Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE579556A33911EF885C817D762E951A.roa
File: EE579556A33911EF885C817D762E951A.roa (raw, json)
Hash identifier: VPNBAMy9cuYLiqnzlEWPN4JvVJH5BRr1943XWJSzviw=
Subject key identifier: AC:09:8B:D4:7A:0A:91:81:C3:C1:DF:42:06:57:4A:59:4E:E2:A7:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D90
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE579556A33911EF885C817D762E951A.roa
Signing time: Fri 15 Nov 2024 10:11:08 +0000
ROA not before: Fri 15 Nov 2024 10:11:04 +0000
ROA not after: Mon 25 Nov 2024 10:11:04 +0000
asID: 5065
IP address blocks: 154.207.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69008 (0x10d90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 10:11:04 2024 GMT
Not After : Nov 25 10:11:04 2024 GMT
Subject: CN=67371e3c-c24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4b:c9:08:dd:bd:0f:9c:80:a8:08:de:c0:65:
4a:e4:c3:96:b0:3e:b3:14:f7:18:34:85:74:9c:c7:
49:16:7d:5d:61:cd:30:f3:97:03:ee:6d:22:b0:7a:
88:e9:d1:c1:bd:75:6b:ff:8c:c4:41:51:69:b6:80:
a0:59:ad:83:00:eb:65:e1:47:93:6a:a6:12:c9:c3:
e0:f8:7e:1a:a6:1d:ff:b3:45:16:9a:a5:5c:8b:70:
e6:cc:0c:11:23:ad:b1:fe:8b:18:1c:6f:5a:b3:08:
f9:7d:6b:8f:2f:c9:09:e7:d2:60:20:c4:52:9a:f4:
51:1a:c7:7c:f0:dd:d1:fc:e9:53:8d:b3:ff:1d:1b:
4e:3a:39:b6:a3:c4:38:70:c0:4b:09:77:6f:23:47:
30:c4:1f:80:60:ee:72:50:3e:de:9a:be:12:22:4c:
74:9e:9f:25:c9:a1:83:b5:75:f7:a3:a8:dd:9f:2a:
29:6c:a3:04:8e:e3:17:fe:01:3a:03:8e:62:b1:7a:
b0:b1:fb:c4:eb:16:a1:9d:dc:a8:ec:17:fb:f7:94:
6d:92:a3:77:28:06:03:23:f9:e8:4b:81:a6:89:3b:
83:7c:f7:ee:b2:bd:13:66:eb:20:3b:bb:72:7d:eb:
a7:34:3c:b1:e9:8e:ce:82:11:5d:b8:cd:85:94:50:
9e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:09:8B:D4:7A:0A:91:81:C3:C1:DF:42:06:57:4A:59:4E:E2:A7:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE579556A33911EF885C817D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.172.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:3c:f4:f7:37:da:1c:ad:81:29:21:4b:48:e8:5d:81:1d:1a:
d5:dd:88:20:ab:e1:f2:51:fc:7c:fb:7a:c5:19:64:2c:17:a5:
23:71:13:da:f8:61:2b:56:3a:84:17:1e:df:d8:2f:12:12:62:
19:0b:8d:e4:94:11:b7:53:16:ca:67:1a:ec:67:05:ac:dd:e6:
ca:fc:57:a1:36:9d:79:ba:58:76:b3:d6:f4:52:01:aa:48:d0:
6b:2b:8a:dc:25:1e:66:cd:a5:c3:cc:73:8c:77:31:6e:ce:73:
37:8b:df:9d:76:25:b8:99:69:b0:92:7b:9e:e3:a1:f3:10:21:
57:32:38:a5:53:cb:5d:ab:49:f3:fa:62:47:26:d2:b4:73:ba:
0f:01:d3:df:ab:fc:0d:d6:75:95:a1:04:36:62:a2:7b:80:4b:
58:09:8a:e7:ea:9b:d7:00:fc:a2:55:8c:6f:b9:df:9d:11:23:
9b:1a:5b:4c:8d:f3:fb:05:d0:ed:f0:70:1b:0b:f0:85:74:83:
d9:68:9f:7c:75:a5:70:ad:6d:be:60:b7:ea:fe:5e:9f:cc:1d:
66:16:bc:a3:ef:6d:c8:cf:9f:8e:cd:e6:9b:94:26:1d:60:a2:
50:5e:36:04:e4:9b:45:4a:d9:27:85:16:eb:c1:88:da:ad:28:
f4:7b:bc:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:12 2024 by rpki-client on console-fra.rpki-client.org