Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A762B02758C11EFBC784175762E951A.roa
File: 0A762B02758C11EFBC784175762E951A.roa (raw, json)
Hash identifier: yKt3UitcdqdYPenrF/TK7rN6FYs7gWNJ74G7dg+vKPA=
Subject key identifier: DD:88:4B:D4:68:8C:06:7E:0E:BF:57:B9:30:9D:B6:52:3D:44:0E:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F051
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A762B02758C11EFBC784175762E951A.roa
Signing time: Wed 18 Sep 2024 07:03:00 +0000
ROA not before: Wed 18 Sep 2024 07:02:57 +0000
ROA not after: Wed 17 Sep 2025 07:02:57 +0000
asID: 142629
IP address blocks: 154.82.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61521 (0xf051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 18 07:02:57 2024 GMT
Not After : Sep 17 07:02:57 2025 GMT
Subject: CN=66ea7b24-90a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3b:b4:7c:95:15:27:48:ce:67:ea:d7:46:39:
74:5a:01:4a:46:f4:75:cc:a0:4c:32:ae:18:80:cb:
6a:a2:a5:32:2d:4b:50:74:5e:64:74:ab:49:4c:5d:
ef:01:c1:81:65:e8:84:86:1a:79:e9:0a:33:6f:bd:
e0:54:dd:f9:e1:73:ed:95:f1:6b:2f:21:94:d9:61:
08:cf:88:30:5b:b9:fd:e6:0d:02:86:7d:41:a6:5d:
db:77:c1:09:cc:db:da:4e:e7:74:13:a6:ed:8a:21:
fd:97:3a:69:71:e2:e2:46:b0:d9:a6:5f:a3:6b:2b:
8b:39:61:bc:3f:c2:d2:ee:a7:66:f2:ed:e9:41:e5:
83:2a:09:39:79:91:31:4c:e2:5e:cf:27:74:b3:fb:
48:f6:c3:09:8a:81:0e:09:66:00:05:ad:42:55:88:
52:7b:6d:ed:b2:75:ea:4e:2b:54:21:97:fb:60:3d:
e5:c5:6f:2c:84:22:8c:1a:f8:99:f5:bd:41:e7:43:
d2:e6:3c:5d:26:99:9d:47:7c:57:c7:82:15:0c:3b:
c4:d5:5a:1d:c5:e7:20:cd:36:33:17:7c:27:29:1f:
86:03:c8:a9:64:f5:f5:3e:7d:8b:50:5c:83:10:f0:
06:73:d3:d6:fd:57:1c:34:47:25:c0:2d:7b:4a:2f:
26:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:88:4B:D4:68:8C:06:7E:0E:BF:57:B9:30:9D:B6:52:3D:44:0E:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A762B02758C11EFBC784175762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.133.0/24
Signature Algorithm: sha256WithRSAEncryption
14:4f:58:63:a1:a0:17:79:8d:69:ab:36:7b:a2:7a:9a:cb:51:
3d:8f:d2:6b:2e:68:fc:3b:f2:86:0f:23:ff:47:ba:32:03:22:
af:7b:31:62:ba:37:e9:12:16:6f:87:f5:b6:fd:4e:7e:22:a9:
2a:6d:43:77:d3:59:dd:bf:73:07:c5:c9:9b:04:86:fa:ed:9a:
1d:a4:c8:ff:7a:4f:45:e1:6e:e9:73:ff:b6:e6:92:09:83:72:
b0:36:4e:6b:e9:80:c0:df:34:4a:7a:f9:33:0e:ad:4d:05:ba:
b6:d5:1e:d5:ea:8d:c4:79:81:61:ae:15:3c:75:70:75:b6:56:
d2:7a:8d:8c:d4:58:d9:73:64:53:4a:dd:5e:b6:74:dc:e6:10:
98:49:fa:0c:2e:9e:8a:28:5b:a4:04:c0:8a:30:ae:10:17:5d:
d3:e4:29:7e:c2:db:1c:bf:13:73:94:b1:6f:88:15:1a:1c:5b:
fb:96:e1:cc:68:c3:9a:24:53:3d:af:ab:17:22:73:37:2a:47:
a2:45:01:e7:87:53:35:e0:20:21:0b:90:d6:e2:f1:6e:1d:bb:
87:01:50:73:7f:54:21:1c:f4:64:24:53:bc:1c:86:fb:7b:18:
93:40:34:a4:1a:71:77:51:90:67:b3:42:1e:f5:1c:e0:bd:fd:
da:d3:8e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:54 2024 by rpki-client on console-ams.rpki-client.org