Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E2A1FECDEA711EEBDFB248A775412E6.roa
File: 4E2A1FECDEA711EEBDFB248A775412E6.roa (raw, json)
Hash identifier: Gjt0e8QL4bFAP4aVGGKXky5u1WEQIje1+YyiFXhE58Y=
Subject key identifier: AA:F3:28:F1:16:DE:86:74:3B:F6:AC:43:89:AA:D8:45:63:14:79:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A04D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E2A1FECDEA711EEBDFB248A775412E6.roa
Signing time: Sun 10 Mar 2024 06:27:45 +0000
ROA not before: Sun 10 Mar 2024 06:27:41 +0000
ROA not after: Tue 28 Jan 2025 06:27:41 +0000
asID: 132513
IP address blocks: 154.197.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41037 (0xa04d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 10 06:27:41 2024 GMT
Not After : Jan 28 06:27:41 2025 GMT
Subject: CN=65ed52e1-f9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:8b:ad:8b:da:62:d0:37:81:c1:24:6c:78:
cb:18:08:0d:a2:89:2a:61:dc:c2:ae:3b:12:8e:32:
26:c6:a1:e3:77:78:5f:87:46:aa:e2:29:cd:86:57:
91:b4:50:63:0d:8a:8f:ef:0c:22:2a:24:e9:6f:40:
cb:e0:ed:0a:c9:ea:df:c8:82:60:30:cf:6a:ab:1b:
8d:9b:69:b8:86:e7:3a:c4:89:1f:9d:53:e8:09:10:
d5:a4:ab:6b:67:67:40:e6:61:73:25:2d:6a:92:7a:
e5:f5:f6:bf:f1:d6:ea:83:2e:a7:be:5a:55:d5:30:
55:5a:67:a3:0a:1c:65:59:6e:fa:e3:51:cd:3d:18:
e4:61:ba:49:e1:6a:a4:85:62:c0:8b:60:9b:a9:f5:
cf:81:7a:74:5e:1e:eb:39:a2:f5:e7:69:78:2f:80:
09:83:d2:ae:5b:84:c9:a1:53:f3:bf:41:e7:76:7a:
fc:c8:8a:46:94:a5:b8:30:9c:99:ce:a9:c1:9b:e6:
f6:7a:34:52:07:48:31:23:24:6d:86:af:7d:ab:a8:
45:6d:96:a2:6d:de:33:9d:a0:80:ba:8c:2c:60:ce:
2c:b4:19:24:a2:5a:47:81:11:db:e9:88:2a:d6:06:
04:c4:b1:26:db:39:e0:60:29:ac:9b:5f:c1:90:20:
12:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F3:28:F1:16:DE:86:74:3B:F6:AC:43:89:AA:D8:45:63:14:79:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4E2A1FECDEA711EEBDFB248A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.45.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:10:d8:22:20:f7:33:39:ce:8b:55:ba:6f:35:0f:af:e2:e9:
4b:80:be:91:60:9e:15:ee:5d:9f:cf:7a:79:23:fd:f1:92:80:
58:bc:9e:12:57:68:49:39:72:e8:ac:a8:85:93:ab:21:fc:22:
df:19:70:1e:0d:3d:37:ba:e3:65:70:a6:bb:c0:af:bc:90:3d:
c8:c0:94:75:45:aa:4f:91:f2:a9:dc:97:a8:28:07:72:ab:66:
02:fb:a0:57:8e:d8:f4:7c:ab:59:f9:13:9b:9c:fc:de:ee:3f:
a4:bb:f7:88:c9:49:7f:f8:a8:5e:f1:c9:94:d2:f7:54:ea:fd:
7c:09:47:da:45:ec:ce:00:4b:0b:ce:d8:04:40:55:81:c9:d3:
b0:91:78:91:46:a0:8d:91:79:09:84:4d:5b:08:12:0a:9b:fd:
fd:3d:85:6e:d2:5c:3a:dd:97:4f:aa:7f:c9:27:22:bb:0c:3d:
7a:97:f0:4f:4c:f3:72:af:57:15:3b:f1:51:74:7e:26:0c:fa:
8f:4c:c7:6f:1b:d6:c6:db:a1:db:41:71:d4:9c:6f:44:b2:c5:
de:ac:2a:81:ce:c2:3a:ac:6c:66:7f:79:a5:82:18:d7:1d:6b:
54:09:35:92:96:5e:f3:8f:33:3f:8c:12:0b:b7:2d:e2:d2:d1:
da:56:53:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:09 2024 by rpki-client on console-ams.rpki-client.org