Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BD842F89C1C11EFACE9C67C762E951A.roa
File: 0BD842F89C1C11EFACE9C67C762E951A.roa (raw, json)
Hash identifier: rrwtfkHfyI1ajWWh1zfVzpKGFEWHsD62eeUeA85Zhn4=
Subject key identifier: 3F:CC:20:06:74:4D:26:26:03:7B:A4:FE:88:40:3D:FC:39:65:6E:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01086A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BD842F89C1C11EFACE9C67C762E951A.roa
Signing time: Wed 06 Nov 2024 08:49:34 +0000
ROA not before: Wed 06 Nov 2024 08:49:31 +0000
ROA not after: Mon 30 Dec 2024 08:49:31 +0000
asID: 138915
IP address blocks: 154.93.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67690 (0x1086a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 6 08:49:31 2024 GMT
Not After : Dec 30 08:49:31 2024 GMT
Subject: CN=672b2d9e-79aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b7:47:2e:dc:d3:5e:d6:d1:a4:e5:5a:87:7f:
51:22:bf:76:fc:2b:82:11:8b:54:e7:f6:13:55:fd:
41:63:40:ac:03:44:5b:db:3e:02:11:41:a5:2e:86:
e3:04:eb:09:e8:89:0a:4b:01:75:45:fc:84:dd:c3:
01:6e:3f:e0:16:3d:5f:3c:22:c9:f3:88:59:91:75:
4e:f5:5e:11:b1:4e:de:c4:3d:44:a3:79:f6:f6:81:
b8:00:2a:6e:9e:ef:04:eb:7c:64:ef:0a:ed:ed:f4:
0a:4f:b2:f0:b9:c9:d1:0b:77:66:51:d7:9f:7e:c2:
b8:eb:e1:9e:a1:f9:2c:7a:6a:9c:5c:1f:0f:b7:71:
0c:c8:5c:30:de:5d:cc:69:16:70:71:04:ac:09:17:
e3:2c:46:0f:d8:d8:1d:e0:85:ac:ad:68:0d:4b:72:
e6:4e:b6:e8:a7:b2:c0:a4:c1:1e:c7:0f:2d:23:e6:
bf:d2:e5:88:4c:e6:89:74:9b:39:e7:a2:a9:5a:62:
33:dd:1c:3a:fd:97:c2:3f:28:d8:a1:10:1e:1b:47:
78:84:ad:d2:ce:53:2f:2e:89:27:f6:48:74:5b:ab:
f8:54:98:b7:a3:ff:4d:fa:5d:db:9d:a5:b8:22:6b:
60:d6:e6:63:02:18:3a:09:07:25:19:6e:8d:b1:4e:
4f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CC:20:06:74:4D:26:26:03:7B:A4:FE:88:40:3D:FC:39:65:6E:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BD842F89C1C11EFACE9C67C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.74.0/24
Signature Algorithm: sha256WithRSAEncryption
54:f1:2e:4b:3e:5e:db:5a:bb:f4:f0:00:e9:b2:7d:f6:79:83:
10:e1:83:49:a9:ed:f1:94:71:fa:36:ad:f3:19:ad:c2:58:cd:
ce:55:1e:1a:80:5b:60:97:7b:41:2b:d0:98:e6:ee:97:6f:07:
f7:7d:43:d4:c3:1e:e7:38:0c:43:d1:51:d7:1d:51:f0:53:09:
f7:40:ae:22:e9:bf:7c:f2:95:d2:10:ef:12:0d:30:19:2d:a4:
43:bc:25:3e:b4:65:34:0e:43:8c:44:f9:39:14:7c:49:1a:26:
bd:47:1e:eb:54:b6:9c:9f:93:78:bf:70:3a:27:6f:de:9b:8f:
3c:02:98:88:3e:40:26:12:33:e7:eb:d2:bd:44:33:6c:4d:99:
37:9d:8c:c5:06:ec:13:b2:d9:84:af:9e:69:4c:62:42:8d:24:
67:50:48:d6:13:4e:a2:21:0d:29:f6:01:e0:f0:57:06:c3:65:
08:fa:12:7d:39:72:79:f7:f4:db:31:a8:4c:94:75:51:7e:7d:
1d:c7:fe:d3:fb:62:a3:24:bc:40:d3:d8:a4:03:4b:1e:ce:bc:
5f:69:f2:a9:f6:31:7a:7a:1b:fd:a7:ac:1a:bf:25:90:ae:62:
4d:ff:60:0d:f6:cc:9e:a0:3a:4d:9b:c0:23:28:05:59:70:8f:
a5:04:d9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:55 2024 by rpki-client on console-ams.rpki-client.org