Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BBEE95A27CB11EF8FCB9DE77CDC24C2.roa
File: 4BBEE95A27CB11EF8FCB9DE77CDC24C2.roa (raw, json)
Hash identifier: bjfEiNXCQol31zSoVibB6w637DPxP+FrGbvP+kl8p3Q=
Subject key identifier: 1C:30:26:17:E6:8D:65:DC:4B:E2:6A:8F:D9:19:80:3B:15:CC:90:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C1B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BBEE95A27CB11EF8FCB9DE77CDC24C2.roa
Signing time: Tue 11 Jun 2024 08:19:18 +0000
ROA not before: Tue 11 Jun 2024 08:19:14 +0000
ROA not after: Sun 15 Jun 2025 08:19:14 +0000
asID: 138678
IP address blocks: 154.202.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49584 (0xc1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 11 08:19:14 2024 GMT
Not After : Jun 15 08:19:14 2025 GMT
Subject: CN=66680885-f0b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:12:8d:a2:96:30:a6:ba:f7:ed:54:fb:3d:
ef:40:f3:a6:ad:50:3a:09:2d:d3:59:88:ed:d8:1d:
12:7c:7e:f0:0c:6d:55:77:d6:a6:74:df:c6:c9:7e:
47:3f:63:7a:ef:5f:a9:20:42:bf:43:7f:ce:d2:44:
e8:81:ef:29:11:a3:73:9c:85:6a:fc:2a:f4:89:6f:
a9:ab:56:86:57:97:5c:8b:9e:09:09:e3:ec:2d:e9:
8d:f9:53:bb:87:23:77:7b:92:30:83:82:0e:20:7e:
fd:b3:9b:dd:65:d6:2d:ee:79:2c:e5:86:bf:bd:11:
a0:54:4c:81:b4:87:ce:8e:5e:ed:e0:7d:a4:a4:cc:
bd:a1:00:29:91:22:f1:b8:97:79:7e:aa:12:65:5f:
42:dc:30:ff:c6:15:ce:c0:21:3a:42:45:38:b5:e9:
a3:23:14:9d:74:24:2a:28:a5:f2:f9:94:b4:82:17:
25:95:8e:43:c9:f1:99:d3:11:d0:e4:96:4b:13:c1:
c6:17:dc:2b:6b:e3:e8:0f:08:d2:f5:15:e3:f8:4a:
a8:8d:76:52:86:45:6a:01:57:21:23:5e:1d:ea:92:
21:11:6e:10:d8:7b:8f:9e:54:c7:eb:0b:f8:26:7b:
f1:5a:c5:08:10:25:3e:dc:ae:e3:94:fd:e2:67:b6:
38:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:30:26:17:E6:8D:65:DC:4B:E2:6A:8F:D9:19:80:3B:15:CC:90:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BBEE95A27CB11EF8FCB9DE77CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.1.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:f9:cc:46:80:cf:05:57:ae:ff:c4:e3:c8:b0:b4:02:1f:8e:
fd:d7:7b:fc:f8:1e:91:85:2e:32:62:43:ee:0c:d8:41:a8:e3:
93:c1:d7:ee:59:81:b0:db:c2:3d:6f:9d:6c:f1:24:5b:20:f1:
02:01:d4:2b:ae:6b:5c:34:a5:8c:36:41:53:7f:20:55:46:d5:
94:37:e7:ad:ce:28:c3:ee:ee:fb:d8:13:25:07:eb:90:87:9a:
73:65:5b:6f:02:16:20:7a:2f:e0:f1:71:ea:ed:de:28:32:15:
5a:04:96:20:98:f0:5b:98:20:bd:0a:e8:a2:f6:c6:ed:b3:79:
ff:e9:f4:42:e8:1f:97:71:ef:eb:63:1d:63:63:45:5b:0c:7d:
c9:8a:c8:3b:72:cf:68:b8:58:f4:bb:f4:34:2f:9d:04:93:46:
b5:92:67:10:be:0e:d9:f3:bf:9b:1b:0e:97:f0:13:48:d9:da:
ef:00:05:33:0c:ea:b0:e9:1d:92:63:c8:bc:f2:cc:ac:c4:fc:
2e:eb:b5:d8:89:5f:1a:30:ec:37:ca:bb:9c:0e:80:07:3a:9e:
e8:fd:16:fa:e0:9e:7a:3a:b4:5a:34:57:34:f1:1a:96:71:d4:
c7:08:dd:90:16:e9:3c:59:83:f2:77:b7:ee:07:19:c0:28:f8:
d4:3f:a6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:03 2024 by rpki-client on console-ams.rpki-client.org