Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BE2F8A89F7F11EFA36B234B762E951A.roa
File: 1BE2F8A89F7F11EFA36B234B762E951A.roa (raw, json)
Hash identifier: PNa+JmTZmkmYO2ZSULqwHFpifHia51lJyHDLoSDx8Qc=
Subject key identifier: 8A:FC:1F:90:8F:DF:EC:B4:C5:C2:0E:EA:0B:07:57:5B:F3:8F:BF:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BE2F8A89F7F11EFA36B234B762E951A.roa
Signing time: Sun 10 Nov 2024 16:16:15 +0000
ROA not before: Sun 10 Nov 2024 16:16:11 +0000
ROA not after: Fri 17 Oct 2025 16:16:11 +0000
asID: 152450
IP address blocks: 154.205.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68376 (0x10b18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 16:16:11 2024 GMT
Not After : Oct 17 16:16:11 2025 GMT
Subject: CN=6730dc4f-7f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3e:24:a2:ed:37:41:99:a7:b0:43:c1:b9:fd:
3e:94:be:24:cf:e1:32:6a:42:1c:ee:5f:9c:d2:b0:
b6:22:07:37:15:1c:06:98:0e:32:6b:4c:e0:39:b9:
f2:1d:51:1b:f7:a8:7b:b0:55:37:50:43:93:30:0f:
63:a7:b9:71:99:cc:be:1a:78:30:24:e5:bd:5c:34:
cb:6b:10:7d:87:3a:72:71:81:6c:df:48:eb:5e:de:
5b:5f:a1:66:aa:60:d8:ad:92:51:8d:43:15:14:f4:
0f:26:13:d0:8a:7b:ea:57:df:88:ec:4f:27:ed:78:
13:c7:85:7e:5d:e6:66:ea:6a:06:f7:81:0f:40:89:
6d:88:43:09:4c:1d:67:5e:5a:d1:e5:02:53:6b:f3:
f6:4f:58:7f:2a:d2:43:7c:84:96:bb:21:ef:f0:45:
19:36:22:82:68:cc:0a:dd:8d:6d:b1:54:9d:56:be:
a1:b4:b9:a6:18:56:51:0c:e6:19:8f:72:c2:03:17:
fa:ad:49:8a:b0:af:ef:53:ec:2f:0d:36:1e:a6:6b:
08:10:9a:f3:bf:b1:20:d3:84:41:1e:88:0c:fe:99:
cc:b0:0c:5b:12:80:b5:40:ee:33:10:d1:0a:84:3d:
63:e6:7e:92:65:a5:35:9f:36:db:11:08:c2:50:67:
ec:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FC:1F:90:8F:DF:EC:B4:C5:C2:0E:EA:0B:07:57:5B:F3:8F:BF:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BE2F8A89F7F11EFA36B234B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
82:c3:d7:74:51:7c:d3:f9:89:66:12:b5:a3:bd:14:03:4d:fe:
33:c6:ec:fd:fa:74:92:d9:ea:6c:a2:84:e6:63:6e:11:55:fd:
5f:42:4d:97:06:32:31:7f:94:a0:20:39:bf:7c:50:4c:6d:b1:
26:56:a8:b8:ec:45:b0:82:aa:e4:24:62:05:7f:ed:6d:c9:6c:
c9:f2:56:df:01:68:2d:a6:c8:0b:cb:b7:f6:6b:1d:76:46:ce:
c3:5e:33:a3:9e:b7:6f:1e:3d:b1:e0:2c:0b:bf:13:5d:c3:69:
46:f7:e1:c7:ab:51:ea:7d:54:0b:54:42:f4:4d:65:a7:cf:33:
9f:70:60:2f:52:66:17:8d:5b:17:c8:f5:86:15:07:c4:2e:fc:
33:d3:64:ab:b6:e5:06:33:94:63:91:a5:8f:7a:9a:91:e0:e9:
8b:4c:c3:b5:a4:33:3a:f6:e3:6a:05:6e:a4:5f:14:fd:ee:55:
08:42:d2:52:36:13:83:59:39:32:f1:2e:68:58:88:c8:fb:a1:
2d:09:65:97:eb:83:95:42:e2:b6:03:62:07:93:e9:11:49:ee:
f7:32:27:31:4f:35:3e:f1:85:72:c0:f9:4d:2c:40:9f:b9:05:
ea:76:7f:10:bf:fd:f0:db:70:e9:3b:2c:94:f1:06:74:de:f5:
77:8a:9b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:00 2024 by rpki-client on console-fra.rpki-client.org