Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/537AAD92736511EFBB8E6AB7762E951A.roa
File: 537AAD92736511EFBB8E6AB7762E951A.roa (raw, json)
Hash identifier: cnqzzlC8xaLGZlITHQhX1LUL/p40ND9872y/jRaTtnM=
Subject key identifier: 48:11:F6:F2:95:CA:4E:62:3C:B7:06:4A:62:FC:C8:45:53:91:3F:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF02
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/537AAD92736511EFBB8E6AB7762E951A.roa
Signing time: Sun 15 Sep 2024 13:20:50 +0000
ROA not before: Sun 15 Sep 2024 13:20:47 +0000
ROA not after: Sat 30 Nov 2024 13:20:47 +0000
asID: 142403
IP address blocks: 154.221.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61186 (0xef02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:20:47 2024 GMT
Not After : Nov 30 13:20:47 2024 GMT
Subject: CN=66e6df32-83a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0c:db:0e:73:f7:86:16:e6:0e:bf:e7:1b:65:
3f:0c:2e:a6:1d:48:0e:89:19:17:20:06:7f:80:57:
ba:b6:06:88:83:38:60:6c:35:e9:9a:31:03:42:b0:
d8:97:c9:11:35:da:c2:bf:91:cf:4b:9c:2e:a7:e4:
02:d1:e5:c0:68:b3:d1:7f:04:43:77:b1:06:5b:c5:
32:ac:b4:0d:13:18:fb:ef:37:d2:34:d3:87:e8:16:
9e:c7:2e:5b:76:7b:76:bc:1d:f2:da:61:9e:6b:a8:
d7:0a:13:80:e4:8c:75:6c:06:01:ca:1d:3d:ee:ba:
c0:f8:ff:90:b1:a4:27:6b:bb:03:b7:12:02:e4:28:
79:d7:47:31:2b:66:13:14:1e:ab:f1:46:4a:8d:ab:
c2:e3:c6:28:16:36:4b:83:ed:96:a0:6e:55:5c:c9:
7d:29:dd:69:d2:d1:b6:95:4b:d4:66:b4:ea:cd:4f:
da:1e:18:6a:fd:45:cf:f8:29:bb:58:1c:58:bb:ac:
20:3b:7f:53:5a:0a:c0:b9:0c:e5:8d:59:8d:3f:4d:
f3:02:7a:4b:b6:03:37:e2:8c:f7:d0:b0:a3:89:6b:
88:91:71:7e:48:74:16:80:d1:e3:a3:ad:ea:89:a1:
f7:e5:1f:8a:ab:68:5a:0f:47:16:d2:7e:ea:72:c6:
8b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:11:F6:F2:95:CA:4E:62:3C:B7:06:4A:62:FC:C8:45:53:91:3F:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/537AAD92736511EFBB8E6AB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:d5:e4:f9:6b:79:51:5a:f2:da:99:ac:df:07:f0:62:35:f2:
92:3c:6a:6a:69:13:2b:f7:61:b5:a8:46:73:2d:d3:8a:b6:06:
3a:59:89:7b:87:78:d1:f1:b0:de:f4:c9:a6:01:21:e2:4a:e5:
87:7b:4a:e4:97:19:8f:43:a8:29:0f:5e:4a:74:3f:8b:70:06:
a7:4b:f9:39:60:67:3d:8d:07:80:28:a1:19:fb:50:af:68:71:
04:41:f0:b5:10:76:23:a7:2e:19:2a:58:0a:8d:e2:60:34:7a:
1b:0f:04:51:28:1a:bc:dd:dc:75:c4:f8:e9:4e:cf:1d:9c:62:
da:84:39:20:da:d4:e1:15:4d:d8:48:1c:fb:58:b6:14:81:7d:
0e:14:74:6d:79:26:d1:de:8f:26:ef:2d:79:37:bf:a0:09:13:
1f:f6:c7:0c:51:8a:83:a9:e1:62:15:20:9f:26:22:51:1d:bb:
31:61:46:87:b3:63:2e:7b:f7:07:70:5d:be:98:94:dd:26:ca:
41:5a:64:84:d1:0d:ff:d4:c1:da:d1:b1:d5:5a:cc:ef:1e:f4:
7a:d3:4a:c5:d2:4b:02:a6:53:27:ee:45:d4:3f:a4:14:93:3b:
9c:a2:a3:5a:c7:db:8b:18:ac:41:c2:30:2f:f4:f1:34:ed:31:
cf:1d:36:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org