Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0283C762905111EFBA63A2A2762E951A.roa
File: 0283C762905111EFBA63A2A2762E951A.roa (raw, json)
Hash identifier: iIMnI8VsphmRU0X3CjNz0doHq2775kA8KJtL2StaIeo=
Subject key identifier: A2:75:F7:C2:B4:6B:25:89:21:D8:69:5F:A1:D5:99:9E:A9:CC:2D:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01008B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0283C762905111EFBA63A2A2762E951A.roa
Signing time: Tue 22 Oct 2024 08:38:28 +0000
ROA not before: Tue 22 Oct 2024 08:38:24 +0000
ROA not after: Tue 26 Nov 2024 08:38:24 +0000
asID: 8796
IP address blocks: 154.201.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65675 (0x1008b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:38:24 2024 GMT
Not After : Nov 26 08:38:24 2024 GMT
Subject: CN=67176484-aaca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:c0:16:f3:65:55:0c:a8:4a:9b:1b:97:59:
ef:a6:c8:01:0e:78:e7:9b:f7:64:50:63:35:2d:71:
ec:76:f9:b6:45:5a:ea:01:28:b9:57:4e:33:6a:4b:
bf:a4:3d:1b:fd:1b:0f:2b:23:6e:57:d3:c4:da:8b:
39:40:63:92:6f:5d:8f:17:87:69:2d:76:2a:62:a5:
5d:07:1e:63:7a:4f:c6:af:80:47:1a:06:66:55:e3:
1a:3d:0b:9d:16:04:1d:69:a3:14:3d:88:83:c6:15:
5a:fc:73:bd:57:9e:e8:c9:f9:d0:f6:39:76:94:cd:
f9:6f:68:f2:42:b5:a8:b5:d8:0a:67:3d:52:a8:79:
d8:12:1e:2e:e4:e8:7e:da:f4:41:e8:cd:b1:8d:14:
f0:f9:b4:bb:03:10:6b:41:d7:84:45:24:d2:b4:2f:
29:b8:1b:b3:87:f1:5b:a5:58:0d:d2:7c:ee:0a:a1:
4d:27:b4:18:fa:82:c3:d6:60:30:13:cb:eb:b6:61:
d1:5b:8c:a7:b6:9e:88:b6:24:2b:aa:9e:cf:f3:e0:
f3:f8:65:b6:bd:4e:b5:24:4b:78:59:f6:ef:d4:37:
85:3f:fa:28:8b:6c:de:b6:ce:4c:b7:16:2a:e0:60:
67:5e:e7:62:c4:33:46:9b:40:c9:22:70:08:ae:69:
1f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:75:F7:C2:B4:6B:25:89:21:D8:69:5F:A1:D5:99:9E:A9:CC:2D:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0283C762905111EFBA63A2A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.92.0/23
Signature Algorithm: sha256WithRSAEncryption
51:6c:8c:c4:ae:eb:d9:80:87:8e:20:e6:59:67:35:f0:86:93:
19:9c:5d:c8:9a:98:d6:1b:a4:46:58:07:d5:45:09:c5:f0:22:
21:18:2d:52:97:12:df:8f:06:56:39:84:4e:4e:4d:e8:84:30:
15:57:4a:25:20:ef:df:38:59:9e:2f:31:4d:23:8b:b9:c2:e7:
72:b0:e5:3d:6e:b6:e5:4d:14:c6:c8:0e:b8:7b:41:6b:cc:e4:
e0:e1:f2:df:b7:8b:da:e8:ee:f1:0b:92:62:40:ac:d6:8b:2f:
6f:78:7a:bc:19:bf:33:bf:2a:15:60:0f:a4:43:39:48:f7:84:
2a:f0:07:ad:3b:33:92:d0:b6:ee:8c:2b:85:7e:ca:60:4e:c1:
dd:da:4a:d2:e5:e3:a0:d0:e3:70:08:a1:83:35:5f:01:4f:1a:
55:7c:f6:07:d8:3a:79:9c:0a:cb:b4:1e:ea:fb:59:b6:92:9f:
3b:32:99:2c:a5:ac:fc:fe:f9:8d:47:e9:27:5d:c8:23:ae:48:
6c:f3:dd:78:05:3c:67:3d:9a:20:95:96:27:49:be:1c:48:25:
dd:22:44:d4:1e:b0:06:0e:25:8b:4f:bc:c9:99:69:cf:33:ef:
2e:ba:4f:c2:e9:2a:4c:67:0b:43:fa:2a:59:91:bf:ba:bb:45:
88:35:dd:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:53 2024 by rpki-client on console-ams.rpki-client.org