Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/354656807B1E11EF8E12738B762E951A.roa
File: 354656807B1E11EF8E12738B762E951A.roa (raw, json)
Hash identifier: NmQQc/Y1V6swWqSdEpKZYkdtH65Kq5zV8uJPfX9Dm4Y=
Subject key identifier: 2A:6F:DF:85:D9:0D:C6:7A:9E:09:8F:36:75:94:EE:EA:EA:79:0B:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F32A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/354656807B1E11EF8E12738B762E951A.roa
Signing time: Wed 25 Sep 2024 09:11:55 +0000
ROA not before: Wed 25 Sep 2024 09:11:51 +0000
ROA not after: Wed 18 Dec 2024 09:11:51 +0000
asID: 328608
IP address blocks: 154.214.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62250 (0xf32a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:11:51 2024 GMT
Not After : Dec 18 09:11:51 2024 GMT
Subject: CN=66f3d3da-4ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3a:95:cf:28:b6:f5:d0:df:90:4d:bb:8c:2e:
6f:a0:e1:f7:9d:3c:b6:be:fd:db:92:c1:75:89:94:
28:d3:b9:fd:a3:8c:54:cb:d7:2f:e9:ba:03:07:16:
42:fe:03:c5:47:d8:54:da:ec:3b:f0:b9:ee:67:39:
8f:93:9d:60:32:7c:ad:63:f7:67:cf:99:6f:cf:54:
c0:a2:fc:84:13:68:82:4c:05:17:88:ab:1e:ad:6d:
c4:8c:f0:a6:08:b6:65:66:85:fb:a1:9c:1a:02:89:
9e:3f:7f:8a:0c:31:36:f6:6d:32:b1:75:30:61:87:
0f:e9:db:cf:2b:bf:29:8b:8a:3e:11:5b:fd:7b:55:
a1:5e:90:95:25:5c:f1:28:5a:93:c0:98:6e:c4:56:
ed:a3:2f:63:e7:49:f2:5a:85:37:95:ef:c8:0e:8d:
2c:57:ea:d8:3c:16:f0:1b:13:75:40:24:f3:bc:4c:
61:b0:34:8d:01:f9:e6:ef:96:17:11:21:53:d6:e4:
57:ee:d4:e6:8b:62:86:42:02:3e:27:ef:51:8e:57:
d4:1e:bc:c5:1c:6e:f4:c9:4e:e0:78:64:d3:60:57:
2e:f3:7f:1f:c9:2f:36:53:7f:c7:ea:7f:18:ba:52:
2d:18:8a:ca:6f:c5:e3:0c:e3:be:83:dd:ac:83:25:
81:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6F:DF:85:D9:0D:C6:7A:9E:09:8F:36:75:94:EE:EA:EA:79:0B:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/354656807B1E11EF8E12738B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.218.0/24
Signature Algorithm: sha256WithRSAEncryption
93:6e:59:c7:69:8b:bc:c2:b5:34:62:03:8a:9f:b4:93:20:f3:
7c:7d:78:e0:77:5d:b7:c2:33:35:ae:cd:21:41:de:8e:0f:ec:
03:40:15:85:55:6c:32:a5:5d:b0:8f:6d:d2:b7:b8:b8:03:15:
92:c8:02:1c:f4:27:26:f0:2f:6b:36:ca:a5:2d:64:ca:8e:24:
3d:2e:a4:dc:a4:ce:de:d0:37:32:96:28:91:8d:93:cf:6a:df:
27:92:5a:85:d0:2e:f1:44:a2:12:00:ca:39:b1:5c:d3:02:d8:
ef:3f:88:bc:b0:5e:9e:cf:28:ca:8f:a2:90:fb:75:22:62:de:
e8:90:45:94:01:f9:4c:bc:77:e0:21:4f:58:d5:7d:e1:ef:b0:
6c:04:dc:33:c5:02:c9:b9:9e:7f:9b:4f:59:ca:54:6c:88:c0:
07:01:56:92:45:cd:e0:6a:0c:5b:43:ef:8f:07:c5:32:ea:30:
4f:56:0e:01:f2:76:8b:5b:eb:69:e0:7e:ae:80:21:45:e0:36:
5c:af:a3:37:78:8e:45:f5:8e:02:2c:e6:db:d9:cc:38:b5:db:
42:79:c9:38:28:fc:3c:1e:9c:99:4b:af:42:30:0a:4e:91:21:
81:8e:4c:d9:c3:26:de:b0:fa:21:f5:db:9a:90:01:2f:30:f5:
86:11:f7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:00 2024 by rpki-client on console-ams.rpki-client.org