d:26:ba:f6:8b:62:6d:72:01:22:bb:5b:fa:
73:79:bb:5c:a1:fd:d4:62:9e:19:03:65:92:a7:19:04:6a:1a:
88:c3:9e:8c:ac:89:cc:af:4b:f5:26:05:a8:fb:d9:d8:cd:d1:
e1:02:52:49:3c:5f:11:60:7e:b0:04:04:16:52:8b:63:f3:99:
9e:5a:23:51:cf:a1:46:b7:43:fb:e8:23:a4:c2:28:ea:26:53:
83:fc:3d:30:d9:f7:71:7b:87:dd:61:e8:f9:b1:59:1e:75:9e:
d5:4d:9e:c6:6c:ce:15:96:45:26:6a:a7:89:95:34:ee:30:bf:
f9:f4:47:5f:72:28:3a:76:37:6b:8b:30:85:ed:b7:96:6a:19:
e2:cd:62:72:70:0b:5e:fd:eb:58:2f:38:8b:a8:df:a9:df:05:
06:00:8c:f9:f0:66:00:25:ad:d7:05:78:67:9f:4a:46:4e:f1:
ac:d5:fd:af:52:45:ec:2c:36:6b:1f:56:3b:67:d6:a3:a8:dd:
bd:10:df:e6:40:cc:f0:74:d0:f7:a0:04:9d:39:bc:d0:94:10:
5d:7f:40:16:86:41:68:81:9d:54:9c:7d:dd:27:42:60:01:b7:
b8:91:7b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:33 2024 by rpki-client on console-ams.rpki-client.org