Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AD35976B44411EEB194DFAE775412E6.roa
File: 0AD35976B44411EEB194DFAE775412E6.roa (raw, json)
Hash identifier: tCprfsVGFUltI/Q1YwqzraIEd0J2uYAPZn5etAYdiEc=
Subject key identifier: D4:BD:97:EE:79:FC:59:93:87:80:41:FC:3F:D9:30:08:D6:98:E4:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 75A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AD35976B44411EEB194DFAE775412E6.roa
Signing time: Tue 16 Jan 2024 07:51:23 +0000
ROA not before: Tue 16 Jan 2024 07:51:19 +0000
ROA not after: Tue 14 Jan 2025 07:51:19 +0000
asID: 138456
IP address blocks: 154.213.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30114 (0x75a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 16 07:51:19 2024 GMT
Not After : Jan 14 07:51:19 2025 GMT
Subject: CN=65a6357b-ba67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cb:14:22:41:3c:70:02:1c:b2:49:da:18:20:
b5:81:38:9b:b6:0e:73:79:28:43:c8:2e:b0:a9:09:
1c:b0:3b:31:19:0b:66:b6:3a:e9:24:d7:94:0b:30:
5b:d3:5e:05:9c:3d:c6:97:6d:6b:d1:a1:e5:0f:2f:
e4:16:10:f3:1d:ff:7a:1f:7a:19:d7:7c:78:ec:2f:
23:4c:45:f4:bf:7e:58:86:6a:1c:67:37:d0:4c:1e:
56:d3:20:e2:6a:bb:e8:1f:0f:9b:6c:bd:29:8d:bc:
a7:eb:26:d6:14:a1:ad:86:60:5c:11:20:a9:e4:d8:
61:ed:8f:f8:32:89:68:f0:dd:52:39:ee:28:75:dc:
2e:3b:4f:6d:c4:18:7f:f6:48:55:51:da:69:47:be:
5d:36:66:a4:70:cc:36:a2:f0:fe:10:9b:dd:b1:21:
48:bc:c4:3d:22:5d:35:a4:41:f8:f4:5d:02:8f:ea:
f3:ee:14:37:64:cd:80:b6:8e:f3:c8:03:de:f2:18:
de:c5:75:19:b4:94:d5:ec:67:b9:45:2d:21:94:0d:
61:87:a0:75:25:ee:79:33:a8:1f:6e:b4:2e:aa:17:
af:85:ff:1b:cf:c2:0a:c0:c6:d4:aa:ed:9a:ec:91:
7e:84:c6:d0:2c:3a:25:a1:9e:32:e5:3e:f4:d2:45:
88:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BD:97:EE:79:FC:59:93:87:80:41:FC:3F:D9:30:08:D6:98:E4:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AD35976B44411EEB194DFAE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.1.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:ae:87:5b:1b:cb:e0:5a:7d:78:cf:53:d5:3f:ce:22:5f:88:
ee:52:14:b9:44:eb:b0:b5:a2:d3:b6:bc:ca:59:4d:ba:71:62:
e0:66:ef:08:12:b9:41:e5:78:03:a6:a6:ec:f0:3c:61:d0:3c:
ad:d2:0d:a9:74:eb:4d:88:bf:ea:5c:35:d9:c0:44:4c:22:3c:
d1:cf:47:28:1f:51:69:a7:71:1d:ac:d3:db:18:c1:a6:d2:46:
40:45:8c:71:81:06:cf:52:e9:ff:19:18:77:15:61:ad:5e:09:
75:82:ca:1c:f7:1e:38:b2:3e:27:61:75:30:b6:02:bf:a9:c4:
9f:9d:c3:14:63:36:b5:6a:1a:4e:b1:69:d2:46:7a:39:fe:cf:
9c:fe:bc:43:77:e7:63:9d:1d:d5:57:8e:d5:3a:61:96:28:2b:
26:44:e9:ef:37:a9:a7:39:18:04:08:a2:f6:ba:4a:6c:48:6d:
07:24:a3:dd:08:70:c0:06:ae:d2:31:91:63:ff:f4:0c:e2:71:
f4:74:9e:7e:d4:84:66:72:e8:f6:c3:e8:37:ab:f4:c8:91:f3:
97:44:59:9b:72:55:6a:20:ce:ee:04:08:25:f3:cd:c9:5c:28:
b8:19:87:75:2b:18:0d:b6:08:29:77:fa:48:37:81:ef:80:c6:
e0:3a:a0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:54 2024 by rpki-client on console-ams.rpki-client.org