Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F6C713AA8DF11EF80B9B870762E951A.roa
File: 0F6C713AA8DF11EF80B9B870762E951A.roa (raw, json)
Hash identifier: PCt1Fi1X/hpWCl/dXL9sbVQghj5wWCvmHRH8kgd0CEA=
Subject key identifier: 10:85:4A:50:4B:F6:4D:DA:33:2C:4A:56:58:92:4D:9D:D0:89:B4:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01107B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F6C713AA8DF11EF80B9B870762E951A.roa
Signing time: Fri 22 Nov 2024 14:35:46 +0000
ROA not before: Fri 22 Nov 2024 14:35:42 +0000
ROA not after: Tue 03 Dec 2024 14:35:42 +0000
asID: 18013
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69755 (0x1107b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:35:42 2024 GMT
Not After : Dec 3 14:35:42 2024 GMT
Subject: CN=674096c2-5fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:df:9f:aa:fb:db:29:72:c8:38:f1:7d:c2:73:
ef:93:8a:53:ed:32:a4:eb:d4:06:ce:9b:be:0c:8b:
3c:00:61:17:ef:5d:da:0f:ca:b0:2b:ba:06:07:67:
5b:a5:35:e7:14:0a:e5:27:4a:0d:11:c5:fd:33:b0:
00:b9:96:4b:dd:0e:74:79:d1:ea:27:22:c8:53:85:
31:10:50:bb:f5:a9:46:a2:f4:65:4d:bc:46:45:39:
5c:6b:c4:f6:86:92:91:27:21:39:fc:79:2b:be:f4:
65:6a:ad:84:de:24:7d:9d:15:23:de:ce:80:82:7d:
ea:da:76:da:e9:e5:43:9b:3f:33:da:81:bc:e4:51:
c7:b4:d3:ed:e8:ae:68:d4:78:e2:22:ae:e4:30:b7:
34:c9:af:84:5f:fb:65:03:81:5a:0d:b0:86:96:f1:
0d:8f:4a:33:20:27:d5:2d:8f:a2:c4:0b:76:3c:a2:
d9:92:b4:53:0b:fc:4a:74:91:61:98:37:66:ea:9d:
2c:11:09:54:4e:ca:d0:5f:61:c0:16:d0:b6:0e:07:
b9:a3:ec:76:ac:95:45:f5:9a:5f:2d:d7:d0:00:2d:
11:f1:90:43:0d:c1:c7:5a:7b:76:1e:d5:70:1f:3b:
d7:fd:83:b2:b6:dd:84:58:a1:40:25:69:22:71:7e:
3f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:85:4A:50:4B:F6:4D:DA:33:2C:4A:56:58:92:4D:9D:D0:89:B4:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F6C713AA8DF11EF80B9B870762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:0d:b1:7a:46:08:fe:4b:6b:aa:78:d6:ec:a8:25:54:24:da:
44:64:55:a1:7d:67:d6:90:76:71:7e:21:f8:9f:05:44:f8:42:
47:e3:ed:ff:0a:e5:94:b9:dd:6f:e3:8f:09:8d:6c:f6:f0:86:
df:d9:21:90:b2:32:de:9a:b1:d2:a4:66:27:87:aa:91:c5:e2:
fd:31:6c:6c:d4:e4:fa:22:c7:21:a5:cc:da:50:83:a4:18:9b:
0e:92:5c:f7:45:dc:59:44:5d:9a:99:11:96:f3:b2:48:20:c4:
84:85:10:80:ea:f4:16:2d:f7:b9:97:6c:c2:10:fd:3f:d0:c3:
24:dd:43:f3:9c:21:5a:ff:ec:f4:69:97:ed:a4:57:78:0a:86:
0e:6b:bc:2d:8d:cc:4c:25:e6:ea:68:5b:6a:2c:51:7e:22:5c:
83:7e:3b:71:2f:46:f6:d8:99:ab:17:50:0e:4b:e1:20:70:41:
60:3d:98:4a:58:e9:59:6a:6a:98:57:71:e3:3c:b4:03:6a:40:
f6:d9:12:d3:63:5e:72:9b:08:a2:1c:95:49:74:83:e3:45:28:
60:4f:35:17:a1:7b:59:ae:81:5f:a4:b3:78:40:48:7c:82:5f:
ac:a5:ef:89:06:b8:85:cb:c7:83:5f:73:ca:10:a8:19:e2:19:
70:4f:ff:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:55 2024 by rpki-client on console-ams.rpki-client.org