Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE8D7904985E11EF86629661762E951A.roa
File: EE8D7904985E11EF86629661762E951A.roa (raw, json)
Hash identifier: MplC0GTkvNkcxAXWgjtRj5jykxmFQAIJ3l8ByN2gGTo=
Subject key identifier: 9B:A4:A5:81:80:9E:D8:8A:54:C5:F6:89:51:6C:D8:CB:6F:6C:E2:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE8D7904985E11EF86629661762E951A.roa
Signing time: Fri 01 Nov 2024 14:38:17 +0000
ROA not before: Fri 01 Nov 2024 14:38:13 +0000
ROA not after: Tue 03 Dec 2024 14:38:13 +0000
asID: 203020
IP address blocks: 154.203.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66775 (0x104d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:38:13 2024 GMT
Not After : Dec 3 14:38:13 2024 GMT
Subject: CN=6724e7d9-dc45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4a:70:14:02:61:37:86:cf:b6:24:9b:71:38:
5f:2d:03:a7:31:92:d9:c8:8a:09:8a:e3:cb:ab:ab:
40:27:5e:bb:05:71:7e:1e:4a:89:8f:e1:a4:85:68:
06:71:b8:ec:19:f8:ff:1d:98:e7:19:8b:56:b9:e7:
9c:91:dc:51:0f:dd:83:d7:0b:c0:11:b0:90:ea:ea:
fd:42:7d:09:7a:bd:8d:c7:ac:8b:43:c7:a2:78:51:
66:c0:ef:c5:5d:20:9e:ee:37:91:ba:9a:1a:9e:1a:
da:8a:8d:17:e6:50:42:45:b0:1c:18:96:44:db:43:
2d:8b:13:ad:e5:ad:5a:2a:38:6c:66:fa:fd:c6:4e:
ba:07:48:51:e2:ce:37:0e:07:c5:b3:a3:72:5a:04:
f8:f0:ec:09:96:76:df:a2:3b:d5:79:d6:6e:9d:22:
b5:bc:c9:1b:28:94:f1:64:0d:30:b7:8f:66:50:7d:
41:aa:95:97:07:5f:cb:01:6b:f4:aa:e1:42:ee:e6:
2f:d4:1d:88:72:a7:35:83:24:0b:c9:d4:65:5c:b6:
92:1f:ca:3d:62:21:23:f4:1b:34:e0:e2:b0:3b:bf:
be:c2:f0:b1:c6:77:a9:4d:61:dc:11:7b:e8:10:36:
75:0b:c2:62:60:92:92:62:09:df:5c:95:6a:a5:2b:
c0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A4:A5:81:80:9E:D8:8A:54:C5:F6:89:51:6C:D8:CB:6F:6C:E2:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE8D7904985E11EF86629661762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.95.0/24
Signature Algorithm: sha256WithRSAEncryption
02:30:15:77:58:39:2f:2e:96:cb:38:01:74:84:e5:1c:a2:35:
2d:2a:f7:b8:a4:89:93:db:29:b8:de:db:33:6f:b4:b8:61:9d:
48:47:e2:a7:d7:f0:16:c0:2c:8f:36:99:19:3a:f1:41:7f:4d:
71:32:7c:6f:fc:a0:de:88:62:4f:6a:96:41:a8:13:02:71:af:
45:78:b6:c7:90:47:aa:e0:b0:5a:7e:6f:2e:84:59:c6:de:7f:
37:29:57:97:69:52:37:94:3d:0c:11:56:27:6b:6d:93:be:25:
3b:79:fd:3d:f3:7e:3e:74:17:76:ab:a7:cd:5b:08:9d:bf:ce:
30:f7:82:45:a0:67:86:50:da:ba:42:31:88:de:c6:7e:51:8f:
a6:51:9e:ba:95:70:79:99:ad:fc:1b:4f:2a:ab:00:b0:63:bb:
94:c9:b0:45:b0:4e:bf:04:b6:9c:25:6a:81:f0:1e:ae:43:56:
2e:e1:2a:f6:20:8d:88:81:a4:f9:3b:47:10:2d:35:a5:0b:77:
8e:a9:9f:21:a5:d6:95:82:d5:70:1f:1a:d3:15:93:70:5f:8d:
76:ba:e8:10:8a:3d:0e:93:66:d9:ad:0f:ba:63:10:f5:f5:94:
30:c5:99:46:da:e2:7b:30:ca:2b:47:90:f6:99:14:42:80:6b:
1e:53:09:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:30 2024 by rpki-client on console-fra.rpki-client.org