Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4710406092B611EF9FC8E6B7762E951A.roa
File: 4710406092B611EF9FC8E6B7762E951A.roa (raw, json)
Hash identifier: x2Td6FE1GvFmBXfFatXWn3yZxL3LgBzo1v1E48Usv5g=
Subject key identifier: 36:21:71:76:3C:66:C7:02:29:01:E0:5D:74:76:BE:4D:51:76:83:D1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010200
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4710406092B611EF9FC8E6B7762E951A.roa
Signing time: Fri 25 Oct 2024 09:48:25 +0000
ROA not before: Fri 25 Oct 2024 09:48:21 +0000
ROA not after: Sun 01 Dec 2024 09:48:21 +0000
asID: 202656
IP address blocks: 154.220.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66048 (0x10200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:48:21 2024 GMT
Not After : Dec 1 09:48:21 2024 GMT
Subject: CN=671b6968-1daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:df:db:ee:0f:2d:02:02:5c:b7:a0:93:dc:
43:c4:6a:c3:3a:63:a7:eb:20:2d:68:a7:51:2e:27:
b0:10:d4:c3:2a:98:26:7c:95:63:5d:87:c6:c1:73:
17:6c:32:62:67:88:ed:6b:2f:5b:e4:69:b1:ab:4a:
29:08:3c:e9:46:03:7f:fc:7c:08:1e:ad:29:95:e0:
e3:6d:81:b9:03:26:75:44:7e:ae:d6:06:bb:54:04:
5d:05:ef:a4:45:95:d8:cf:c0:26:f4:9d:f1:73:d7:
e2:60:08:26:a3:42:1d:07:64:c2:9e:22:02:f9:75:
d5:d5:04:49:ef:1e:ee:d8:06:57:00:d5:c1:30:10:
dd:59:09:0a:76:1a:76:b8:37:9d:db:98:31:23:2d:
a9:fc:89:3b:22:bf:0b:d3:a1:8e:94:fd:18:c9:9e:
75:73:62:7e:11:6a:c2:10:42:39:be:54:25:7d:81:
a6:64:75:73:b8:7b:f8:e4:2b:6a:80:bb:03:46:29:
e6:bb:72:4b:7c:00:b0:a1:d2:60:a6:e8:a3:ab:f8:
b2:eb:f6:89:10:9b:90:54:61:f7:a5:b0:36:f4:49:
72:38:f2:9f:ad:2b:b9:cd:c3:94:ee:e7:34:6a:d3:
b3:08:14:44:7e:09:3b:a3:14:d7:af:c9:0c:2c:4a:
55:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:21:71:76:3C:66:C7:02:29:01:E0:5D:74:76:BE:4D:51:76:83:D1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4710406092B611EF9FC8E6B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0d:71:c8:9e:de:45:42:4d:1a:98:b6:34:57:9a:c8:fb:c3:
52:49:8f:b1:5c:65:b6:87:b3:6f:e2:08:1d:84:6e:c2:05:0c:
91:bb:fd:59:25:4b:7a:43:f8:a5:d7:89:9e:32:5d:4f:95:e2:
86:cd:65:28:1b:59:da:5f:2b:91:8f:c5:d9:f7:20:cd:bc:f6:
45:2f:8a:91:16:fb:f1:3e:05:ab:4b:5d:25:88:92:b7:98:13:
e3:a9:90:31:67:82:bb:d1:3c:4f:c1:78:28:7c:3b:8b:20:b1:
39:b1:c6:58:7f:b1:fb:9e:21:fc:05:69:c3:05:65:4c:d2:96:
95:42:4e:2d:a6:b6:7c:07:dc:5c:45:33:85:6a:a6:5e:00:c1:
fb:6e:5f:9c:65:5a:f8:e4:33:7a:22:d8:38:06:08:5f:aa:9a:
f2:a1:9b:3f:f7:25:c5:20:87:bd:f7:23:e3:fd:b0:f6:c6:05:
01:11:aa:db:22:0a:e9:ef:64:94:6e:8b:9a:cf:54:60:48:99:
ad:6a:ad:60:a8:cb:0f:35:17:90:b3:57:53:15:d5:e0:12:7b:
18:fd:65:c7:77:01:78:e4:43:57:d4:d0:d1:b9:03:bb:04:37:
7e:57:11:c2:69:48:a0:7a:e6:46:72:c6:7c:c8:bb:36:1e:d9:
b1:8e:a0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:07 2024 by rpki-client on console-ams.rpki-client.org