Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/063C09C4768811EFB2CF0B9B762E951A.roa
File: 063C09C4768811EFB2CF0B9B762E951A.roa (raw, json)
Hash identifier: wkFbbiUBMZS7sVXdovZPzi7Opu0PZKsIl9RJZZA1w7s=
Subject key identifier: E0:56:70:8A:4B:19:F4:DA:2E:67:F8:1F:3D:A2:55:89:0F:B0:5A:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F08B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/063C09C4768811EFB2CF0B9B762E951A.roa
Signing time: Thu 19 Sep 2024 13:06:46 +0000
ROA not before: Thu 19 Sep 2024 13:06:43 +0000
ROA not after: Fri 08 Aug 2025 13:06:43 +0000
asID: 133861
IP address blocks: 154.204.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61579 (0xf08b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 13:06:43 2024 GMT
Not After : Aug 8 13:06:43 2025 GMT
Subject: CN=66ec21e6-bb60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:4c:d6:f2:c9:b2:84:f5:22:56:db:33:70:
02:44:df:c3:28:45:5f:4b:3c:95:6e:62:36:e8:26:
c6:ec:0d:33:2a:f0:57:23:c2:93:09:d1:f6:c7:54:
6a:2d:21:fc:ef:32:76:fd:4a:b2:b4:ad:ad:c1:62:
f8:07:e5:00:4d:ae:78:ac:00:42:37:ff:8e:06:de:
01:b4:fb:4c:49:d4:ce:74:36:30:57:02:db:d9:05:
70:bb:03:6d:38:16:64:6c:e8:e7:aa:b9:d2:3e:04:
c1:43:4c:9f:51:e4:43:d2:7f:aa:51:bf:ca:a5:a4:
45:d7:2e:7c:e4:98:96:2a:c8:a2:d9:61:64:fc:50:
9d:19:e4:15:92:a2:88:1f:ce:49:ff:77:2d:44:6e:
c0:71:06:64:08:06:80:1f:7c:4f:8a:c4:a4:dd:eb:
d8:53:5a:54:6a:79:8e:74:72:ac:e6:ef:25:02:de:
0b:a8:fe:f6:00:a1:86:6c:b5:60:6d:76:ce:d6:b6:
3a:cc:5b:6a:34:29:6c:5b:6f:5b:7e:73:bc:e5:41:
84:63:0e:eb:c0:ba:47:e1:bf:06:53:8b:b2:cf:5e:
fc:53:69:3d:4d:83:5b:6e:c6:77:30:95:16:51:bc:
47:c7:49:a9:94:60:78:ba:b5:f2:72:16:60:d2:f1:
4e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:56:70:8A:4B:19:F4:DA:2E:67:F8:1F:3D:A2:55:89:0F:B0:5A:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/063C09C4768811EFB2CF0B9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.46.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:b9:82:a3:e6:a5:7e:c1:d8:e4:22:e9:f3:37:1c:fb:a1:e5:
30:bd:8d:2c:1b:ad:b3:60:18:4e:e0:7f:47:80:f6:e4:24:6c:
6d:ce:6a:53:20:1f:14:b8:9a:2a:47:c5:d5:c0:4e:87:38:85:
9c:c9:fc:42:96:12:83:47:63:13:db:03:51:73:88:30:90:61:
35:70:87:6d:c1:26:b7:6d:0a:25:e1:a9:30:18:cf:4b:c5:6c:
d6:be:77:c9:76:cd:97:61:6d:fb:62:f2:bf:3c:f1:90:04:ab:
4f:04:65:8f:4b:6c:79:09:b8:de:ee:51:8f:a4:55:44:e4:eb:
76:10:84:de:d4:23:31:32:cb:8e:25:26:d3:2a:f8:12:3f:1a:
92:3b:ad:d4:0f:31:6a:bc:0f:e1:52:63:9f:43:85:e6:ca:14:
b5:08:8f:76:47:81:3b:e9:2f:67:15:62:b3:59:1e:c9:1b:db:
0f:c6:ef:bd:87:6a:03:ec:df:65:f5:8f:c5:0b:9b:67:51:fb:
75:a6:f0:07:46:ba:56:a0:78:ac:86:3b:32:b5:45:97:0a:b1:
de:3b:c4:ab:44:ed:05:51:49:09:3b:32:66:a4:b1:07:6d:ac:
f3:5f:39:ba:e3:d7:cd:a9:3e:27:da:1e:8c:b6:b4:3f:26:e1:
de:47:13:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:53 2024 by rpki-client on console-ams.rpki-client.org