Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/150006CC74CB11EF9618EAB5762E951A.roa
File: 150006CC74CB11EF9618EAB5762E951A.roa (raw, json)
Hash identifier: NTJsHe8uMsYp6q8FbNiuj5b8AHWGXbLlTQc5Dp+q6jI=
Subject key identifier: 85:70:0B:EA:D5:FC:8C:5B:6D:DB:E2:1B:A8:22:EC:E7:40:5A:5F:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EFDA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/150006CC74CB11EF9618EAB5762E951A.roa
Signing time: Tue 17 Sep 2024 08:01:45 +0000
ROA not before: Tue 17 Sep 2024 08:01:42 +0000
ROA not after: Sat 30 Nov 2024 08:01:42 +0000
asID: 142403
IP address blocks: 154.221.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61402 (0xefda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:01:42 2024 GMT
Not After : Nov 30 08:01:42 2024 GMT
Subject: CN=66e93769-e998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:78:08:cf:c9:6a:49:c1:b5:54:8c:28:a2:
e2:da:c1:82:3f:05:50:37:4d:1a:5c:b7:d1:b6:21:
5f:1b:5f:07:dc:61:92:ea:b6:f1:28:9a:57:8e:e3:
4e:dd:bc:bf:ae:2d:4e:02:14:1a:2f:76:f0:f7:f0:
1a:b7:13:ed:69:d4:15:fb:28:37:9c:cf:4a:e0:f2:
80:54:3e:43:df:7c:11:fe:c0:b8:3b:8c:63:b6:c5:
f5:53:30:7c:4a:ac:2d:8c:a7:3a:a7:5b:bf:b2:3f:
76:99:29:1d:35:72:4e:b9:07:ca:b8:e9:8f:ec:27:
61:02:3d:ef:0c:cd:c5:ff:f9:4d:ec:d8:8d:c3:3c:
96:9c:90:61:fb:12:c0:fb:fe:15:3b:d6:b1:00:7d:
9d:c1:00:95:b7:1c:a9:17:1c:92:c3:3f:91:1b:2d:
77:bb:d9:bf:ee:ef:1e:6c:5a:85:72:1b:82:4f:37:
67:fb:27:4d:0f:c5:b5:65:2a:c4:d1:e4:41:e1:2f:
18:1b:e8:40:d3:ff:c8:2a:43:74:c6:a8:53:94:c3:
47:72:80:46:02:42:ed:18:1d:d5:b5:5c:50:8d:89:
75:83:d4:c1:c9:d4:c4:91:c7:59:d2:21:4e:f7:53:
4d:56:62:1a:48:b7:ae:82:3e:96:f5:0f:a2:5e:7f:
02:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:70:0B:EA:D5:FC:8C:5B:6D:DB:E2:1B:A8:22:EC:E7:40:5A:5F:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/150006CC74CB11EF9618EAB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.28.0/24
Signature Algorithm: sha256WithRSAEncryption
22:2a:60:8e:7a:e7:43:ca:2d:09:80:29:1e:53:31:fc:4b:8f:
71:85:35:ae:5f:c0:55:17:3a:51:cd:c5:3d:be:90:43:26:3b:
25:39:3f:03:ca:e8:c1:10:45:3a:00:ff:80:c7:0e:02:69:1f:
e6:f5:84:5a:aa:4a:d0:a2:ab:0f:dd:29:c1:eb:d0:8e:d9:c7:
7a:97:56:aa:10:e3:9b:ee:5a:6d:a4:0d:c4:bf:65:80:6e:f5:
67:4b:b1:f0:ef:52:2e:5d:5a:cb:e1:eb:d1:6b:fe:e6:db:22:
85:22:41:5c:6d:dc:07:ce:69:b9:71:8b:3e:91:43:74:56:70:
d8:4f:57:d0:f2:4e:6c:5e:3b:7f:55:c2:16:9f:c2:a9:e2:3b:
14:93:89:07:1d:4f:5f:07:0c:d3:d3:4f:c8:5c:95:3f:db:d7:
b1:d3:78:58:f2:89:05:30:b2:fd:57:43:66:e3:4c:00:3e:a0:
d5:e7:ca:6d:e4:15:ab:1a:bb:17:8c:b2:6f:22:c3:1e:8e:2f:
e2:f4:bf:99:2e:a2:0c:16:b2:47:17:ed:4f:17:85:c1:97:a3:
bf:3e:28:07:95:84:73:03:c2:28:5c:14:a1:c3:91:d5:cd:9a:
67:be:88:b2:e4:1d:c3:2d:e2:38:92:47:05:c5:23:58:8a:0a:
98:99:f9:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:55 2024 by rpki-client on console-ams.rpki-client.org