Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/544482E8983111EF9D681D43762E951A.roa
File: 544482E8983111EF9D681D43762E951A.roa (raw, json)
Hash identifier: l+1wEehMb9BijRaYUk4CVkwqzjMngGVX3T9plKxE+Vg=
Subject key identifier: 0C:C4:AA:49:03:AE:D7:07:97:E4:FB:BF:3F:4A:7A:61:CF:04:CA:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/544482E8983111EF9D681D43762E951A.roa
Signing time: Fri 01 Nov 2024 09:11:51 +0000
ROA not before: Fri 01 Nov 2024 09:11:47 +0000
ROA not after: Mon 13 Jan 2025 09:11:47 +0000
asID: 135377
IP address blocks: 154.202.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66731 (0x104ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 09:11:47 2024 GMT
Not After : Jan 13 09:11:47 2025 GMT
Subject: CN=67249b57-ac4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:90:c4:61:fc:89:f5:6f:b5:62:ad:f8:b9:
fd:39:dc:e1:50:a1:c2:54:97:dc:50:5e:2f:ce:13:
23:67:40:20:47:ae:7e:8c:84:b5:8b:dc:79:59:15:
bb:62:bb:e0:c7:e8:6b:af:09:b6:bd:98:51:82:ba:
f5:f7:b3:1e:b8:d7:ad:34:ce:a4:75:8d:1e:2f:69:
94:4e:73:06:ef:6e:99:42:7e:f9:77:1c:12:0c:b6:
ef:9f:f5:50:99:5d:a8:4e:52:b9:6b:b9:30:d8:52:
b1:3d:81:fc:e4:b2:db:72:95:d2:b5:5d:ce:81:d0:
14:b5:07:4e:9a:c0:4f:d9:7d:a1:3b:e8:22:81:ab:
79:7a:ee:ed:33:f5:b2:71:f2:f2:e6:66:32:69:87:
05:57:4c:82:5f:c0:00:9c:0e:ae:b6:46:e2:31:3e:
28:d8:c8:52:17:ab:34:d1:26:9e:44:d7:69:fe:d2:
ba:de:65:7f:59:ba:ba:94:3c:54:09:d3:34:c3:54:
ba:27:24:d6:7d:43:ac:7f:87:c8:0d:89:0b:e5:7e:
9b:05:4e:dc:b9:1e:99:4e:2c:fe:4c:18:b9:0a:3d:
6e:f6:4a:16:c6:db:d2:05:ea:63:6a:11:2f:32:96:
44:29:c8:e2:07:3a:20:1f:50:34:2d:e1:b5:0e:ec:
0c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C4:AA:49:03:AE:D7:07:97:E4:FB:BF:3F:4A:7A:61:CF:04:CA:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/544482E8983111EF9D681D43762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.65.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:c7:74:bc:b4:db:cd:62:1b:30:30:88:1f:92:ac:3a:df:20:
95:c2:2b:2b:5d:ad:e3:95:4c:66:d3:55:86:f0:a3:3c:96:40:
91:fa:13:08:5b:a8:a5:25:1e:e7:13:94:b1:94:a6:c8:84:a6:
6a:da:e9:0b:38:83:e1:4c:1a:49:ba:77:59:0d:84:a7:1b:18:
06:4f:c1:65:f8:b8:f1:f3:4d:78:69:e9:df:01:4e:2d:f4:e1:
68:41:8c:43:bc:32:a9:91:01:32:71:3c:9e:9d:eb:fa:14:41:
c3:0c:74:3d:9f:2b:15:83:9d:ef:a1:4c:3e:9b:a0:a3:32:da:
85:e6:02:fc:11:61:27:22:b8:87:c3:64:94:c2:5a:fe:d4:76:
d3:63:6f:dc:3a:ba:cb:63:03:2a:a8:58:68:19:78:87:e4:15:
c9:da:f2:ef:f6:e2:d5:1b:c9:f0:6c:6a:17:d6:ed:98:2f:3b:
d4:b1:65:67:88:a1:54:c3:a8:e8:d7:25:70:c6:8d:cc:a4:99:
17:34:9d:fb:79:54:91:27:62:e9:10:31:c3:d7:d6:75:51:a8:
8e:75:21:08:7f:34:1b:32:4b:e3:f2:d7:56:14:fd:3c:72:4e:
9e:6c:49:c0:29:33:16:fd:8e:04:bd:d9:9e:23:09:f9:d3:24:
be:60:d1:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org