Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/065512CAA9D211EFB5EE1767762E951A.roa
File: 065512CAA9D211EFB5EE1767762E951A.roa (raw, json)
Hash identifier: Tdt8BdDVtgY6ffF1GWprstXMhPoXSWbKIkbJxTSc8n4=
Subject key identifier: 86:5C:6E:BD:7B:7F:A8:CE:B0:B2:A0:CB:7C:C5:04:BD:20:02:6D:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011228
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/065512CAA9D211EFB5EE1767762E951A.roa
Signing time: Sat 23 Nov 2024 19:34:59 +0000
ROA not before: Sat 23 Nov 2024 19:34:55 +0000
ROA not after: Tue 03 Dec 2024 19:34:55 +0000
asID: 133180
IP address blocks: 154.206.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70184 (0x11228)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 19:34:55 2024 GMT
Not After : Dec 3 19:34:55 2024 GMT
Subject: CN=67422e62-1ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4b:ce:6a:0a:bc:ed:e0:c5:cb:17:1c:1a:43:
ec:0c:2d:5c:7c:00:d5:c5:37:7a:7d:34:2b:f9:57:
40:d2:ae:6e:88:31:97:c1:d6:71:69:89:d2:fc:87:
b4:d3:58:ee:1d:f2:a1:94:3a:58:93:20:cc:4e:13:
63:15:a6:c3:db:a3:3c:1e:81:06:a2:41:11:0c:15:
91:3e:f0:09:36:fb:ad:8f:72:4b:42:27:5d:fc:60:
06:12:3d:9b:0f:10:f1:37:da:0a:38:57:4b:80:2d:
3c:cd:57:76:95:13:49:51:06:6d:e5:a7:ad:28:65:
e2:da:6f:12:4f:d7:45:c1:61:02:84:10:98:f1:9d:
f6:82:bc:ee:fa:bb:d3:4e:61:06:89:00:ac:bf:39:
4c:c5:12:fe:d1:a4:15:4a:a2:88:a4:98:45:dd:25:
3a:c9:09:0b:41:1e:00:77:85:5c:45:81:ae:98:0d:
86:15:14:4f:63:94:e5:2b:09:bf:51:27:b4:26:71:
44:6a:4c:09:52:fd:90:67:f6:5f:c9:b5:ec:67:36:
74:e9:85:10:b6:35:26:d4:49:7a:19:98:bf:31:06:
a7:a8:47:73:0c:85:e4:d0:29:9e:99:29:6a:21:ea:
7d:b9:79:14:f6:58:5d:ac:6d:97:df:03:38:8b:b4:
b6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:5C:6E:BD:7B:7F:A8:CE:B0:B2:A0:CB:7C:C5:04:BD:20:02:6D:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/065512CAA9D211EFB5EE1767762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.128.0/18
Signature Algorithm: sha256WithRSAEncryption
5a:5e:ab:2d:51:3c:af:73:ab:5a:13:53:22:34:d8:87:db:00:
c1:6c:2a:46:e2:54:b7:06:2d:f4:99:68:52:c3:88:49:be:d5:
25:63:4c:36:d0:c3:d0:30:43:46:02:09:77:57:17:c2:1e:86:
25:78:30:1e:73:b5:57:72:32:6d:b7:28:b7:c4:90:4e:a5:f2:
7e:f6:c0:f7:dd:2c:54:d6:c5:24:85:84:d8:1a:92:1e:83:84:
be:f3:45:47:5f:2b:9b:fa:be:85:6e:a4:f1:2d:80:a2:0b:e3:
a7:d4:e0:18:54:ae:34:38:f1:6d:21:bc:89:f0:61:ed:86:97:
e3:67:c5:12:7c:c7:ce:41:8e:8c:91:52:a7:b7:de:c5:f1:68:
16:a2:af:8b:ba:e9:0a:56:40:e1:e8:ad:07:98:b3:87:ef:62:
54:7c:07:dc:89:f4:d8:af:b6:b9:f2:bc:93:b4:7f:db:8b:38:
e8:21:da:77:6d:31:6d:e7:cc:e2:3e:88:68:92:07:9b:43:be:
d0:60:2c:04:0b:22:14:4a:6b:73:bb:8c:6b:aa:f6:5f:df:38:
5d:71:32:cb:05:a0:1b:42:4c:c6:3a:29:d4:2c:4f:00:f8:21:
87:86:22:68:9b:0f:2a:9d:12:b6:5b:2c:fe:88:60:a6:71:2f:
df:3d:f5:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:54 2024 by rpki-client on console-ams.rpki-client.org