Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F33232CA8DE11EF86DE136A762E951A.roa
File: 0F33232CA8DE11EF86DE136A762E951A.roa (raw, json)
Hash identifier: 1z/iAUczeAv6Ot6cldFfIxyzYmcL+9Za/8Ksk0xQwTE=
Subject key identifier: E2:43:D9:15:E4:F5:BA:25:D9:73:A5:82:55:62:C1:02:AA:7C:70:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01106F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F33232CA8DE11EF86DE136A762E951A.roa
Signing time: Fri 22 Nov 2024 14:28:36 +0000
ROA not before: Fri 22 Nov 2024 14:28:33 +0000
ROA not after: Tue 03 Dec 2024 14:28:33 +0000
asID: 21738
IP address blocks: 154.206.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69743 (0x1106f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:28:33 2024 GMT
Not After : Dec 3 14:28:33 2024 GMT
Subject: CN=67409514-07db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:5f:bb:e7:24:94:b0:14:6d:a5:8f:19:2b:
d8:d4:3c:42:d3:20:fb:ed:6d:84:96:09:c2:8e:13:
4d:c7:4c:0e:17:76:da:2e:50:93:94:b1:07:16:b9:
89:01:00:d3:8f:0f:b2:88:fc:15:dc:27:81:bd:6c:
cb:23:22:a7:e1:78:ec:c8:a8:bd:c4:18:e6:7d:d2:
25:2c:b7:01:10:00:6f:c4:5c:bd:51:6d:09:8d:e3:
0f:c0:ce:6c:0c:b6:99:0c:a3:5f:df:17:8d:5b:a9:
7e:f3:41:79:2c:28:b0:60:60:8a:45:19:6f:7c:bb:
46:9e:b5:47:38:30:f3:07:14:45:08:b4:52:79:a6:
c5:33:3a:6f:f2:b8:0e:33:aa:6e:03:72:95:d9:68:
f8:5b:0e:eb:89:b5:fc:6d:81:4a:1e:dd:59:bc:ee:
9d:65:f9:28:88:54:95:91:25:17:cd:af:f2:df:97:
4f:94:2d:97:b1:40:51:74:e6:c7:5e:a6:6a:12:53:
0f:a8:45:a2:48:f6:b8:eb:4f:cb:d6:7e:89:3b:bd:
37:3c:62:17:76:d3:81:2d:9d:27:27:22:cb:29:c2:
c6:04:01:69:cd:e7:2b:a1:f7:04:8f:b1:cb:f7:d4:
57:a1:df:62:a1:dd:f7:3b:da:d8:e5:65:f4:e3:a1:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:43:D9:15:E4:F5:BA:25:D9:73:A5:82:55:62:C1:02:AA:7C:70:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F33232CA8DE11EF86DE136A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.19.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f7:34:10:7f:ab:8a:f7:07:f4:f4:48:88:d9:e2:76:f1:06:
94:4a:a8:06:9c:64:9a:40:14:3f:7d:9b:48:30:a0:1e:26:28:
93:3d:42:7d:ee:73:7a:a4:ff:23:a5:a4:f1:c2:7f:ca:c7:cd:
f8:5f:15:25:31:7b:06:aa:f5:19:44:bb:67:25:ff:de:64:4b:
c3:1c:e7:4f:51:b3:ec:a6:1c:c3:b5:fe:d0:19:81:c7:8f:68:
51:ca:34:6e:1e:b9:4b:65:b3:0c:85:b7:fb:0e:85:d4:5d:22:
db:d0:d5:a7:79:5c:52:37:90:ac:aa:90:d2:e3:e4:e3:00:3f:
29:b4:09:58:c0:a2:ce:40:6b:1d:94:f4:f0:e9:b9:bd:c4:f0:
71:c8:5c:72:af:ab:14:67:e8:60:fa:20:e5:ba:41:c4:71:ad:
6f:ef:2d:30:77:49:4b:e5:88:90:b8:6c:65:15:5a:79:a8:bb:
5e:23:f7:44:ab:bb:1f:ad:6c:63:0e:f1:db:17:b0:51:78:12:
ae:0e:04:90:25:5b:6c:c1:b6:b0:db:38:71:3d:94:d2:a7:66:
af:d5:74:96:1f:e5:a8:65:ec:cb:df:81:3b:45:72:99:4e:af:
76:6d:d5:09:56:85:04:db:e5:20:08:97:91:81:e7:ca:d2:f5:
77:4d:7b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:55 2024 by rpki-client on console-ams.rpki-client.org