Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33E854BAA4CB11EFA00DD153762E951A.roa
File: 33E854BAA4CB11EFA00DD153762E951A.roa (raw, json)
Hash identifier: QdydoLT0plsG8jFIAUMvlAqxupPUOpScn8G4iuuZ3D4=
Subject key identifier: F8:B3:D8:E1:5F:FF:CA:48:5B:1B:3E:A8:AB:8D:44:D3:45:D6:84:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E88
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33E854BAA4CB11EFA00DD153762E951A.roa
Signing time: Sun 17 Nov 2024 10:03:33 +0000
ROA not before: Sun 17 Nov 2024 10:03:29 +0000
ROA not after: Mon 25 Nov 2024 10:03:29 +0000
asID: 5650
IP address blocks: 154.205.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69256 (0x10e88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:03:29 2024 GMT
Not After : Nov 25 10:03:29 2024 GMT
Subject: CN=6739bf75-a6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:59:1d:c8:5e:cb:2e:5e:66:0f:e6:59:bc:
ee:1f:a6:77:a3:e8:60:ec:f6:44:45:cf:79:53:1c:
73:ab:97:62:c8:01:46:1d:e1:b5:38:88:dd:00:8c:
5e:b2:27:ad:6b:e4:87:74:e7:8a:e5:da:bc:9a:81:
88:d7:b0:42:52:75:fd:a9:9c:44:dc:a4:4b:3d:ce:
ae:7e:c3:17:ca:ea:0b:70:21:ad:c7:8d:5a:c8:a5:
19:6e:8c:c5:10:32:a5:a2:27:cb:cb:0e:06:89:5c:
5f:6d:63:79:85:4e:78:c3:f5:62:54:86:d7:30:bc:
34:ca:c4:a4:52:32:88:b4:c0:59:9d:01:82:be:c8:
0e:86:40:19:94:1a:d4:7f:4c:ce:de:49:0f:45:fa:
22:f8:6b:be:c2:f7:60:67:6d:7f:6b:a3:1e:84:d8:
fb:36:c0:33:99:81:e4:54:a9:6c:42:81:ad:57:7e:
93:89:56:38:9e:bf:f3:a6:b2:b0:eb:3f:63:ff:49:
b6:6c:e4:8c:b2:47:cd:5b:2b:b8:4c:08:f1:11:41:
28:15:e1:84:2e:02:88:c4:f0:70:18:b7:74:fa:12:
f0:b4:98:c8:ea:21:16:cf:cf:79:cb:08:f8:9d:da:
8e:b3:60:09:25:ef:2e:d7:c5:71:e0:bc:4c:cf:cb:
70:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B3:D8:E1:5F:FF:CA:48:5B:1B:3E:A8:AB:8D:44:D3:45:D6:84:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/33E854BAA4CB11EFA00DD153762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.176.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:55:e7:10:ea:37:95:80:ef:fd:bc:0c:da:bc:63:7b:5b:a3:
33:12:0f:d6:ee:53:d3:1c:98:fd:61:93:5d:f3:cc:1a:b7:17:
ad:72:3b:fa:29:a5:6c:73:c0:96:57:fc:11:44:94:9e:d3:61:
4a:8a:4e:2e:7d:20:44:57:c7:20:51:3d:c9:e5:4f:ac:f4:cf:
8c:9e:09:03:a4:da:84:30:5f:b9:c5:cb:71:97:f1:f3:8c:f6:
e8:6d:d6:90:d1:5e:da:7d:59:fd:16:30:9b:fe:1f:80:dd:8e:
0e:4a:fd:16:dc:75:5c:43:e8:32:ec:aa:f4:7f:cb:77:e1:43:
3b:1b:94:3a:a6:bc:41:67:cb:f6:bb:a1:e7:5a:72:26:1e:a7:
fa:18:2d:41:61:68:98:fe:20:9d:9f:ca:c0:a6:34:51:a5:77:
c4:02:8e:9e:36:22:85:1a:3e:e6:26:57:66:1a:0d:a1:a9:ff:
48:6a:f1:97:ec:44:05:94:df:24:28:35:d1:63:fb:e2:9d:e7:
b3:fa:f5:63:b7:1e:e5:7a:59:2c:b2:30:8d:9c:65:22:a2:03:
3b:80:bf:c3:70:5a:b8:ed:28:f1:74:c2:5e:30:64:bb:3a:1b:
27:ec:a0:12:5f:68:87:f6:82:eb:9a:5d:e1:26:a3:8e:fb:80:
49:5a:0e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:00 2024 by rpki-client on console-ams.rpki-client.org