Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/296CBD4C985E11EF8CB08C5B762E951A.roa
File: 296CBD4C985E11EF8CB08C5B762E951A.roa (raw, json)
Hash identifier: r7KMfbcUcWiOkvgl8a/x0RV1Pj/9sjsOoSSbGELNIhM=
Subject key identifier: 17:2B:85:D0:71:7C:7C:63:C2:8B:61:55:9F:38:72:24:08:C3:3D:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104CD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/296CBD4C985E11EF8CB08C5B762E951A.roa
Signing time: Fri 01 Nov 2024 14:32:46 +0000
ROA not before: Fri 01 Nov 2024 14:32:42 +0000
ROA not after: Tue 03 Dec 2024 14:32:42 +0000
asID: 203020
IP address blocks: 154.206.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66765 (0x104cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:32:42 2024 GMT
Not After : Dec 3 14:32:42 2024 GMT
Subject: CN=6724e68e-47ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9a:8e:20:06:c1:58:49:57:3b:a3:72:16:ee:
8c:84:ee:54:5e:2b:91:e1:71:2d:1c:80:68:a5:c9:
b4:bf:69:ba:91:ae:a2:1d:01:11:08:7d:25:c8:b8:
52:e5:20:2c:c7:5f:1e:29:a6:20:87:74:92:29:20:
c3:7c:97:71:cf:83:37:39:c1:fc:8b:86:50:05:c0:
bf:08:2a:88:1f:6b:bd:8f:b4:b4:92:bf:16:c0:f8:
76:b0:68:3e:ee:a0:3a:14:b3:66:b5:43:80:d5:4e:
18:bb:2a:be:3e:55:be:ab:6b:dd:f6:7d:e7:aa:40:
ab:b6:1b:73:b1:51:03:f5:6b:c2:d7:44:0b:0c:55:
b3:5e:8c:f6:c2:97:c3:50:81:4a:77:fa:b4:8e:cb:
79:ff:01:28:5d:a9:38:31:93:4d:70:fe:1d:50:37:
0c:b2:42:24:0c:a1:5e:cf:3e:9d:2b:c6:c7:bc:63:
56:db:cc:bb:4f:55:3f:be:47:45:e5:3f:c2:97:64:
21:93:69:2e:07:8f:04:80:1c:46:1a:d4:92:f5:77:
7c:1d:92:f7:e1:23:6d:0f:58:e8:b5:01:5a:40:a6:
bc:98:73:d8:d6:c8:5e:ae:2b:fa:a3:91:40:7e:36:
08:9e:1f:5d:17:d7:4e:ae:c0:00:3e:06:ae:db:13:
61:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2B:85:D0:71:7C:7C:63:C2:8B:61:55:9F:38:72:24:08:C3:3D:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/296CBD4C985E11EF8CB08C5B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.13.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:98:d9:cd:af:91:b9:da:fb:0e:23:ca:92:57:fa:a1:96:fa:
d6:a8:0d:95:e7:60:37:50:53:93:83:b4:e8:a2:54:ab:97:36:
f8:6f:6b:59:83:9f:f6:f5:51:80:ac:47:00:79:c8:00:db:77:
35:41:43:db:c6:48:7e:ac:ca:d1:e1:d3:4e:76:a9:a0:69:c4:
77:2e:4f:9e:16:e4:52:13:7e:a5:c1:26:1c:c1:2b:66:d4:2e:
11:de:51:e6:2f:74:d7:f9:6a:e0:de:78:62:d4:cf:f2:4e:15:
c6:1b:1b:87:c4:e5:17:7e:01:98:f5:11:55:7f:0d:f1:7e:f5:
42:76:1e:b9:b4:a6:9d:f1:94:4e:8f:83:04:62:4b:33:11:51:
60:7d:bb:e1:9d:a7:a5:63:f5:6d:f8:b1:4c:cb:58:4a:f8:aa:
a5:39:5e:ee:ca:c0:c7:9b:76:e6:02:cd:73:a3:b4:5f:91:b4:
55:b2:dc:7a:bd:40:4e:24:13:5d:96:e9:b8:82:c1:da:78:35:
01:c0:18:49:20:f5:cc:75:60:60:66:a0:aa:ec:6d:9d:a3:94:
53:aa:0d:0f:61:1d:9e:4b:ec:02:5c:03:e8:7a:89:a4:ec:2f:
21:26:04:d8:f9:58:15:41:06:86:b8:02:16:2e:18:04:dd:ac:
cc:84:1a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:57 2024 by rpki-client on console-ams.rpki-client.org