Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D7D97F8321F11EFA9D7B987762E951A.roa
File: 2D7D97F8321F11EFA9D7B987762E951A.roa (raw, json)
Hash identifier: 0Oh218WNSJTZPlko7PkGC9p/WsTO1laE9h/nx0ewvZE=
Subject key identifier: F3:60:F7:2C:E4:28:8D:90:DE:D2:EE:38:90:AB:B4:78:B3:33:73:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C62E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D7D97F8321F11EFA9D7B987762E951A.roa
Signing time: Mon 24 Jun 2024 11:44:56 +0000
ROA not before: Mon 24 Jun 2024 11:44:52 +0000
ROA not after: Mon 23 Dec 2024 11:44:52 +0000
asID: 201411
IP address blocks: 154.84.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50734 (0xc62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 11:44:52 2024 GMT
Not After : Dec 23 11:44:52 2024 GMT
Subject: CN=66795c38-9806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:5a:89:b5:3f:81:ee:62:31:a6:97:0e:ed:
20:56:ff:8b:b0:9e:a3:c8:52:d8:72:33:01:2b:82:
8d:a2:aa:ba:8c:a0:f3:b0:a6:c3:a3:8d:64:23:a7:
ea:19:71:91:db:37:65:b6:96:81:b3:4f:6a:c8:cb:
c0:27:cd:0a:ee:f1:3b:bc:66:49:af:5f:85:f7:5e:
6e:49:08:fc:cb:62:ee:71:c6:d4:b6:25:d9:99:f7:
c3:c1:64:83:98:1c:fe:37:25:fb:f3:43:e0:34:75:
68:ec:e2:4b:8e:a4:0b:76:d0:64:db:b4:93:76:03:
5f:a6:e6:c7:87:2f:d0:c8:a6:15:96:96:63:3b:70:
08:c9:fd:06:00:7e:05:3d:0d:fe:2a:7b:47:70:20:
87:f4:f9:1e:15:9a:41:71:ef:09:e7:7c:8c:f7:26:
d1:63:cb:f7:0e:92:87:3f:86:f6:60:47:2c:e9:40:
5e:77:34:a2:d5:80:06:b9:6e:02:67:8e:c6:22:90:
d5:fa:cf:95:9f:ea:79:cc:65:7f:40:85:72:2d:f6:
5f:c4:6b:2d:67:a1:7b:0d:47:09:68:7b:3c:2d:34:
84:b5:5c:af:f2:4c:fc:7b:92:4b:85:c1:f3:c8:87:
e5:e4:9e:81:40:cf:c7:e6:43:9c:57:8b:dc:39:bb:
34:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:60:F7:2C:E4:28:8D:90:DE:D2:EE:38:90:AB:B4:78:B3:33:73:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D7D97F8321F11EFA9D7B987762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.156.0/24
Signature Algorithm: sha256WithRSAEncryption
45:31:b3:68:15:3d:73:bf:4d:df:dc:ba:ba:38:7a:be:f5:9b:
83:50:ca:b9:c6:e0:b7:75:1a:24:44:cb:4d:22:af:3f:d0:97:
b5:ce:1b:f9:ad:4d:62:28:5f:a2:44:f4:d9:7e:ca:fb:12:38:
63:26:d4:51:05:9d:bf:85:fb:2d:00:33:09:05:ed:44:7e:f2:
19:ba:db:b9:45:0c:3a:1e:1d:6a:bf:90:85:e6:b3:23:f3:ec:
94:88:ae:10:e7:32:3b:b5:51:77:df:e1:ba:b6:e3:bf:c0:46:
90:5c:f3:47:e5:a3:e7:5f:b3:76:f5:94:38:5c:25:7e:da:be:
ad:1b:07:9b:75:17:e0:66:a4:07:33:87:0c:50:9d:8c:c3:02:
81:e1:98:b2:0f:34:35:41:67:f8:6b:ec:0b:bf:5a:46:d8:95:
d5:4b:a9:17:b6:7f:df:a6:da:55:71:2e:29:84:b4:71:a0:eb:
54:37:c3:f7:fa:95:f3:0a:62:7f:86:49:fb:45:59:d3:e9:fe:
f1:d5:d6:3b:71:36:e5:d3:ad:d8:86:39:ef:46:91:09:76:ff:
a1:ab:85:9e:62:ac:4d:d3:5c:18:da:c0:78:66:27:1d:56:b5:
73:6b:41:e0:56:8f:6a:67:32:7e:ec:3d:8f:09:a3:98:8a:55:
47:28:e8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:58 2024 by rpki-client on console-ams.rpki-client.org