Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/097433E8A32C11EFBE0DF4A4762E951A.roa
File: 097433E8A32C11EFBE0DF4A4762E951A.roa (raw, json)
Hash identifier: ncT61aq6QE24S54jptKiBv8k3QWATgPf2nD/SsyY3zs=
Subject key identifier: 6F:A1:7D:A8:4B:CF:AD:0D:A0:B7:DB:6E:E4:64:47:51:9B:AB:8E:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D4E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/097433E8A32C11EFBE0DF4A4762E951A.roa
Signing time: Fri 15 Nov 2024 08:31:40 +0000
ROA not before: Fri 15 Nov 2024 08:31:37 +0000
ROA not after: Sat 14 Dec 2024 08:31:37 +0000
asID: 63969
IP address blocks: 154.89.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68942 (0x10d4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 08:31:37 2024 GMT
Not After : Dec 14 08:31:37 2024 GMT
Subject: CN=673706ec-b3bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ea:6b:bf:c4:68:d3:9e:8f:74:d3:d6:42:c9:
b1:87:ff:8b:9c:e2:37:05:c7:c3:95:4f:22:4a:a9:
43:ea:24:a7:1c:3f:ad:fc:0c:2c:dc:b9:e1:5b:66:
54:53:99:0e:2a:2c:2b:d7:c6:25:5b:35:4f:1b:c6:
ee:d1:ed:4e:61:f9:f2:b7:a9:f6:1b:b8:b4:99:53:
3c:3c:da:81:c0:07:4c:89:43:1e:4c:d6:ea:63:9a:
5a:47:47:a7:66:d2:d2:32:89:07:c4:b5:7b:2a:13:
b4:75:3d:41:96:bc:fd:87:d1:e3:89:50:83:fe:ae:
10:ef:b9:bd:93:63:38:99:a1:0b:4a:d6:c6:77:88:
d0:e2:d9:22:60:67:b1:b3:94:8c:31:3d:42:b3:75:
2d:74:e0:ae:c5:77:35:a5:d2:df:3c:7d:30:86:ed:
21:05:d7:ff:28:a9:a8:1b:ec:0c:f4:ac:b4:3c:1e:
5c:93:21:a0:4e:27:1c:db:91:36:02:44:d3:bc:44:
6f:f9:71:ae:68:cc:3b:12:de:7f:8f:26:b4:93:cb:
21:cb:06:4d:54:a4:89:29:f8:f9:39:64:dc:02:b5:
2f:89:d8:b1:4a:5a:7e:0a:2c:57:ab:bb:ee:2b:53:
bb:67:67:86:1e:9b:2e:2b:eb:49:4a:85:d4:46:82:
c1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A1:7D:A8:4B:CF:AD:0D:A0:B7:DB:6E:E4:64:47:51:9B:AB:8E:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/097433E8A32C11EFBE0DF4A4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.7.0/24
Signature Algorithm: sha256WithRSAEncryption
97:b5:77:bb:5c:f1:bd:fa:6e:e4:ef:16:4e:3e:04:fe:4c:1e:
e2:c6:bf:53:8c:7b:42:8a:cc:d5:3a:97:2c:ed:95:43:28:92:
52:71:d4:f2:e9:8d:c9:54:bf:00:f9:9c:62:41:6e:72:10:2b:
c3:f0:56:33:29:05:c4:91:9f:fc:37:16:8b:8e:06:12:c1:69:
79:81:30:53:77:d9:63:20:3a:4a:2f:78:a8:9c:88:53:bd:2d:
90:93:aa:55:e3:a5:4e:b5:f8:01:0f:24:9c:64:a2:c3:f1:f8:
1c:54:16:d2:64:98:a1:e1:82:47:63:6b:ca:58:c9:07:a2:be:
8b:0c:de:42:74:35:7a:35:52:bc:29:5c:b8:ce:3e:f9:ea:ba:
e5:97:f5:ab:37:ab:7e:e9:29:2b:05:89:50:e0:ac:03:1e:01:
92:a9:df:76:41:de:40:ac:fd:69:f7:1e:76:96:7f:d3:fa:e9:
66:eb:85:47:96:32:36:4f:88:fe:16:1c:38:71:57:a0:db:c7:
9d:ce:a1:64:1a:1f:8c:e8:2e:bb:24:4e:83:23:41:46:0e:45:
6e:6a:3f:c2:83:d8:f2:75:39:6e:ce:b5:8b:4f:79:4a:fe:9f:
3f:d6:7f:6b:5f:e2:f6:cf:41:03:37:fc:8e:c5:cb:ae:6e:58:
87:7f:5e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:47:35 2024 by rpki-client on console-ams.rpki-client.org