Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4EA439B4985E11EFA822605D762E951A.roa
File: 4EA439B4985E11EFA822605D762E951A.roa (raw, json)
Hash identifier: WL3Zeh4Z9VonDge/tg44QHoshbrVDENazPxSufVQdJo=
Subject key identifier: 0E:44:42:85:37:4D:6F:60:9E:80:86:AB:88:AF:A1:83:0C:20:B1:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104CF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4EA439B4985E11EFA822605D762E951A.roa
Signing time: Fri 01 Nov 2024 14:33:49 +0000
ROA not before: Fri 01 Nov 2024 14:33:45 +0000
ROA not after: Tue 03 Dec 2024 14:33:45 +0000
asID: 203020
IP address blocks: 154.204.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66767 (0x104cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:33:45 2024 GMT
Not After : Dec 3 14:33:45 2024 GMT
Subject: CN=6724e6cc-a1ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c1:c0:7d:79:64:69:7d:45:d5:b8:22:67:40:
12:8b:b7:27:56:21:95:ad:dd:b9:2d:76:2d:44:93:
f3:d7:2d:64:e5:bb:f2:f1:23:23:5c:2c:6b:07:46:
fa:fe:aa:8e:5c:3c:41:63:c4:ac:9a:27:cd:bc:e7:
97:ba:de:20:04:5a:39:65:d7:58:d1:ba:e1:4a:01:
58:58:da:55:33:05:c4:a7:0d:08:5e:1e:0b:54:a8:
4a:a6:d6:13:3e:6a:8e:3b:dd:f7:a8:ab:50:61:ea:
6a:56:44:d6:15:cb:8c:e4:2c:ca:7f:3f:58:91:90:
f2:08:8b:b4:f5:4e:7e:4a:ef:08:d1:f2:0b:7e:2e:
60:fd:b3:a7:bb:89:c0:60:2a:3c:ae:1b:b6:1b:b0:
ae:cb:c7:ed:9e:7f:ae:60:50:d2:ab:18:88:da:68:
f2:08:27:07:fd:9a:6f:cf:ec:04:3d:fb:e7:05:76:
f4:10:00:90:33:4a:3b:fb:65:95:aa:e7:c5:d1:4c:
dc:3a:c0:14:cf:b9:9c:47:5e:c8:66:a0:51:e5:f2:
3a:af:01:b9:4a:0a:c2:9e:0c:2c:49:50:5c:d5:e6:
16:67:d8:96:0e:9e:d0:05:81:33:76:5e:f9:62:95:
0b:7f:6b:04:1c:c7:2e:4d:78:ac:b6:48:46:e5:7c:
64:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:44:42:85:37:4D:6F:60:9E:80:86:AB:88:AF:A1:83:0C:20:B1:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4EA439B4985E11EFA822605D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.51.0/24
Signature Algorithm: sha256WithRSAEncryption
31:92:23:37:3a:60:6a:31:70:ca:a2:c2:86:15:68:11:55:b9:
d8:76:64:68:da:19:11:7f:e1:09:c4:b9:b0:6e:3e:e2:c5:1b:
8b:56:1d:86:94:05:76:55:66:9d:c4:c3:a0:d3:73:16:cd:52:
c2:1e:8f:e5:8c:8e:76:dd:c7:52:df:fc:63:b8:e0:fa:43:aa:
e4:66:00:11:06:97:29:0e:65:5b:d3:c8:84:fb:1d:fe:a7:dc:
84:ae:33:2f:9c:6a:6a:0e:35:2c:b7:3e:62:f7:29:2b:9e:aa:
dc:d3:00:7f:f6:bb:eb:9f:a7:f3:71:f4:7c:53:ea:c7:bb:fc:
c1:52:a9:4b:15:19:9e:c6:86:1d:92:77:b5:79:4e:58:e1:a3:
fc:03:2e:2d:26:88:f6:e5:15:51:34:80:45:4c:b0:d2:64:a9:
36:d8:11:b8:f8:3e:52:da:22:27:80:57:d6:2d:dd:ef:42:51:
cd:03:c5:3a:4b:25:ba:a5:4a:2f:0e:ad:a0:15:70:a7:bd:50:
4a:98:25:bb:36:e3:91:de:3a:e1:7a:0c:e9:14:c4:2a:04:98:
5e:b2:ef:fa:a0:13:fc:54:e0:b8:30:1f:1c:5c:b6:77:08:c5:
67:de:43:14:ae:5f:07:29:41:e8:e9:31:4b:19:3e:f8:43:76:
1e:e0:7f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:03 2024 by rpki-client on console-ams.rpki-client.org