Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD3A0A72A4CE11EF983C8D6B762E951A.roa
File: FD3A0A72A4CE11EF983C8D6B762E951A.roa (raw, json)
Hash identifier: gk1yM4HBmqGKXr/b6dFiJF2EwOokg9p6ubS9N/2kadI=
Subject key identifier: CE:77:BB:DA:E8:45:EA:DC:A9:0B:3D:FB:10:20:40:E0:09:6C:C4:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EA4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD3A0A72A4CE11EF983C8D6B762E951A.roa
Signing time: Sun 17 Nov 2024 10:30:39 +0000
ROA not before: Sun 17 Nov 2024 10:30:35 +0000
ROA not after: Mon 25 Nov 2024 10:30:35 +0000
asID: 9009
IP address blocks: 154.92.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69284 (0x10ea4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:30:35 2024 GMT
Not After : Nov 25 10:30:35 2024 GMT
Subject: CN=6739c5cf-8725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:16:d2:0c:5b:79:35:7f:2f:cb:de:b4:07:
ac:ca:c6:fe:d8:96:ac:52:63:de:5f:c3:e1:06:62:
81:87:fb:63:fd:e3:85:4c:6a:47:c3:1d:54:89:6f:
86:63:03:aa:16:57:c5:f2:ed:74:bd:7b:40:f3:53:
d3:9c:07:33:37:37:52:cf:65:f2:a1:5c:21:97:ea:
1b:8c:5f:8c:41:d2:3a:e5:7e:23:2d:83:63:14:5c:
33:e3:2a:e3:35:3a:d8:da:be:fe:bd:45:10:4d:ed:
ee:0b:47:de:f8:0f:ce:41:9d:60:9c:0a:b4:ba:b8:
46:c0:76:e2:2d:e8:f9:aa:c3:1e:3f:97:40:45:47:
6b:c7:23:19:b7:b1:e8:b0:28:0a:e4:18:a4:ba:45:
2f:5a:43:a2:a9:e0:30:07:20:fa:eb:bf:c5:b8:9a:
38:9c:d5:9f:e3:d0:26:93:75:11:fd:84:8f:88:d2:
9f:1f:18:2b:16:4a:8a:53:85:ee:fa:71:08:eb:f1:
fc:24:1d:0e:18:82:60:45:17:3a:1f:2b:10:62:dc:
a7:b9:30:e0:4c:2c:80:9f:0e:c7:ea:d8:d1:0e:dd:
c8:60:17:1f:19:55:be:49:5e:4c:d3:6a:9f:72:62:
73:4d:92:02:ab:60:26:f2:95:27:26:a4:02:86:cd:
f1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:77:BB:DA:E8:45:EA:DC:A9:0B:3D:FB:10:20:40:E0:09:6C:C4:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FD3A0A72A4CE11EF983C8D6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.112.0/21
Signature Algorithm: sha256WithRSAEncryption
66:ca:68:96:94:5a:36:4e:3b:57:1b:dd:75:26:bd:ed:86:b0:
02:bb:d2:21:e4:f0:cc:c2:0d:e2:af:d0:e6:13:45:01:60:34:
0e:56:70:5a:54:ba:af:e4:da:93:31:77:1b:08:b6:59:fa:8c:
71:72:d7:42:fa:ee:bd:ab:31:58:a2:d7:4a:33:2e:fa:f4:9a:
6c:90:51:87:fb:ef:dc:a6:a4:1a:d8:4b:c9:63:45:3d:c5:f4:
d9:31:e1:1f:65:7b:22:10:4c:bf:37:a8:91:02:f4:31:bb:6d:
b3:f6:cd:e6:eb:1d:98:09:ea:d4:db:69:3f:9e:25:b5:48:4a:
3b:8e:94:79:cf:6b:f8:ec:56:a6:cb:8e:b2:99:d7:59:95:7f:
63:6a:46:01:1e:3d:b5:17:a1:6d:c6:e3:0f:41:d6:4a:93:0d:
2a:75:9f:f0:45:74:ba:cd:f4:d8:84:bc:d4:f6:79:e5:7d:09:
25:ae:77:65:8f:90:32:51:d2:c2:01:02:c2:47:4a:7c:3a:11:
08:6d:73:39:f2:54:e6:d5:31:61:2d:cf:c8:c8:a9:15:84:74:
31:8f:c7:14:db:11:ae:c2:f8:1d:df:83:ba:90:e2:18:bb:95:
ec:87:f5:d7:3d:5d:0a:79:3b:cc:16:08:2c:0f:73:6a:20:b4:
7d:c7:93:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:16 2024 by rpki-client on console-ams.rpki-client.org