Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47ED74BC9B8511EFBE63BB42762E951A.roa
File: 47ED74BC9B8511EFBE63BB42762E951A.roa (raw, json)
Hash identifier: /+OZ/lQA5v6QKc/yINXaRvl+vA8ATL49e+vXsDKk3cM=
Subject key identifier: 76:13:94:6A:FC:2A:E9:BC:53:C6:4F:FD:DF:ED:48:1B:BC:03:F1:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010815
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47ED74BC9B8511EFBE63BB42762E951A.roa
Signing time: Tue 05 Nov 2024 14:50:21 +0000
ROA not before: Tue 05 Nov 2024 14:50:18 +0000
ROA not after: Mon 20 Jan 2025 14:50:18 +0000
asID: 135097
IP address blocks: 154.213.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67605 (0x10815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 14:50:18 2024 GMT
Not After : Jan 20 14:50:18 2025 GMT
Subject: CN=672a30ad-7f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:19:2a:99:f0:4e:6e:ad:20:3c:c8:0e:a0:3b:
8f:54:0d:ee:3c:52:d2:70:f3:9f:ba:c0:9a:82:ea:
44:1f:3e:d1:f5:a9:11:e3:84:fa:69:91:d2:93:d1:
2d:8f:97:79:b8:3d:64:41:5d:5d:1d:1b:a4:55:1d:
9f:8b:6a:b7:dc:30:03:43:f8:0d:39:16:6f:03:56:
a5:cc:c2:67:8f:48:98:61:bc:8b:32:b0:9f:6d:e4:
5f:db:79:7b:61:34:eb:33:6f:f8:78:c2:ac:bf:83:
3d:db:14:f2:3c:0b:21:41:af:1c:df:2c:93:fd:5f:
b3:fd:4b:e4:e0:9c:96:16:ef:5e:dc:55:90:7c:9a:
19:1b:27:b1:37:e8:70:ba:44:69:c8:06:55:76:d3:
40:f4:3d:c5:cb:c5:9d:ba:db:8e:7b:d3:ce:d7:12:
58:6a:b5:0e:d6:91:ff:5a:d1:32:f9:8e:84:32:a1:
90:de:40:22:fc:56:86:46:27:79:58:44:df:9f:4d:
1b:e3:7a:fe:82:6f:e4:b5:87:9f:ee:18:66:92:38:
d9:5a:9d:f4:05:9d:61:eb:a0:69:3b:91:77:8d:90:
13:2b:f7:92:cf:3f:09:98:70:91:01:d9:26:c2:98:
51:a4:89:50:b6:09:63:44:e2:90:8d:71:f0:d4:13:
91:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:13:94:6A:FC:2A:E9:BC:53:C6:4F:FD:DF:ED:48:1B:BC:03:F1:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47ED74BC9B8511EFBE63BB42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:07:59:25:a8:6b:87:13:c9:7d:4d:76:a1:f5:d8:6f:9d:ba:
84:e4:ef:81:4b:d2:3e:e1:a0:a7:f9:3d:ed:b9:49:81:71:31:
8d:ed:1a:ac:a2:c5:c4:e8:d5:99:a8:43:71:aa:af:82:ca:63:
1c:a9:2d:bc:cc:4d:47:de:93:a7:4c:b5:00:a4:fb:44:de:ce:
7a:5c:43:31:3f:0e:19:15:f0:4d:e0:c5:f3:3b:fa:b2:29:7b:
4a:8e:99:00:c9:08:b3:f1:ff:18:94:6c:3b:18:22:a2:84:03:
d4:81:fc:da:51:e1:a3:e8:de:45:96:c1:71:7a:1b:27:7b:c9:
af:7c:8e:64:18:74:f8:77:83:04:85:7b:49:01:85:f5:35:b7:
aa:5e:ac:00:75:81:19:c2:53:e9:b2:78:81:d7:ed:4e:d5:72:
2d:d5:e3:39:92:5f:1a:9d:cb:f1:66:0e:b2:2f:d0:5e:d1:a9:
8f:2e:60:75:93:60:6f:34:e6:9c:61:43:12:74:ff:c7:26:3d:
9d:d7:a9:8f:8c:82:82:9c:8d:5e:46:ac:dd:a8:bc:a1:62:26:
4c:c0:7c:4e:f4:5a:6c:33:e8:40:1c:31:1b:40:ef:e4:59:30:
9c:db:5e:1f:50:f0:dd:39:3f:87:4f:76:c2:2b:57:66:32:e3:
ce:1e:33:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:02 2024 by rpki-client on console-ams.rpki-client.org