Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D8A356892E311EF9539A950762E951A.roa
File: 4D8A356892E311EF9539A950762E951A.roa (raw, json)
Hash identifier: D+1nUTLKx6Lw/g0yrHuwsSqkWZHx32m8oYW2h3K7edc=
Subject key identifier: 41:20:08:89:36:E1:B5:FF:0E:18:48:BE:49:5C:DD:56:12:71:F1:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010266
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D8A356892E311EF9539A950762E951A.roa
Signing time: Fri 25 Oct 2024 15:10:43 +0000
ROA not before: Fri 25 Oct 2024 15:10:39 +0000
ROA not after: Mon 25 Nov 2024 15:10:39 +0000
asID: 5065
IP address blocks: 154.206.42.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66150 (0x10266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 15:10:39 2024 GMT
Not After : Nov 25 15:10:39 2024 GMT
Subject: CN=671bb4f3-214e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:57:13:a1:48:71:50:31:67:bb:c2:52:12:01:
a0:c6:96:17:52:34:6c:74:42:1e:49:db:83:c1:a8:
27:5e:52:36:15:e2:01:30:ab:08:f7:15:5e:bf:3c:
80:31:51:c6:26:df:c2:75:71:c1:ca:ac:a7:d4:d0:
bc:38:71:c6:6e:8c:16:0d:0b:39:f9:88:fb:30:23:
e0:04:5b:1a:f7:ac:2c:ae:ec:e2:8d:c0:51:87:81:
44:6f:94:8a:7a:31:ad:53:7b:47:cc:78:fb:b3:4f:
cf:d0:26:ef:c6:b2:46:34:5d:fe:5e:ea:a5:e7:d4:
3b:4c:78:f0:fc:56:2e:a1:b2:64:4e:a4:30:bd:f1:
78:82:4c:f7:fd:5a:1f:67:f0:8e:62:8c:a0:09:3a:
81:85:d6:e1:66:ba:40:cd:4e:ef:d8:97:30:b3:58:
ee:e3:3d:f4:ed:74:e7:5b:99:37:ee:f2:6d:78:33:
a6:63:bf:65:3f:a1:a4:32:ef:ca:e4:fa:e3:d3:ee:
ab:50:1f:8a:a8:bf:e2:12:41:fe:ce:6e:41:e1:40:
61:fb:1f:11:48:04:d9:0c:91:cd:98:33:93:6d:ba:
c3:4c:15:4a:11:49:40:b2:55:1c:49:be:b8:f7:2c:
d2:8d:16:10:4d:7a:7a:bf:04:b2:ba:14:65:00:67:
b0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:20:08:89:36:E1:B5:FF:0E:18:48:BE:49:5C:DD:56:12:71:F1:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D8A356892E311EF9539A950762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.42.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:33:e7:27:61:21:65:2b:ae:fa:d8:d7:cd:48:60:f7:56:bf:
c4:fb:7e:f2:a6:b2:4b:6b:71:0d:12:8e:82:46:c7:4d:d3:ac:
b6:cc:d1:3b:32:43:e1:a7:19:e2:d7:33:fc:48:f8:e5:58:4c:
b4:88:78:d3:9b:f7:d9:5d:3d:6c:2a:9b:fd:62:92:f3:4f:df:
5a:ab:54:e4:46:5f:57:75:fe:a9:67:51:5f:78:f4:1e:5b:85:
b1:11:09:fd:4b:aa:ff:68:44:ea:61:c1:7a:d6:55:6b:74:a6:
27:86:9e:7e:62:28:d0:af:50:cd:43:6a:58:36:66:1a:89:b6:
27:b0:aa:f8:93:30:4c:e1:bb:47:a8:be:93:b7:a9:35:5a:61:
41:7a:d9:99:ae:03:7b:0f:2f:29:b9:dc:59:a3:a3:c9:47:d5:
bf:07:ae:21:8e:5a:3d:33:75:63:3c:81:59:a4:cd:8e:62:24:
cf:fe:36:4e:74:8b:a4:a8:51:68:67:ea:1a:ec:19:05:f8:13:
f1:94:98:e9:d8:7f:34:18:c5:e7:be:b0:c4:89:fd:29:2e:30:
8a:db:fe:30:90:7e:88:f3:ec:78:e9:34:29:c4:0f:c3:12:00:
25:17:f5:58:37:fe:56:af:49:91:5f:bb:37:d0:95:83:67:f5:
b6:eb:0d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:38 2024 by rpki-client on console-ams.rpki-client.org