Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/033484C03F5D11EFAFF20F83762E951A.roa
File: 033484C03F5D11EFAFF20F83762E951A.roa (raw, json)
Hash identifier: H8qFbmAs1qNivHh0l3aj9MJm6Z4Vbk5E1nk+beOvrHg=
Subject key identifier: C0:BF:0A:D9:D7:12:4B:42:1D:57:87:7C:62:F8:6D:8B:DA:AA:CE:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D0AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/033484C03F5D11EFAFF20F83762E951A.roa
Signing time: Thu 11 Jul 2024 08:10:19 +0000
ROA not before: Thu 11 Jul 2024 08:10:15 +0000
ROA not after: Thu 24 Jul 2025 08:10:15 +0000
asID: 151196
IP address blocks: 154.204.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53418 (0xd0aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 08:10:15 2024 GMT
Not After : Jul 24 08:10:15 2025 GMT
Subject: CN=668f936b-221e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d5:58:7f:9d:ee:25:59:9c:1c:97:56:ca:10:
bb:47:ca:77:45:99:94:21:42:83:3a:a8:93:e2:1c:
f7:49:be:39:83:b6:f5:2c:2d:14:7c:d9:cd:3e:7a:
4f:6a:5d:48:41:e1:2d:da:99:95:b6:c7:b4:3f:b6:
0d:d3:8c:3a:d2:32:e3:b3:5c:2f:d8:9b:fa:62:2e:
ba:af:9b:d3:07:b0:72:c0:66:ba:65:40:a9:80:b9:
36:47:1e:ad:ec:4e:78:14:bc:8e:8b:8a:86:d5:e5:
1c:b1:1f:ff:c3:a4:f9:ae:dc:24:a7:18:87:e9:84:
64:c6:96:f4:68:4e:db:12:ab:f3:1c:4a:18:53:57:
09:dc:06:58:87:de:e4:6f:b5:88:fe:2e:3e:36:97:
ad:db:10:47:94:f8:1b:3a:ce:26:30:74:48:04:85:
6b:11:44:3b:c5:10:99:41:41:7a:4b:6d:3c:02:70:
64:bc:5f:43:b6:2c:0c:f1:a9:ba:65:5f:b5:15:cc:
84:7b:fe:42:a3:98:c9:ab:6c:94:ab:37:be:14:bb:
f1:61:69:f9:33:32:c4:09:1b:11:f5:a6:0b:d8:4a:
56:c6:08:67:b0:17:d7:39:3f:d0:86:f3:82:88:52:
3a:9e:19:b7:7d:68:c3:e2:c8:f2:11:3b:dd:7f:a0:
4a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BF:0A:D9:D7:12:4B:42:1D:57:87:7C:62:F8:6D:8B:DA:AA:CE:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/033484C03F5D11EFAFF20F83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.50.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:84:78:7e:c4:9f:c1:b4:f5:6b:69:f9:c6:5d:43:76:0f:69:
09:a3:77:a7:e6:4b:be:38:e1:c2:3d:53:8d:93:ba:a1:cb:d8:
56:45:d9:11:71:93:d1:33:64:31:70:07:f5:80:8d:bb:8f:ab:
77:7a:90:99:7c:30:45:51:63:f3:5b:b2:e9:83:15:7a:15:5e:
62:3b:a8:f1:42:c1:98:ce:5d:13:e4:a0:0c:f4:0f:5e:6c:57:
16:4d:11:ad:61:f8:00:95:ac:f1:f0:6e:cd:13:04:98:1c:9a:
d6:da:a2:9d:53:29:bd:84:56:c0:a7:92:cd:6b:25:40:42:ef:
04:92:ec:db:a2:68:6e:45:08:33:65:09:cd:b9:b9:9e:f1:13:
ef:b6:62:2a:1a:e6:a7:9e:fe:7d:d1:e8:68:e4:f8:69:e9:a6:
c6:21:71:68:55:09:13:b6:ab:74:27:e6:43:46:ef:0a:8f:34:
2a:94:c0:f5:a9:80:ff:4c:2f:1d:0a:3d:f9:99:69:eb:3b:d4:
81:7d:35:83:fe:78:5e:c9:5d:15:8b:64:96:9d:59:27:3a:cb:
0e:bd:2f:4d:15:70:f4:c9:3e:8a:da:88:84:7b:f6:e5:13:2d:
c4:7b:17:4a:68:25:db:b3:ff:b2:38:3c:c4:df:6d:95:f9:6d:
75:59:01:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:53 2024 by rpki-client on console-ams.rpki-client.org