Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/46776004530311EFAD137E64762E951A.roa
File: 46776004530311EFAD137E64762E951A.roa (raw, json)
Hash identifier: xXbTIs252C9g9HGTj8HNJuF5xRaM+kt71HkGGDDiXrc=
Subject key identifier: 3C:58:3A:9F:F0:62:0D:4F:6C:51:A8:BD:81:64:EE:31:24:97:08:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: DC21
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/46776004530311EFAD137E64762E951A.roa
Signing time: Mon 05 Aug 2024 08:18:21 +0000
ROA not before: Mon 05 Aug 2024 08:18:17 +0000
ROA not after: Fri 25 Jul 2025 08:18:17 +0000
asID: 63199
IP address blocks: 154.223.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56353 (0xdc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 5 08:18:17 2024 GMT
Not After : Jul 25 08:18:17 2025 GMT
Subject: CN=66b08acc-7d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:61:55:7c:f7:00:0b:a9:c4:30:67:6d:0b:
fd:37:b2:08:3c:fb:10:90:50:d3:03:ed:e7:42:07:
38:08:fb:72:9b:f1:81:27:18:4a:aa:bd:74:b3:38:
aa:c4:87:6f:9d:f2:c0:bb:3f:4e:33:6c:d3:ea:9a:
39:cf:91:81:1a:cc:d8:b5:40:b9:34:15:80:e3:4f:
03:b6:de:49:a5:df:8a:8d:21:24:1e:07:a0:04:db:
55:71:85:94:9a:67:a8:1c:c8:32:34:00:86:14:c3:
8f:e8:9d:5f:b0:12:79:77:65:44:82:79:c3:38:ab:
fe:c0:57:ff:cb:1d:69:57:4e:6c:17:c6:ad:3a:5b:
72:fa:ff:93:c3:fc:c8:38:ef:8d:d8:47:23:c8:d8:
32:7a:71:39:31:e7:1c:01:ea:77:82:3c:96:01:4c:
7d:d9:fd:32:e6:35:5e:80:5f:7c:ce:ce:ae:a6:1d:
03:04:b8:4e:6d:77:54:e9:35:8b:98:ad:a9:17:d5:
0b:14:5b:4f:8d:ca:d4:c2:c8:28:39:27:0e:45:98:
6c:c2:a8:01:3e:15:bb:3c:1a:5e:e2:af:94:ca:5e:
0c:a7:87:50:fb:9d:a9:c3:e9:c5:4e:48:f1:27:a5:
0b:ad:20:5b:95:92:15:bb:7c:78:ea:44:f0:ee:53:
b6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:58:3A:9F:F0:62:0D:4F:6C:51:A8:BD:81:64:EE:31:24:97:08:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/46776004530311EFAD137E64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:27:ff:33:6e:1f:ea:6c:9e:2e:5c:6c:03:ca:d6:0c:8a:03:
00:83:61:fa:83:ea:52:d0:d6:07:ee:34:09:d7:ec:82:72:df:
82:12:b8:81:54:6f:a7:e3:1a:0b:de:4e:5d:bf:2b:b7:3f:0c:
0d:f3:be:37:52:5a:89:a4:44:a1:90:d1:67:9f:be:9d:66:3e:
9d:37:7d:bb:8a:2e:ef:ee:24:83:00:47:63:e4:05:7b:5e:90:
34:21:1e:f1:d5:51:ac:a9:6e:e3:27:cf:02:c3:f2:03:ca:0d:
cf:36:93:b0:51:2b:23:7d:d1:0f:e0:b8:89:da:63:5f:19:af:
56:d6:df:5a:58:b0:14:fd:c3:bd:87:7b:70:39:19:ee:49:72:
66:79:64:f3:32:0c:67:ad:2f:8b:49:24:79:dd:b2:f3:1b:d9:
aa:73:20:cf:a2:75:63:3b:51:11:0b:4d:14:5d:b2:01:10:69:
71:3b:e8:22:6f:99:fa:e4:e1:63:ce:c5:9f:6d:b1:dc:0f:fa:
3b:ce:4f:f8:de:fa:89:e9:2e:67:d9:65:f8:64:ed:73:6b:ea:
cf:42:dc:00:a3:3d:82:dd:17:38:c0:ae:d4:25:32:6f:6e:4b:
7f:84:1f:23:1e:5a:84:8a:79:f9:7d:ea:99:0b:37:65:96:41:
f6:d5:e2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:02 2024 by rpki-client on console-ams.rpki-client.org