Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AA63AEA8E811EF8F3DBDA9762E951A.roa
File: 57AA63AEA8E811EF8F3DBDA9762E951A.roa (raw, json)
Hash identifier: uASmRXbIMkmGWQwUwxS9EUntKdu1eiwHn+6nNAow/uY=
Subject key identifier: 4F:43:71:BB:58:DC:4E:E0:D3:31:53:C0:3A:9B:E4:FD:03:AC:F3:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AA63AEA8E811EF8F3DBDA9762E951A.roa
Signing time: Fri 22 Nov 2024 15:42:13 +0000
ROA not before: Fri 22 Nov 2024 15:42:09 +0000
ROA not after: Tue 03 Dec 2024 15:42:09 +0000
asID: 62240
IP address blocks: 154.194.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69867 (0x110eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:42:09 2024 GMT
Not After : Dec 3 15:42:09 2024 GMT
Subject: CN=6740a655-b025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2c:41:10:da:d9:0d:7d:ba:90:46:cb:b8:73:
d6:e7:3d:f4:c3:1e:00:5f:50:ed:f3:46:a9:d9:89:
cb:f1:83:e9:5c:b2:c3:7b:df:73:17:79:0d:19:02:
21:42:64:cd:ad:4b:04:ea:1f:15:3b:55:af:b9:f5:
9e:23:26:d3:be:9a:8c:26:bc:f5:f2:3b:67:81:d7:
a1:71:37:63:c3:d9:ed:49:34:6c:38:cc:8a:74:e3:
bf:d1:21:ba:59:af:fc:96:be:70:23:42:2b:1a:36:
2a:36:ed:21:ff:f2:11:a3:5b:9f:5c:60:20:50:ea:
8a:b7:ec:0a:5a:09:dc:0b:cb:49:82:52:3e:83:f8:
9e:01:2f:fb:03:e6:c8:3c:be:85:0e:fa:2a:a4:7f:
dd:9a:3e:fd:55:bc:ac:23:16:02:03:58:7b:53:c0:
12:0d:ad:25:f6:55:39:83:64:0e:60:7f:5b:6d:da:
61:04:fa:c9:36:46:59:e6:c5:5a:66:b7:a6:01:13:
9f:3a:b8:a3:5d:00:d4:c1:84:eb:29:67:ed:9c:db:
29:d9:4d:67:a4:fb:57:40:ee:f3:c8:14:78:3f:28:
86:14:35:22:7e:dd:a8:81:3a:1e:dc:15:c0:ce:92:
cb:4a:00:63:80:70:a9:f2:4e:01:9a:77:a1:18:76:
2c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:43:71:BB:58:DC:4E:E0:D3:31:53:C0:3A:9B:E4:FD:03:AC:F3:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AA63AEA8E811EF8F3DBDA9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.118.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:38:9f:1c:af:4e:27:56:93:fa:aa:80:f8:58:ba:7b:78:93:
a4:5b:55:7b:de:f8:5a:a4:78:7b:58:ce:de:d2:c3:95:96:b4:
09:76:44:4b:ff:6d:2f:7b:71:1c:7e:35:60:d6:6d:ce:4c:9d:
3f:f5:ec:54:d2:0e:2a:df:b0:04:60:48:c7:5f:47:5e:76:9c:
c7:51:58:9b:b4:2b:70:c4:ed:b5:95:f8:85:d1:16:b7:d8:ac:
20:27:9e:3a:c1:d9:31:12:d7:5c:e1:33:74:da:d0:e2:4a:94:
11:24:c1:8d:22:9c:4c:17:0b:27:3c:7c:a5:a6:12:14:ee:db:
8c:94:ad:dd:60:d7:fc:64:2b:13:e4:eb:0d:02:36:67:7a:78:
98:0d:a2:99:c4:d4:ef:0c:6c:e1:5e:24:bc:71:14:13:e0:33:
3c:bf:31:f8:69:ba:dc:8e:de:57:35:9a:7f:a5:f7:36:f8:8b:
0f:3e:80:4c:c4:7d:a0:07:63:f1:e3:1b:ec:1b:db:5e:51:84:
03:f7:ba:25:24:38:c2:8a:10:ab:18:04:ae:20:35:25:a3:7a:
90:7a:41:c9:fb:ce:ad:a4:bf:d2:59:eb:6b:c7:72:7d:dc:ce:
3e:52:35:a7:94:9a:a4:5a:31:fd:59:14:4b:7d:2d:39:ca:1a:
75:db:58:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:11 2024 by rpki-client on console-ams.rpki-client.org