Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28435E4A96AF11EF992477BC762E951A.roa
File: 28435E4A96AF11EF992477BC762E951A.roa (raw, json)
Hash identifier: 7iHkrXlcJSz1hUopk8r5XPb6YHdiDWsj7GiijQ6GMRM=
Subject key identifier: BE:19:B1:5F:FF:DC:D2:48:F1:18:7A:CC:70:CE:B9:A7:76:B0:B9:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0103F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28435E4A96AF11EF992477BC762E951A.roa
Signing time: Wed 30 Oct 2024 11:07:31 +0000
ROA not before: Wed 30 Oct 2024 11:07:27 +0000
ROA not after: Mon 02 Dec 2024 11:07:27 +0000
asID: 271916
IP address blocks: 154.205.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66547 (0x103f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 11:07:27 2024 GMT
Not After : Dec 2 11:07:27 2024 GMT
Subject: CN=67221373-4f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:8e:2e:b6:02:64:54:1f:fd:12:32:00:c6:
b7:a4:25:b6:40:87:a3:18:4e:41:5b:48:da:70:75:
05:0d:3c:8a:fc:3a:a4:6d:38:ad:52:dd:2d:58:4c:
c4:d9:b5:ac:d0:b3:31:1b:93:df:f5:7f:6f:d4:73:
13:5e:7d:9c:87:ae:52:1d:da:90:34:bd:49:45:a2:
42:84:d7:56:01:c0:44:79:a4:34:69:13:5e:cc:20:
59:0b:fd:b2:e3:d6:7a:f8:17:c7:b6:6d:04:73:96:
73:de:12:c4:b5:61:13:b2:3b:ed:ba:80:b1:46:0a:
4d:2d:90:6b:62:7b:d2:c5:0f:8b:e3:4d:36:b5:d3:
08:05:0c:99:b9:8e:74:a8:b9:66:78:f7:98:ef:ac:
8e:ff:09:49:51:24:25:1e:83:81:9b:0d:1e:3d:7d:
ad:cc:fe:2e:33:90:8b:3d:13:ef:89:ba:38:07:ab:
ae:f6:08:ce:ef:49:01:cd:82:d9:94:ef:98:68:8d:
62:d6:c3:14:48:ad:98:2e:34:8b:7f:6c:b5:8b:3b:
86:a9:b9:de:d1:f9:6e:c7:85:09:b4:0d:d6:1f:94:
cc:10:a3:73:80:6c:b5:91:e2:8a:9f:a9:14:20:b3:
01:ae:4b:93:9a:bc:03:f0:a8:f6:21:fa:ba:37:2d:
3b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:19:B1:5F:FF:DC:D2:48:F1:18:7A:CC:70:CE:B9:A7:76:B0:B9:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/28435E4A96AF11EF992477BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.24.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:ad:b8:a4:a0:84:12:d5:ed:1c:bb:22:bb:be:38:bc:00:a6:
c9:f7:ed:35:59:7d:a0:79:ca:ae:a4:7c:e1:7a:27:79:4c:43:
4e:d6:7e:b2:f9:34:ce:d3:0c:b8:ce:34:70:81:a2:12:4e:2d:
b0:e6:e4:63:dd:79:2c:40:4b:28:53:a3:9f:e7:99:ba:41:68:
32:9d:aa:e2:49:30:83:8f:11:0d:7d:50:fd:69:40:68:fd:83:
4d:11:91:08:fb:fc:d9:0a:21:7e:b2:71:2c:ee:eb:42:2f:3d:
8f:80:0b:c6:e0:5f:5b:f7:4a:6e:e8:b4:90:16:e8:bb:ce:a6:
46:7b:0c:88:b4:14:b4:03:1d:92:55:48:10:43:55:66:89:57:
31:bc:3f:c0:5d:53:05:3d:58:2a:53:71:3d:30:d4:78:a2:bb:
87:b0:5b:3c:42:5f:05:88:18:69:0f:46:67:5c:6b:88:39:9a:
3c:ff:05:ff:39:74:2e:ff:5e:b5:65:2a:bb:fc:61:62:73:8f:
8f:63:88:9f:15:4c:95:cb:cc:58:86:76:ec:ba:03:8c:0e:73:
bf:91:63:33:09:01:b0:e2:6f:f3:fb:2c:dd:ee:98:27:65:37:
c3:3f:45:e4:08:62:76:3b:30:06:33:53:40:33:7d:2f:74:73:
e5:19:97:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:57 2024 by rpki-client on console-ams.rpki-client.org