Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D5F759874CE11EF935B0A4B762E951A.roa
File: 1D5F759874CE11EF935B0A4B762E951A.roa (raw, json)
Hash identifier: 3TqucDTplfSM3Aqj7Q/rDyQJYe784f3D8wv4JAjhw5I=
Subject key identifier: D5:68:34:B5:40:87:96:44:F5:3F:47:84:E7:02:79:C6:E8:D6:F2:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F000
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D5F759874CE11EF935B0A4B762E951A.roa
Signing time: Tue 17 Sep 2024 08:23:28 +0000
ROA not before: Tue 17 Sep 2024 08:23:24 +0000
ROA not after: Sat 30 Nov 2024 08:23:24 +0000
asID: 136970
IP address blocks: 154.197.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61440 (0xf000)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:23:24 2024 GMT
Not After : Nov 30 08:23:24 2024 GMT
Subject: CN=66e93c80-ac08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:18:7b:88:b0:0e:b7:c5:ad:b9:53:15:b7:74:
64:10:18:17:91:50:91:c9:f7:cb:fe:d9:98:e3:fb:
44:57:a3:e0:74:81:fe:1c:d3:c1:ce:2a:9c:6a:c7:
61:a1:71:34:81:99:e2:dc:ec:d6:25:18:53:cc:b2:
89:cd:1e:b8:fa:b9:93:7a:d6:29:5d:ea:74:bb:fe:
82:43:84:77:7a:6d:60:93:d2:76:a0:a4:d1:60:e5:
c4:96:22:7f:26:1a:7f:01:e1:52:5f:87:17:ce:86:
85:f6:80:64:bf:10:4c:3a:26:1e:be:3a:a0:5c:a3:
3d:1b:d0:a9:60:de:77:3c:46:d8:14:69:ef:1e:22:
4a:3b:c8:25:63:22:34:0c:9d:78:a9:57:29:c9:b0:
0e:72:b6:79:1b:c3:95:82:72:5d:28:7d:b7:c0:85:
bd:78:e5:3f:b7:51:62:3b:66:c0:e3:a3:1b:8e:4e:
71:25:74:43:24:3c:02:ba:fa:3b:a8:0e:d2:4c:72:
cb:60:f0:be:22:af:72:15:2e:9e:17:df:06:5e:c7:
e4:91:61:41:39:10:26:55:d8:1f:bc:9e:5c:e0:15:
a4:f3:df:6d:f0:41:6e:ce:84:ec:4b:4c:fe:5b:e0:
db:13:fb:7e:85:1a:ff:bb:ca:4b:01:02:90:c4:b1:
e5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:68:34:B5:40:87:96:44:F5:3F:47:84:E7:02:79:C6:E8:D6:F2:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D5F759874CE11EF935B0A4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.7.0/24
Signature Algorithm: sha256WithRSAEncryption
37:e7:5d:93:0d:0d:5b:f3:f0:e2:59:27:9d:63:74:9f:cc:70:
02:b2:7b:13:1b:f3:65:d9:ca:16:3c:88:37:53:f4:22:12:79:
fb:cc:29:2c:d2:c1:0c:44:dc:97:30:75:fd:54:9e:70:c8:cf:
2e:54:8c:57:2e:12:aa:87:a6:1a:91:52:97:ff:fc:9a:17:21:
de:0c:c4:6d:d1:19:35:8d:38:13:a1:e8:dc:8d:bf:65:ad:3e:
76:3b:ac:e5:75:aa:4a:72:8e:c1:0a:0e:fb:8f:53:c8:31:e6:
02:ce:2b:c1:8b:4c:1a:4a:82:5f:ef:5e:11:5e:fd:d0:67:ec:
18:88:0f:96:e6:68:1a:08:dc:a4:5b:e6:b0:d1:0d:18:88:d6:
81:16:5e:7b:b7:06:b2:4b:75:00:48:56:83:fb:d7:ea:5e:11:
81:89:b9:a5:44:77:12:82:4b:b2:9e:bc:ba:f0:9f:e3:84:67:
55:cf:5b:ba:ec:62:08:65:50:7b:48:37:23:a9:bd:22:74:31:
f3:66:23:fb:4f:b0:c2:aa:61:9e:4f:02:b7:97:56:67:2c:98:
fc:c9:72:d9:5d:4c:f3:13:1e:49:46:d1:65:03:5c:f5:8d:55:
7d:4c:e7:6b:6c:a4:d5:dc:6e:8f:d5:e3:b9:49:81:dd:dd:3d:
4f:a1:e0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:56 2024 by rpki-client on console-ams.rpki-client.org