Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1497081A9A9211EFACD6CB45762E951A.roa
File: 1497081A9A9211EFACD6CB45762E951A.roa (raw, json)
Hash identifier: k01OJP8E7nPmcmv3CK7UN6IVXCITmM9cKTShaJex5Hw=
Subject key identifier: 65:39:3F:D3:B6:73:AF:8D:2B:1B:6A:C4:2B:78:42:6B:9A:83:41:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010676
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1497081A9A9211EFACD6CB45762E951A.roa
Signing time: Mon 04 Nov 2024 09:49:27 +0000
ROA not before: Mon 04 Nov 2024 09:49:23 +0000
ROA not after: Sun 04 May 2025 09:49:23 +0000
asID: 138678
IP address blocks: 154.196.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67190 (0x10676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 09:49:23 2024 GMT
Not After : May 4 09:49:23 2025 GMT
Subject: CN=672898a7-dc26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a7:1b:c2:8c:69:33:e9:cb:d9:f7:97:2b:df:
19:69:3d:53:75:e8:f9:02:f7:0d:d8:c1:68:d1:e6:
8f:52:24:1f:00:d5:5d:db:68:c1:9e:fa:90:2d:e3:
73:b5:da:46:8f:56:42:d1:6a:15:e9:08:f0:8e:d3:
36:2a:c6:b1:a4:08:95:d0:1e:b0:a4:2a:21:7d:e4:
a7:8c:37:8f:f8:5d:32:db:7f:4b:61:9e:d9:03:e2:
e5:a9:85:61:16:70:69:bd:82:d7:8f:f3:6c:ac:bc:
6c:ea:47:af:cb:23:07:10:00:ba:ff:b8:0f:1f:6c:
ef:cc:b8:ac:71:51:92:51:4c:06:56:88:1e:22:08:
ea:b2:ab:75:22:9f:f8:d2:f3:00:3c:a1:03:2e:9e:
bf:00:ad:f0:d4:19:5b:32:37:59:d9:1c:96:b1:f1:
6b:7b:84:86:d7:4c:e8:1d:5e:f5:68:ee:6e:22:b2:
f8:79:dc:d6:a0:48:31:a8:c6:05:8a:c3:b5:5a:85:
ed:c0:86:76:04:0b:c1:7a:57:9b:9b:09:d0:8c:dd:
6f:d8:04:a7:2c:8b:9e:f6:ce:13:91:ba:c4:e4:51:
0e:28:b4:bb:bd:86:7f:8a:9f:72:96:df:15:5a:14:
fa:4b:d8:8c:88:71:3d:6b:2d:02:2e:20:49:67:65:
7e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:39:3F:D3:B6:73:AF:8D:2B:1B:6A:C4:2B:78:42:6B:9A:83:41:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1497081A9A9211EFACD6CB45762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.1.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:2a:dc:d1:d7:81:c1:b6:47:b4:ed:b1:2b:c3:9f:12:2c:8d:
de:a5:86:72:b6:27:5a:14:7d:ec:e8:9e:38:38:28:ca:40:09:
33:09:8e:35:32:e6:41:26:e0:3d:e2:36:87:a9:03:02:bc:c9:
59:79:1b:b6:ae:c5:af:af:33:a2:61:67:f9:34:a0:89:5b:60:
b4:9a:88:a5:cd:64:2c:b4:64:0a:d3:46:c1:39:76:2b:e0:66:
30:16:d3:34:da:93:d4:91:32:47:e1:11:48:96:57:52:2d:b4:
04:1c:37:2c:70:bc:72:e9:99:3a:db:12:b4:3e:91:9e:91:38:
0a:79:aa:7f:04:7a:61:71:37:2f:f3:b4:5e:a2:4c:25:44:9b:
e2:ee:49:32:33:3d:0a:6a:44:7b:0a:52:47:ea:e0:89:da:6d:
fc:9d:df:da:4a:d4:e0:7e:4f:29:2f:59:b0:f5:d4:58:4f:5c:
bb:9e:1e:36:86:5e:af:f3:af:84:3a:4b:fc:77:06:b5:ac:64:
9f:4b:70:14:4d:dd:24:fc:fc:f5:86:df:71:9c:ce:53:31:39:
c8:90:2c:10:92:df:d2:28:e8:84:c1:64:7c:30:8e:0b:ed:ab:
66:66:24:3a:f3:e3:b7:05:d8:f7:8f:c4:14:96:08:4a:db:75:
9b:50:bd:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:55 2024 by rpki-client on console-ams.rpki-client.org