Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1561FE8E3F5D11EFAF6B1783762E951A.roa
File: 1561FE8E3F5D11EFAF6B1783762E951A.roa (raw, json)
Hash identifier: TUAwTARaH2fggs+uc1CXiPw7/MHfuWFv+r4m8A2L/eI=
Subject key identifier: CB:CA:DA:04:77:E0:6F:AA:37:24:28:09:99:33:C4:43:6F:08:7C:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D0AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1561FE8E3F5D11EFAF6B1783762E951A.roa
Signing time: Thu 11 Jul 2024 08:10:49 +0000
ROA not before: Thu 11 Jul 2024 08:10:46 +0000
ROA not after: Thu 24 Jul 2025 08:10:46 +0000
asID: 151196
IP address blocks: 154.204.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53420 (0xd0ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 08:10:46 2024 GMT
Not After : Jul 24 08:10:46 2025 GMT
Subject: CN=668f9389-d193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:00:7b:d9:34:e3:65:5a:0c:2d:ec:60:de:18:
a8:6b:4e:04:26:cb:64:ef:16:41:38:b9:bc:f0:d1:
c9:b3:66:ce:14:23:16:17:31:b1:cf:db:14:a9:57:
b5:29:b1:29:a8:7b:3e:86:57:34:0f:b6:65:8d:ca:
27:59:eb:4a:26:ac:5f:63:06:ef:c9:ff:0c:2e:80:
43:c1:56:76:81:01:98:68:55:3b:7e:7d:e2:7b:9e:
66:e9:8b:54:08:59:57:56:dd:e4:96:a4:69:db:80:
1a:32:8c:f8:51:6d:9e:5d:f7:ec:7a:9c:a1:89:92:
d8:35:0b:e4:da:9f:cb:3a:1e:00:e7:d0:f7:d6:35:
72:2b:40:14:74:0e:98:5c:66:72:2d:b7:33:1d:41:
64:ad:bb:4e:98:81:2f:e4:3c:f2:73:2b:2e:46:6f:
c4:89:d3:8e:92:cd:6d:32:64:a7:78:31:61:b8:03:
05:22:25:b6:fc:73:a4:27:f5:ad:7d:ed:04:de:41:
b0:15:93:c9:d0:fe:64:bf:54:6b:dd:c3:33:be:8b:
ca:d5:63:b6:1a:ab:cf:cc:2c:7d:55:5a:6d:5f:9a:
26:39:61:80:b3:61:60:13:95:b6:1c:5a:0d:41:59:
6a:34:ec:f8:96:77:20:38:2d:2d:50:53:c5:a2:7a:
e4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:CA:DA:04:77:E0:6F:AA:37:24:28:09:99:33:C4:43:6F:08:7C:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1561FE8E3F5D11EFAF6B1783762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.47.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:19:e8:b5:5d:e2:38:4b:f2:0e:67:45:df:e9:19:b4:ae:e0:
11:48:b4:40:49:12:ba:e1:52:08:ac:ce:82:33:6d:02:29:ef:
31:54:60:2b:00:34:de:fa:68:6b:ba:c2:0a:8c:a8:91:23:5a:
70:56:e4:c7:38:ce:16:6a:f3:77:b6:56:36:ef:39:66:90:d8:
6b:d1:62:6a:72:61:b7:98:0a:0a:bf:3f:b2:ac:59:dc:e7:2b:
e2:d0:d5:23:0c:4a:d0:cb:9d:f4:11:94:f5:e6:f4:fc:84:9e:
af:9f:16:90:c9:89:88:77:be:0d:2a:8a:f5:e6:8f:56:ca:cb:
d8:1a:33:fa:40:13:a5:78:25:45:09:cc:c0:18:a5:02:b3:2c:
2d:6b:5b:a3:75:ff:48:30:42:be:6f:39:b4:5a:3b:ff:36:b2:
98:f8:c8:45:bb:0c:60:87:df:25:72:41:7f:ad:79:ee:49:49:
78:6b:22:0b:d7:fa:b3:73:18:58:22:dd:f1:bf:cc:1f:15:ea:
6f:50:8c:ec:27:34:1c:6b:72:f4:f8:a3:9f:ab:4f:bf:00:0a:
09:59:0b:33:dc:72:7b:00:27:a6:c6:45:e1:a3:68:ce:e7:41:
20:0a:ff:7a:95:59:f7:84:f4:9e:65:46:43:d6:32:e0:b7:ef:
2f:48:f4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:57 2024 by rpki-client on console-ams.rpki-client.org