Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FE59E6A9DA511EFAAC880AD762E951A.roa
File: 0FE59E6A9DA511EFAAC880AD762E951A.roa (raw, json)
Hash identifier: 64eXeqroR03F3SZUQsCGgfndMMjx6oobyHPrRrCjpyc=
Subject key identifier: 1D:3A:56:EF:76:45:6D:9A:C7:B7:82:A9:CC:4C:19:3E:D1:DC:D8:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FE59E6A9DA511EFAAC880AD762E951A.roa
Signing time: Fri 08 Nov 2024 07:42:53 +0000
ROA not before: Fri 08 Nov 2024 07:42:50 +0000
ROA not after: Sun 01 Dec 2024 07:42:50 +0000
asID: 64126
IP address blocks: 154.88.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68052 (0x109d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:42:50 2024 GMT
Not After : Dec 1 07:42:50 2024 GMT
Subject: CN=672dc0fd-dbaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:dc:5e:c8:be:f6:0a:f3:93:db:37:31:c5:c2:
a0:5c:1d:f0:c8:dc:bb:d1:94:cd:9b:8d:02:0c:64:
6f:c8:75:1f:bf:da:20:44:e6:e7:fe:ce:ee:49:65:
30:02:5d:07:60:78:6b:22:f7:04:b9:74:4c:8e:09:
34:7b:46:b4:09:a0:c6:80:a4:0a:5a:71:a3:fd:19:
5e:28:19:80:f8:da:7b:50:65:1e:e6:8d:a2:44:b7:
db:08:39:1a:a8:c1:8d:a5:66:00:a9:b5:4e:ec:df:
91:07:05:1f:82:aa:7d:99:12:77:83:9c:02:fe:6b:
0f:cc:76:ff:45:d5:e1:87:2e:5b:66:c5:ff:31:0a:
0c:fc:bf:d0:4e:95:9a:10:89:67:73:ec:1f:3f:23:
cb:32:fe:53:dc:f4:e6:f4:5c:d5:14:a6:89:92:16:
46:e0:58:b2:db:92:a4:dd:ca:92:64:14:e2:7f:68:
dd:fb:3b:b4:06:cf:38:01:90:58:de:a3:3b:6c:b5:
57:e3:c6:56:e0:91:f2:1b:a8:a7:89:08:5d:e9:ff:
39:45:7f:40:9e:e4:21:11:4a:e3:2f:eb:5c:5f:44:
c9:f6:9f:f6:5d:5e:98:11:d9:c8:4d:7a:d0:e2:93:
cf:d2:81:8b:d0:9c:9d:9a:18:32:e2:a1:0f:4a:e6:
a3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3A:56:EF:76:45:6D:9A:C7:B7:82:A9:CC:4C:19:3E:D1:DC:D8:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FE59E6A9DA511EFAAC880AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8e:e4:30:6b:82:58:c2:3f:4a:13:74:b7:9a:d0:c3:d8:6c:fa:
41:c8:6f:42:52:ac:7f:f2:98:7f:06:ad:66:83:0e:c7:bc:3a:
6f:a2:67:86:20:76:e3:1e:fe:3a:a1:ad:ca:9b:54:79:dd:75:
ab:d2:1b:58:b5:ed:79:a3:08:03:55:14:3a:02:01:b1:34:4a:
b4:b0:a1:c3:54:c7:84:b6:96:0e:d1:66:70:eb:1e:f3:82:9f:
23:00:8c:c9:97:00:68:42:bf:50:25:b8:ae:dd:81:d3:e4:59:
d3:04:bc:2b:57:18:02:a6:08:fa:49:a9:f9:82:9c:f1:bf:66:
e0:ad:ff:0e:b8:f7:a1:9c:a3:6d:4d:81:24:56:ea:08:f2:3f:
4d:71:94:b2:68:67:19:c4:5d:f7:c5:e8:d3:43:93:cb:07:ad:
44:0f:dd:9c:b8:8c:39:7c:69:c8:0f:de:7b:08:e4:76:57:77:
3a:dc:70:20:db:53:55:2c:31:10:cb:a8:84:e6:5e:c0:29:aa:
f3:45:38:74:2f:c9:c6:f3:e5:07:04:4c:88:1e:b9:65:40:36:
ea:6b:13:72:ad:16:d7:fc:f4:bd:50:9c:4e:15:3d:78:a0:46:
92:4e:2d:21:a4:7a:2e:51:35:0b:ca:20:94:c3:79:8c:04:34:
a7:ac:0f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:30 2024 by rpki-client on console-ams.rpki-client.org