Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D862B14AE2011EE9068D1A2775412E6.roa
File: 0D862B14AE2011EE9068D1A2775412E6.roa (raw, json)
Hash identifier: bNA0+FivjkHnFjkqR267oD1sSc4aJB3v2Z4fgAGyQdE=
Subject key identifier: AB:0B:09:E3:78:7B:0E:AB:CB:22:AD:89:C7:8B:23:24:96:3C:A9:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D862B14AE2011EE9068D1A2775412E6.roa
Signing time: Mon 08 Jan 2024 12:18:38 +0000
ROA not before: Mon 08 Jan 2024 12:18:35 +0000
ROA not after: Tue 14 Jan 2025 12:18:35 +0000
asID: 138965
IP address blocks: 154.222.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29392 (0x72d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 8 12:18:35 2024 GMT
Not After : Jan 14 12:18:35 2025 GMT
Subject: CN=659be81e-9302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:19:f4:03:78:02:78:a5:51:03:a7:63:2e:28:
63:e0:ea:4e:6c:63:80:6b:ef:40:d2:3d:f4:e0:ea:
49:1b:fd:96:e0:aa:67:db:38:ab:a2:9c:c4:6b:d9:
65:35:90:5e:4b:aa:b8:c9:5c:41:9e:41:0b:a0:98:
a7:47:1e:88:3b:d3:8b:21:a5:be:68:d4:40:58:5f:
7f:f6:74:12:44:2a:12:5b:63:9a:45:aa:70:f2:cb:
08:16:81:84:bc:54:a5:2e:bd:a5:dd:ea:64:90:3a:
0e:bf:0f:34:97:3c:76:7b:8b:18:2e:d8:79:6c:d5:
3d:9c:64:2a:21:b2:e2:9c:eb:92:71:8f:3d:25:8f:
03:2c:ae:01:34:6a:58:57:58:74:99:c9:d0:0d:3a:
c7:6d:08:bb:6c:dc:c8:ff:af:be:6b:5e:5a:0f:6d:
52:ce:85:7a:d0:92:65:a3:e0:3c:5a:43:ce:10:82:
a8:c2:fe:96:36:42:44:98:55:57:ae:e7:dc:04:30:
13:39:28:7b:c6:3b:c4:57:e2:7a:bc:0d:ee:75:85:
08:2e:fe:53:b1:8c:a9:92:00:dc:92:f4:fb:a1:d2:
10:33:24:42:6b:f2:c0:26:26:ee:58:f6:6a:4b:22:
98:c3:9b:4a:e7:de:71:22:d4:b0:2d:22:f3:89:fd:
74:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0B:09:E3:78:7B:0E:AB:CB:22:AD:89:C7:8B:23:24:96:3C:A9:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D862B14AE2011EE9068D1A2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.50.0/24
Signature Algorithm: sha256WithRSAEncryption
45:83:ab:50:82:4f:f2:b0:60:b2:b1:f0:2c:e8:32:71:05:ab:
28:ca:f1:37:39:7d:db:fc:2d:30:67:94:cf:32:f2:40:8e:0c:
f7:bb:39:51:c6:b4:4d:1e:b7:60:d3:13:1a:d1:7d:e9:1f:06:
d4:da:1f:4a:49:71:e2:c9:1c:e5:3e:f2:09:35:72:a9:26:83:
d7:db:87:e6:20:8d:d8:e9:a4:ba:e7:78:c7:a4:39:8c:2b:a2:
56:eb:59:d3:76:c5:79:a4:30:6f:77:1a:80:43:91:48:6b:81:
03:0e:f9:c4:c2:4f:39:33:53:7f:9d:9a:62:0b:7b:f2:82:77:
83:74:fe:f9:99:ab:a8:97:94:8e:a4:bc:e5:97:ef:ae:fa:a9:
35:73:1f:0f:c8:5b:8c:22:ec:f1:e9:e2:49:16:48:f1:07:85:
5f:19:d2:e1:a2:1c:43:cd:c8:2a:a6:d2:fa:39:a0:a9:62:b0:
ee:e1:cf:de:23:2b:9f:85:2e:b8:f0:73:db:32:6b:51:d1:b0:
5a:31:df:c1:d1:ee:6b:9d:2f:b5:0e:7f:3a:6b:41:6f:22:be:
39:b2:46:3f:a4:9c:fc:35:94:0e:b4:85:9d:67:4e:8a:3d:97:
ba:37:00:e5:33:3f:ec:ed:0a:9b:b0:f5:fc:57:cc:3a:9c:ca:
5d:7a:9c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:54 2024 by rpki-client on console-ams.rpki-client.org