Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31A4FB8CA8EE11EF9D4ADC4F762E951A.roa
File: 31A4FB8CA8EE11EF9D4ADC4F762E951A.roa (raw, json)
Hash identifier: 5X9/SBFt+KUZCZ8K6eFlYu4nz+jySvUdaGKwU71rIzM=
Subject key identifier: EA:99:C1:C1:66:A9:E3:3C:98:BF:8A:88:40:75:02:CB:94:69:92:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011131
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31A4FB8CA8EE11EF9D4ADC4F762E951A.roa
Signing time: Fri 22 Nov 2024 16:24:06 +0000
ROA not before: Fri 22 Nov 2024 16:24:02 +0000
ROA not after: Tue 03 Dec 2024 16:24:02 +0000
asID: 62240
IP address blocks: 154.195.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69937 (0x11131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:24:02 2024 GMT
Not After : Dec 3 16:24:02 2024 GMT
Subject: CN=6740b026-45de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4e:ff:14:d2:a8:50:54:6d:f2:d3:4d:c6:33:
e9:46:7f:66:5d:1d:9d:32:26:95:9b:e6:c0:05:45:
85:c0:fd:3b:12:d2:52:da:f2:7d:5a:66:fb:35:c9:
05:57:8a:4b:84:8d:4b:ec:92:24:32:cb:30:78:81:
24:62:4c:d5:09:38:be:a1:05:40:d7:21:10:75:0f:
55:a6:a7:d7:d8:6c:35:2f:06:f5:59:14:76:e2:90:
d6:07:65:fc:cf:40:19:41:c8:4f:0f:bc:a3:e5:17:
bf:72:57:bf:eb:d9:18:f7:af:6d:97:1c:c0:c5:01:
e0:3f:4c:fd:43:fc:8e:78:69:5d:7f:9f:07:13:d8:
28:8d:95:95:7f:26:75:c2:fd:da:8d:6e:73:ad:87:
6d:b0:8f:51:3e:bc:a1:bd:7a:76:ee:32:80:12:0f:
d6:02:5a:2c:b2:13:9c:3c:36:79:0a:9e:fa:22:96:
01:a1:04:20:17:e8:ad:16:f2:61:ca:bd:99:f5:1f:
c3:50:ea:27:ef:72:d8:30:c7:f0:6b:85:f0:d0:90:
cd:d6:51:5c:05:ff:57:4e:69:63:cc:92:57:a4:9b:
81:e8:19:d2:3f:a6:d9:96:b0:26:7a:42:85:d2:97:
2d:8c:f8:fa:e1:ea:5d:22:ae:ab:ef:3a:6e:6c:bb:
1e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:99:C1:C1:66:A9:E3:3C:98:BF:8A:88:40:75:02:CB:94:69:92:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31A4FB8CA8EE11EF9D4ADC4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.147.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:e3:a9:22:7a:af:ee:63:11:bb:c6:75:bf:ad:49:e1:08:64:
56:f5:c8:46:19:26:0b:fe:88:88:fb:af:21:f1:f2:7b:55:92:
37:1d:b1:1f:1b:29:dd:00:41:a0:19:f9:f9:e6:18:fc:02:ee:
ca:ae:32:49:8f:ef:0b:67:91:cb:0d:81:de:39:55:a6:87:96:
7b:2f:d2:65:5f:62:bb:bf:89:f3:b5:e8:b0:eb:f6:3c:9d:3c:
09:66:1e:e2:5c:48:ea:2d:61:12:87:e0:10:fb:41:51:10:b3:
db:7a:a8:67:8a:83:25:74:47:67:5b:ac:cd:b3:e1:3f:e1:92:
8a:2c:0e:fc:84:8f:a5:a0:a1:ad:aa:11:98:a9:bf:0e:cb:28:
15:30:e4:d5:06:b2:d5:29:98:20:aa:ac:2d:23:49:71:35:aa:
d6:60:41:df:c1:81:93:47:f8:6e:32:18:a8:c7:86:d5:88:58:
47:ef:08:10:3e:25:8c:5a:ad:3a:4c:5b:21:17:6c:c4:f7:de:
fb:61:18:1a:8c:dc:63:a8:74:2c:d5:b7:40:2f:ff:6d:1f:5b:
80:39:74:5f:43:b8:a9:55:5c:54:c3:8d:89:d0:fa:ca:a2:f0:
a3:73:c5:b5:c3:32:06:0a:90:99:b3:f4:a7:52:23:e1:dd:8e:
66:1a:ff:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:03 2024 by rpki-client on console-ams.rpki-client.org