Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2EAB58F87F0F11EF8B8C1853762E951A.roa
File: 2EAB58F87F0F11EF8B8C1853762E951A.roa (raw, json)
Hash identifier: aQrD9ifSqO6STcouo1TFkekf0gevuTQoXMZgKxjCwcg=
Subject key identifier: A8:49:0B:02:CE:29:EC:C8:9B:B2:02:08:27:12:55:6E:1F:EE:92:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F5B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2EAB58F87F0F11EF8B8C1853762E951A.roa
Signing time: Mon 30 Sep 2024 09:34:26 +0000
ROA not before: Mon 30 Sep 2024 09:34:22 +0000
ROA not after: Sat 30 Nov 2024 09:34:22 +0000
asID: 138915
IP address blocks: 154.93.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62898 (0xf5b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 09:34:22 2024 GMT
Not After : Nov 30 09:34:22 2024 GMT
Subject: CN=66fa70a2-3a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bd:9d:4b:d5:0d:80:41:bd:77:79:de:4f:51:
26:01:75:f4:6f:85:d2:da:2d:ae:5f:2e:11:13:92:
cd:e7:41:1e:c2:b1:f3:e9:b9:42:c1:dc:78:e0:9d:
11:c0:4d:97:32:0b:cc:e2:d7:09:66:a3:1e:27:7d:
4a:d2:ae:86:e5:3c:13:41:17:6e:b1:31:17:ac:be:
73:6d:2f:4a:44:72:7e:4e:5d:1a:2f:83:8b:c1:a6:
14:39:ad:d9:78:f4:e6:c9:96:17:be:44:be:cb:78:
4f:b7:1c:66:29:15:4c:b5:07:3a:f9:ae:94:f1:83:
d8:84:4d:a5:88:c8:ab:4c:67:4b:8e:9e:52:c8:6d:
30:0a:f0:90:2b:35:3e:60:75:e2:2e:c6:b3:35:72:
e4:fa:f3:8d:3a:8d:bd:db:01:02:54:95:ae:41:f6:
9d:db:15:9f:7c:94:8c:11:7e:b7:72:49:f2:5e:44:
81:66:9f:22:47:6e:1d:54:b8:9e:44:15:8d:73:b6:
60:b1:f0:72:27:2f:17:15:cf:84:2f:0e:ef:06:03:
11:9a:11:b3:e3:10:4b:0f:30:5e:ee:00:10:02:76:
9b:66:4e:da:ad:4e:e5:05:40:e9:26:b9:c5:b0:bc:
b7:52:a6:80:16:49:1e:94:25:5b:8c:97:ad:b9:b8:
0d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:49:0B:02:CE:29:EC:C8:9B:B2:02:08:27:12:55:6E:1F:EE:92:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2EAB58F87F0F11EF8B8C1853762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.102.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:d7:78:15:4f:93:80:33:11:55:3c:01:e6:c2:e9:1d:12:0f:
20:be:08:8b:03:e0:1a:c5:91:05:12:aa:14:80:65:88:1c:40:
94:23:63:31:53:5d:50:d1:f6:a4:87:64:ab:33:73:25:c8:2f:
85:b5:eb:93:f2:d4:cd:88:7d:40:71:95:53:06:00:2a:f0:32:
7d:3c:c0:4b:d5:3a:6c:d7:af:d3:94:43:70:b9:06:29:b5:2e:
14:b0:a6:ef:9c:33:1d:ca:fe:04:e0:ab:91:a4:98:d2:9f:96:
ae:7d:0e:64:06:a3:11:cc:ab:02:48:30:1c:07:31:7e:a7:47:
51:8e:41:54:b5:f8:17:59:14:59:26:1f:17:43:74:44:93:d7:
69:48:76:e1:60:70:cf:32:e0:6c:82:17:5c:b1:63:fc:26:9d:
d3:ef:bc:a0:fc:9b:31:f6:f7:a0:b6:99:9d:df:cb:0a:eb:75:
1d:4b:f4:d2:da:83:00:e9:28:57:5c:bd:5b:5b:18:12:4c:f7:
61:d4:dc:af:5c:db:e3:7b:b3:cd:ed:0d:66:c7:54:82:af:4f:
41:1a:bd:f4:1b:b6:4d:fe:ce:f0:97:af:a5:dd:39:e9:a9:f1:
46:a6:46:65:8d:cd:ba:50:1b:c9:44:7e:f7:b6:b6:11:4b:55:
24:5c:f6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:02 2024 by rpki-client on console-ams.rpki-client.org