Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AD4E9AA311111EF85EEDF65762E951A.roa
File: 4AD4E9AA311111EF85EEDF65762E951A.roa (raw, json)
Hash identifier: 7pOpiWOmyPA4kHDyReU+5sGCHFNgC46a9KgcOsrajLA=
Subject key identifier: B8:AB:3F:FD:76:ED:1C:AA:F8:C5:DE:E7:90:E1:3C:B4:0D:7C:4C:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C589
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AD4E9AA311111EF85EEDF65762E951A.roa
Signing time: Sun 23 Jun 2024 03:33:01 +0000
ROA not before: Sun 23 Jun 2024 03:32:58 +0000
ROA not after: Thu 01 May 2025 03:32:58 +0000
asID: 216038
IP address blocks: 154.86.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50569 (0xc589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 03:32:58 2024 GMT
Not After : May 1 03:32:58 2025 GMT
Subject: CN=6677976d-2604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:96:69:2f:fe:38:3b:d2:c3:26:db:cc:94:d4:
ed:c5:1f:84:5c:ba:ce:7b:70:2f:58:45:6b:6b:de:
cd:43:03:28:7a:94:61:71:c1:1b:46:89:c6:ae:9e:
08:09:52:ee:db:6e:79:7f:cb:4c:7b:e7:db:a6:2d:
07:a9:a8:2c:ef:83:b0:ae:56:5b:74:81:e4:a1:ae:
f4:39:3f:d1:e2:f9:2a:2c:4b:e6:a9:76:1d:df:87:
71:a6:89:6b:ba:ab:b9:1d:01:9a:09:86:3b:6a:91:
61:fe:cf:65:4a:60:e2:07:03:11:16:85:52:4b:ce:
1a:6b:fe:19:95:41:92:03:7b:06:4c:31:f1:30:08:
9c:5b:f3:cf:fe:c9:d8:8c:c0:d6:6c:4c:0a:09:c7:
d8:b3:d8:8f:60:9e:49:7c:5c:5f:13:fd:e4:0c:15:
61:58:05:bb:ff:53:75:2c:b5:ea:b2:ce:07:1f:e6:
61:e2:69:b0:4f:cd:d7:2d:c0:35:75:11:75:63:f8:
48:26:99:53:10:6a:24:7a:9f:91:0a:30:6d:7c:ca:
7c:be:d6:24:66:dd:2f:db:af:38:63:18:7b:bc:4b:
68:7c:8d:79:1b:34:43:c5:32:63:8e:8e:cd:04:b0:
dc:c7:17:25:02:df:c9:cc:57:99:f2:ed:47:df:ee:
5a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AB:3F:FD:76:ED:1C:AA:F8:C5:DE:E7:90:E1:3C:B4:0D:7C:4C:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AD4E9AA311111EF85EEDF65762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.30.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:be:41:68:0c:7d:df:37:98:6e:3e:85:4c:27:d5:a7:37:0b:
3e:2d:0d:2d:b1:72:bc:60:a7:e3:1e:08:9c:4c:49:49:5e:b4:
bb:99:6f:4b:a5:ab:21:d6:0e:4f:22:87:e2:2e:ac:31:69:d5:
72:16:0c:63:ae:c9:70:59:e2:e9:78:1f:46:ba:84:5f:3b:70:
5d:43:3d:82:cd:87:af:d4:d2:45:0c:1d:e5:61:d6:45:be:05:
cf:6e:28:ee:1d:54:75:a7:25:f1:63:9e:22:42:3d:11:c3:39:
50:7d:0d:90:36:81:a5:f5:b9:50:cb:42:a1:1c:ee:36:47:0a:
25:f0:62:31:3a:4c:ab:c4:ab:06:84:7a:88:3f:f5:2a:a8:cc:
fb:f4:3b:c3:a1:f5:6e:37:8a:fc:59:82:bb:19:17:df:c9:29:
52:eb:72:b3:34:3f:e0:41:b5:d7:3a:9d:18:17:3e:1e:21:0d:
30:4f:0a:1d:21:d7:bc:6c:2f:4d:25:35:6e:cc:bf:1d:a8:85:
31:4d:84:86:05:d6:f7:44:c9:61:66:ed:e9:21:1c:0a:eb:bd:
d6:f2:10:d5:a7:4d:9d:2b:48:ec:24:e7:82:08:7d:58:59:be:
f9:31:b8:0e:7b:82:e0:1e:bb:c8:ea:b3:ee:6a:6f:63:f2:af:
a1:e2:de:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:08 2024 by rpki-client on console-ams.rpki-client.org