Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BF98D9C4D7F11EFA6B4F7BA762E951A.roa
File: 4BF98D9C4D7F11EFA6B4F7BA762E951A.roa (raw, json)
Hash identifier: kwGQI0MoRmBgV6daS95xCx7F8I8Wu3qJmHKNLKM/Vpc=
Subject key identifier: B7:8A:18:9A:6F:4B:C8:E0:73:BC:C2:C0:18:22:EE:C8:91:BB:DD:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D7D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BF98D9C4D7F11EFA6B4F7BA762E951A.roa
Signing time: Mon 29 Jul 2024 07:51:00 +0000
ROA not before: Mon 29 Jul 2024 07:50:57 +0000
ROA not after: Tue 29 Jul 2025 07:50:57 +0000
asID: 38638
IP address blocks: 154.197.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55248 (0xd7d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 29 07:50:57 2024 GMT
Not After : Jul 29 07:50:57 2025 GMT
Subject: CN=66a749e4-0365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:be:4f:5b:86:f5:b4:e7:39:fb:63:a7:c5:1b:
e1:ba:0b:f4:3d:2d:b6:b7:49:87:56:d9:b5:03:bb:
c7:d7:9a:6b:ff:c1:1c:f9:91:63:32:b7:f7:bc:3e:
61:29:55:83:d9:63:57:38:78:32:f4:85:6f:90:90:
95:d2:d5:58:10:a9:4a:ac:90:8a:aa:41:a0:5e:4a:
34:54:14:86:31:53:3b:33:52:dd:49:2d:d3:4e:5d:
61:2b:ea:0e:1b:52:94:3b:76:dc:11:93:4a:d6:c2:
8b:37:72:79:a0:7e:01:8c:a8:d4:f5:22:15:3c:5e:
9b:12:6c:d8:4e:db:19:e2:b1:38:83:2e:ee:f3:f3:
e7:92:22:0d:af:a4:a6:68:54:b4:4a:ba:48:48:95:
8b:5e:c8:b2:6c:b7:ba:a7:69:45:ec:fb:f4:9d:7f:
47:a2:24:6d:60:0c:43:c0:e2:8e:b5:92:2d:85:ea:
3f:da:0c:84:5b:37:3c:ac:3f:39:0e:4b:39:06:f3:
06:f8:67:25:7c:d7:7e:5c:74:76:08:66:19:aa:f7:
e4:c1:7c:c1:e5:0f:52:34:03:61:f2:2a:74:6f:f4:
66:8e:d3:58:58:af:29:a9:28:f9:3b:cd:c4:1d:32:
ae:77:b7:5d:fe:bc:eb:35:16:a8:c1:44:f2:ea:74:
02:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8A:18:9A:6F:4B:C8:E0:73:BC:C2:C0:18:22:EE:C8:91:BB:DD:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4BF98D9C4D7F11EFA6B4F7BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.82.0/24
Signature Algorithm: sha256WithRSAEncryption
79:0b:32:f8:f5:43:33:26:c2:9a:4f:52:67:19:81:75:13:ff:
c7:a6:38:75:84:99:d2:5f:b7:e5:65:74:af:fe:ce:21:c0:17:
47:21:ef:cf:f8:f2:6a:a3:48:e8:b4:3f:18:8b:5d:cf:55:dd:
38:82:77:ba:e4:50:93:3a:6a:31:30:1d:c3:cf:1a:b6:d7:8d:
45:0a:a4:bb:d4:a3:67:ef:3d:34:e8:38:f0:4a:1d:57:cc:9e:
6c:06:79:28:c4:66:b4:6d:c1:3b:5f:72:48:ed:93:9f:8f:6e:
3a:7b:ed:95:eb:1c:f1:84:4e:72:5d:54:e4:6e:89:a9:b3:3c:
56:e8:54:8d:16:c9:a5:99:e3:cb:27:87:d5:7c:9a:59:b6:20:
41:f4:24:e8:6f:3f:17:75:cd:08:7c:ec:21:1b:53:55:79:d5:
1f:5b:05:21:3a:a7:aa:c1:d5:eb:ee:2f:81:e8:a0:83:b5:e4:
17:4e:0a:18:00:75:a6:d0:5b:c5:c4:20:c3:f3:80:56:0d:f9:
2b:98:56:ab:8f:ca:0a:58:a2:37:5f:58:74:0c:26:c7:75:aa:
e1:d7:84:2c:9f:e2:4c:7b:66:f2:e0:d6:68:77:aa:c9:ad:58:
46:6f:67:62:2f:12:85:48:d9:9b:c9:b8:6c:0d:7a:35:a0:14:
8f:90:8e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:08 2024 by rpki-client on console-ams.rpki-client.org