Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B8669D0A26311EFA24F66A3762E951A.roa
File: 1B8669D0A26311EFA24F66A3762E951A.roa (raw, json)
Hash identifier: fYKwSimX0sddJoT9l7Q19NiQTccCLQ7blXCxB9QSmUg=
Subject key identifier: 2E:76:2C:62:7C:2E:D1:3B:3F:10:9B:B9:0B:21:AE:11:3D:C2:46:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CF8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B8669D0A26311EFA24F66A3762E951A.roa
Signing time: Thu 14 Nov 2024 08:33:22 +0000
ROA not before: Thu 14 Nov 2024 08:33:18 +0000
ROA not after: Fri 20 Dec 2024 08:33:18 +0000
asID: 22724
IP address blocks: 154.89.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68856 (0x10cf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 08:33:18 2024 GMT
Not After : Dec 20 08:33:18 2024 GMT
Subject: CN=6735b5d2-ea44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:83:36:12:ee:eb:0f:f4:66:43:8e:2e:8b:42:
dd:85:ce:41:ce:b6:8f:2c:f4:eb:e7:ac:aa:65:fa:
50:5f:6b:43:94:78:aa:0d:36:46:69:31:e9:c4:60:
90:c0:fa:65:d2:cb:a0:26:5c:91:09:c0:a3:f8:ca:
6d:ca:d4:a9:31:6f:d1:7c:cb:1f:c9:b9:62:1f:36:
74:59:b3:7b:34:19:0c:33:05:c4:79:58:dd:d9:49:
12:73:08:59:a4:76:98:95:03:ac:cd:2e:b5:05:8b:
0e:cc:c3:66:45:2b:0a:aa:56:da:5a:a9:ee:db:33:
e1:45:68:13:22:7c:a7:39:ff:8c:d4:9e:f8:6b:5e:
57:53:3b:d2:a9:7c:63:d8:2a:21:18:a3:4c:4a:a1:
7e:31:cc:06:d0:3b:1c:7e:36:24:7a:91:23:24:7c:
b0:19:28:ec:4c:00:c1:c3:5f:10:ba:b1:22:30:3f:
97:33:84:b3:83:9f:ee:25:a2:ca:b0:2d:69:83:ab:
51:f2:85:a0:93:56:38:06:30:b9:ab:1a:05:50:8e:
14:d3:7b:b7:33:dc:7f:93:31:d1:f3:65:65:52:9d:
85:06:98:e4:6a:d3:8b:8a:6f:37:8e:cb:74:5a:9a:
8c:8c:66:f9:35:ec:a8:d6:8a:51:bd:68:ca:62:c9:
bb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:76:2C:62:7C:2E:D1:3B:3F:10:9B:B9:0B:21:AE:11:3D:C2:46:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1B8669D0A26311EFA24F66A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.16.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:71:d5:84:47:94:6e:b0:a9:55:0d:56:17:8f:9b:8c:47:e8:
ac:d6:23:fe:28:2b:39:dd:a7:6d:47:3b:f5:4b:b8:d0:e3:73:
a1:1f:87:48:20:68:60:9a:f0:89:51:02:b7:e7:2c:cd:c6:42:
60:f5:2a:cd:a6:41:d3:5a:c3:f2:81:c8:92:59:5a:27:62:a9:
c5:2b:3a:b1:7b:11:54:28:6a:d0:07:1a:4c:9c:11:14:91:6b:
b0:3e:89:ef:7b:e3:df:0c:3b:f7:d9:40:b4:aa:e9:ad:32:c3:
25:a5:b6:75:35:f3:4e:a4:ea:2d:b5:52:f9:62:f8:f6:cb:6d:
21:bb:41:14:b2:48:41:a1:f2:81:d8:33:46:e9:14:35:cc:f1:
69:cc:72:41:e6:08:5f:fa:a7:f2:4d:c9:9a:ca:e7:57:d7:e8:
59:5b:b3:67:bb:32:c5:6b:4e:1e:85:62:b5:b5:59:ad:b2:09:
c2:d0:c9:3e:9a:52:bb:df:23:c7:7d:a1:b6:a2:8c:88:44:73:
aa:31:2e:91:4c:d3:22:d0:ab:d4:02:cc:bf:d0:49:41:5e:f1:
95:30:8f:28:76:ee:b2:cc:c1:81:6d:4e:d4:ca:ea:ff:0e:60:
02:54:50:27:46:44:d1:8a:45:75:5d:1a:dd:ec:a3:0e:5c:33:
88:4d:08:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:32 2024 by rpki-client on console-ams.rpki-client.org