Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A19FCD6736411EFA00574B1762E951A.roa
File: 4A19FCD6736411EFA00574B1762E951A.roa (raw, json)
Hash identifier: YfyHOPw0cqGJy+XhMQgZf8o17uCvgrvLdxhSwFq/vk4=
Subject key identifier: 75:19:6F:E4:27:05:5E:E4:E0:25:8A:87:9E:AC:6B:A4:6C:2D:AD:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EEF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A19FCD6736411EFA00574B1762E951A.roa
Signing time: Sun 15 Sep 2024 13:13:25 +0000
ROA not before: Sun 15 Sep 2024 13:13:22 +0000
ROA not after: Sat 30 Nov 2024 13:13:22 +0000
asID: 142403
IP address blocks: 154.221.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61172 (0xeef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:13:22 2024 GMT
Not After : Nov 30 13:13:22 2024 GMT
Subject: CN=66e6dd75-6e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:0b:e8:ef:ef:13:01:04:2e:59:0e:12:fc:
19:d4:0c:08:fc:95:63:95:1f:3e:56:72:b8:2c:31:
57:9d:69:f9:4b:4c:3f:6d:66:57:4d:ed:b5:de:2b:
36:6f:17:8f:2c:68:b3:77:bc:70:da:f7:9e:d7:8f:
68:c3:89:f4:ac:7e:e0:c2:26:bd:e8:dc:23:f4:33:
cf:c9:68:53:64:9f:83:a5:dd:a5:e0:86:20:9a:3f:
ce:44:70:bb:40:5b:dc:eb:f7:a3:e0:79:95:26:50:
c5:30:1e:1b:3b:4a:a1:a6:7d:32:f7:9c:e8:6a:16:
85:a6:90:fd:08:e7:06:52:2c:92:e9:57:f1:92:72:
51:63:b9:18:08:28:e6:57:d8:0e:b7:3a:f9:5b:26:
28:9e:42:fb:9c:37:37:55:18:08:b4:ea:a2:ba:13:
52:3f:45:97:6d:97:6e:7c:50:da:f7:8d:59:75:1c:
5b:04:55:7e:cd:a3:a9:98:c1:33:69:1e:d6:70:b7:
7d:4f:72:53:59:d9:00:27:55:44:ff:51:b1:71:90:
7f:c9:88:82:35:17:db:f9:f4:5d:2c:d3:df:8d:de:
bb:d2:c9:b1:22:75:66:4a:d9:d7:ce:44:80:5f:49:
e1:e5:06:42:e7:54:8b:92:da:ef:a5:f0:35:b5:03:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:19:6F:E4:27:05:5E:E4:E0:25:8A:87:9E:AC:6B:A4:6C:2D:AD:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A19FCD6736411EFA00574B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.24.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:a8:7c:6f:fc:f4:8b:b0:97:48:3c:b4:bf:fa:b8:29:d5:63:
00:3c:88:78:d9:28:e2:e6:76:e9:3f:e5:3b:80:7d:c3:ca:6f:
e8:8c:fa:dc:1c:06:96:db:86:d4:67:ae:fd:18:18:20:88:07:
14:ed:e8:68:01:5d:f3:39:1e:2e:86:7f:1a:4b:e9:42:47:ad:
f5:ad:60:29:6e:6b:2e:ac:b9:0f:ce:f8:55:35:1e:7e:eb:26:
e6:22:41:c7:6f:69:cb:ce:80:3b:5f:6c:fe:d3:1a:0a:fb:06:
f8:6d:c4:6e:b2:c2:86:77:cb:cd:4b:1b:65:9d:23:23:8d:a2:
86:b9:55:ae:71:c7:b5:4f:4f:4c:15:49:27:69:c0:e7:f1:06:
79:38:0e:72:6c:1a:3d:d4:27:56:04:46:4c:b0:88:b9:6d:31:
5f:21:ab:01:ed:df:7f:60:e4:48:8b:c3:ac:09:ff:ef:71:af:
20:83:f7:d5:3e:ab:ab:1e:1c:77:22:8d:81:92:56:08:13:9b:
d1:7f:03:3a:e9:fb:57:b4:76:1a:7f:4c:85:b1:c7:2a:10:b9:
c1:d7:62:34:1b:f0:98:00:b7:c9:6c:a0:99:08:ee:61:2e:4f:
7a:94:ac:31:20:8d:f7:b9:6e:33:ae:74:9f:7f:54:4c:2b:a3:
0e:d7:d4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:03 2024 by rpki-client on console-ams.rpki-client.org