Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/224751A89B6F11EF9D0EACB5762E951A.roa
File: 224751A89B6F11EF9D0EACB5762E951A.roa (raw, json)
Hash identifier: tieSmUkU7hv41UxgBmYOHNxT6aPluUGDj7ul7qLL5V0=
Subject key identifier: 11:BB:5A:07:85:EE:AA:92:28:EB:E7:E7:DF:EE:E2:F1:00:41:47:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/224751A89B6F11EF9D0EACB5762E951A.roa
Signing time: Tue 05 Nov 2024 12:11:49 +0000
ROA not before: Tue 05 Nov 2024 12:11:45 +0000
ROA not after: Mon 13 Jan 2025 12:11:45 +0000
asID: 5065
IP address blocks: 154.85.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67489 (0x107a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 12:11:45 2024 GMT
Not After : Jan 13 12:11:45 2025 GMT
Subject: CN=672a0b85-cc11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:90:1b:8a:34:55:36:99:b8:d2:e9:ea:5c:73:
bc:fe:c2:e5:82:6e:ee:2e:99:40:aa:b5:9a:b8:70:
9b:3f:8b:31:10:ec:e3:fc:9c:22:45:1d:2c:88:9b:
ba:19:13:e1:98:79:c2:2c:66:43:e3:0a:83:94:78:
22:b1:51:b6:14:d8:f6:28:16:c2:54:4a:0a:58:c7:
b7:75:8a:c8:fe:7c:3f:a3:55:0e:35:46:8e:60:86:
b9:f5:cf:59:fc:39:d6:f3:92:ec:09:4c:b8:48:6c:
54:c9:fc:6f:3d:90:8d:c3:ec:21:c5:3e:1e:ea:a7:
44:2a:69:7b:06:f3:1a:8f:93:69:07:71:03:f9:57:
8a:ca:a2:dd:01:45:c9:2a:3f:17:d4:98:f0:78:2d:
9c:67:42:45:e6:cf:4b:59:51:0e:8d:c4:67:37:7f:
57:0f:cf:4d:a4:60:df:bb:8e:bd:2d:ad:a8:f7:b0:
cd:ed:5f:56:83:de:52:7b:ab:dd:59:fb:58:cd:d7:
1b:2f:72:e4:57:f7:3f:80:1c:76:8d:fe:eb:d8:0d:
fe:50:38:7b:8f:cb:a5:5a:cd:26:1e:a9:76:e6:ee:
61:69:a2:91:69:40:60:c8:bb:f3:75:1d:26:eb:f3:
6d:96:b6:a5:ed:f0:65:6d:c9:70:f5:bb:9a:78:e2:
86:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BB:5A:07:85:EE:AA:92:28:EB:E7:E7:DF:EE:E2:F1:00:41:47:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/224751A89B6F11EF9D0EACB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.110.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d8:9f:b9:85:d6:19:c9:e8:41:a3:56:90:b9:8b:64:ef:41:
e6:b3:b3:18:9a:4e:63:9e:7d:a9:43:f3:0c:be:fc:44:e9:08:
6e:af:cc:4b:e8:7c:a9:c2:55:bc:2c:28:22:c7:ec:a0:ec:00:
fb:20:97:9b:4e:76:e1:fa:8b:ce:5d:35:50:91:4f:8a:fd:90:
90:58:08:3f:89:90:3c:6a:48:ef:01:61:d8:83:71:eb:55:66:
bd:04:34:77:4c:65:60:a2:d4:29:18:59:70:dd:0f:3b:44:7b:
a6:19:be:1b:93:9e:15:d0:c9:42:03:ef:ef:ad:99:02:69:65:
3e:5c:6f:d7:9a:df:d5:d0:a1:26:85:fc:f2:8d:4b:ac:49:4d:
01:30:a3:3e:8e:dd:af:7c:6b:3e:93:50:df:25:0a:e3:77:24:
1f:a5:ae:1b:56:e2:6a:26:19:aa:58:62:c3:2f:51:c5:c5:d2:
8a:07:49:a0:c8:36:70:96:7c:00:7f:f5:d6:3e:d4:80:f7:26:
6e:ff:25:d9:5c:91:0d:53:c6:91:d2:1b:04:10:04:25:32:e5:
5a:f0:60:ca:18:63:4d:90:c5:73:76:dc:c1:8a:b1:47:b9:23:
62:da:8f:c8:bd:a6:40:3e:14:0c:8c:78:97:83:00:ad:40:70:
99:4c:26:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:33 2024 by rpki-client on console-ams.rpki-client.org