Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C551734AE1E11EE940FDE9F775412E6.roa
File: 5C551734AE1E11EE940FDE9F775412E6.roa (raw, json)
Hash identifier: o6UQJBzqrfWIKzA1kc/PL79o5oJYrWpgzspRjjY4shQ=
Subject key identifier: 93:DC:6D:9C:39:60:82:65:80:E5:EA:B3:4E:1F:FE:06:FA:6E:DC:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 72C2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C551734AE1E11EE940FDE9F775412E6.roa
Signing time: Mon 08 Jan 2024 12:06:32 +0000
ROA not before: Mon 08 Jan 2024 12:06:28 +0000
ROA not after: Tue 14 Jan 2025 12:06:28 +0000
asID: 138965
IP address blocks: 154.222.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29378 (0x72c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 8 12:06:28 2024 GMT
Not After : Jan 14 12:06:28 2025 GMT
Subject: CN=659be548-7c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:da:1e:ad:c1:27:5e:ef:95:ff:cc:55:46:
89:06:32:08:75:3d:76:74:48:92:62:27:67:55:fe:
ac:8b:b1:74:54:02:f6:43:88:70:63:98:c8:d4:58:
46:21:0d:10:e2:6b:b0:17:bd:34:bb:eb:04:f6:a1:
16:0e:2b:98:0e:40:62:8d:e8:1c:f6:fe:61:64:c9:
2d:70:c7:ec:bb:af:33:d2:48:ef:1a:28:37:f6:a8:
68:36:40:cd:41:54:af:0c:a1:ab:82:e8:67:bb:f7:
dc:88:98:b1:e7:7f:16:18:b1:db:c7:62:91:f5:a3:
7a:d5:6e:dd:b6:16:81:bc:e1:a0:93:a4:b8:f1:e9:
17:27:e2:d1:f3:ee:57:72:10:32:ee:8a:ce:07:04:
bd:21:4d:25:ea:47:a5:6a:bd:e4:b2:12:48:fa:c0:
ec:d0:c5:cd:c1:57:a8:77:61:f6:8e:9a:aa:5f:67:
a8:71:45:02:ee:36:e5:4c:c9:4b:db:94:c2:5c:57:
1d:5c:5e:ad:8a:83:df:be:1e:0c:01:32:ca:a1:6c:
60:73:3f:bf:b7:2d:f8:31:c4:4a:cf:87:d8:54:8c:
c3:e3:b9:13:2b:6e:3c:89:d2:30:2e:49:8d:c3:08:
68:98:ec:7a:8a:2c:a4:d5:02:9e:2f:68:be:5a:7f:
c2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:DC:6D:9C:39:60:82:65:80:E5:EA:B3:4E:1F:FE:06:FA:6E:DC:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5C551734AE1E11EE940FDE9F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.58.0/24
Signature Algorithm: sha256WithRSAEncryption
81:e4:7d:43:37:e2:0a:f8:4f:6f:e8:38:10:8d:1f:ce:c2:35:
51:0c:42:76:bf:f7:2b:70:79:3b:c7:cc:ff:9d:6c:67:e5:e2:
26:c7:0e:30:d2:19:15:ed:e0:da:3d:fd:7b:45:b2:44:cc:b9:
70:9a:9e:78:9d:05:dc:1d:28:b4:63:1b:7d:b3:67:96:46:7f:
8f:14:71:75:25:1a:35:60:ae:1c:2b:72:9d:ca:d8:49:e5:e7:
f4:6f:e2:7a:69:ff:00:58:03:8b:39:1f:37:21:a6:8a:25:6c:
da:84:e7:db:4c:b1:3d:a7:64:b7:85:12:ef:dd:44:a9:f1:fc:
da:02:81:01:ff:73:0a:cf:d9:29:59:22:6c:eb:00:47:a0:19:
00:d6:90:88:4a:07:5c:3d:b5:9d:51:09:16:ba:2e:8a:ac:97:
d0:68:c2:fd:13:fc:39:0f:b6:af:67:9c:b0:40:0e:a1:c8:6e:
1e:85:20:5c:70:24:71:b1:82:1b:aa:92:dc:d6:c7:09:01:af:
3a:b6:c3:de:80:20:87:da:c6:ab:8b:af:84:98:31:c7:12:0d:
3f:1c:fb:da:d2:b1:50:1f:3d:59:fa:17:e3:63:3a:cb:35:b8:
94:a5:73:b1:b4:e0:22:86:ea:12:c8:72:8d:17:91:ed:86:f4:
bf:fc:81:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:05 2024 by rpki-client on console-ams.rpki-client.org