Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09505F40912011EF853E9FBA762E951A.roa
File: 09505F40912011EF853E9FBA762E951A.roa (raw, json)
Hash identifier: dvNtBOJoJI8jQ7xJ1tno4biaLzpLI5scNOHWbV4KqiE=
Subject key identifier: 16:D7:E1:C1:1F:DE:15:36:40:D5:23:E6:1A:32:BD:55:2A:48:98:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09505F40912011EF853E9FBA762E951A.roa
Signing time: Wed 23 Oct 2024 09:20:25 +0000
ROA not before: Wed 23 Oct 2024 09:20:21 +0000
ROA not after: Wed 27 Nov 2024 09:20:21 +0000
asID: 18779
IP address blocks: 154.206.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65784 (0x100f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:20:21 2024 GMT
Not After : Nov 27 09:20:21 2024 GMT
Subject: CN=6718bfd9-1b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8f:86:4f:3e:f4:bb:e1:9b:38:88:d9:b2:e0:
5b:3f:52:42:64:ab:54:eb:b4:e2:46:a2:31:1c:40:
91:b7:f6:9c:46:50:cf:fb:d9:11:be:f8:41:c9:83:
d6:9b:ab:b7:fc:5a:5b:c9:07:02:cf:d9:e2:40:56:
e4:99:74:72:16:8c:e3:80:66:a4:50:ad:4a:4a:74:
fe:ed:69:f7:ba:1a:34:16:bf:48:74:8a:18:17:69:
23:7f:48:04:74:a0:53:4c:e3:6e:40:a1:49:a9:98:
1c:79:d3:87:3e:64:5c:7a:ba:87:b6:cb:44:d0:06:
04:a8:86:12:07:56:99:11:ce:56:b7:85:60:fb:4a:
13:3b:0f:f7:74:3e:84:1c:24:20:b8:33:aa:eb:63:
71:72:c8:e6:83:5c:5b:1b:35:2b:9d:d7:63:0d:b4:
0c:56:bd:14:eb:6d:dc:3c:57:9d:a0:c6:fc:00:bf:
2b:22:20:44:35:e2:ca:c5:9a:91:34:b7:c9:21:0d:
1b:56:bd:fd:a6:e5:ff:fe:ec:f3:32:90:47:03:05:
8d:d9:1e:2f:67:dc:15:90:95:31:36:71:92:a5:2b:
ea:40:94:3f:b7:c2:a8:22:7d:ea:36:8e:3b:c2:f9:
5a:bc:ae:d5:98:2e:61:c3:e0:8a:85:17:ca:96:b7:
aa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D7:E1:C1:1F:DE:15:36:40:D5:23:E6:1A:32:BD:55:2A:48:98:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09505F40912011EF853E9FBA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.20.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:94:cf:26:f0:46:4e:5c:e4:74:8f:93:15:e8:3a:9d:51:55:
4f:6b:c3:df:b9:5b:da:82:8f:ba:e5:c8:55:68:0b:bb:78:1b:
59:61:db:4d:d9:a6:aa:29:b0:10:63:4b:5f:45:09:f0:08:e9:
aa:55:86:24:7f:e3:89:99:47:35:11:c2:43:d7:16:29:b9:98:
3a:d1:37:aa:9f:83:50:42:7b:16:bc:4d:3a:9d:dd:f5:4f:e5:
b0:90:83:51:6d:99:52:5a:b9:64:d1:e4:07:39:5a:bf:e5:3d:
a8:3d:49:74:75:56:e2:1b:32:26:1f:40:5c:c6:28:6f:9a:b8:
74:24:45:5f:2e:1c:0a:a7:e4:6b:2f:c4:be:ec:69:d7:86:8a:
16:59:58:3a:e6:a9:13:0a:40:eb:b1:66:d4:13:b4:e9:d4:db:
58:39:52:cd:77:3a:fc:2e:9e:15:b9:46:5f:c6:d1:9b:e9:3d:
c3:2b:47:76:85:51:61:86:67:d6:c3:7b:6f:b4:85:75:e2:5c:
15:a0:31:9f:30:e4:45:3d:57:d2:27:5d:6b:c4:55:96:17:69:
0d:c0:88:79:6e:7d:71:a1:6f:88:3e:01:b9:46:91:97:57:a9:
eb:7f:90:e1:47:23:9b:1a:6f:ca:f8:e6:ee:3c:f2:08:49:5b:
ee:4b:72:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:29 2024 by rpki-client on console-ams.rpki-client.org