Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2C161A768911EF8C018FA3762E951A.roa
File: 5D2C161A768911EF8C018FA3762E951A.roa (raw, json)
Hash identifier: odo2uvs6xrwAt4AmBg5A2Wyghlm9h1lSe52x91vLu1I=
Subject key identifier: F1:B5:62:1C:5F:7A:2F:CB:DD:A2:35:4C:53:67:6B:0A:C8:31:4A:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F097
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2C161A768911EF8C018FA3762E951A.roa
Signing time: Thu 19 Sep 2024 13:16:22 +0000
ROA not before: Thu 19 Sep 2024 13:16:18 +0000
ROA not after: Fri 08 Aug 2025 13:16:18 +0000
asID: 133199
IP address blocks: 154.204.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61591 (0xf097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 13:16:18 2024 GMT
Not After : Aug 8 13:16:18 2025 GMT
Subject: CN=66ec2426-c112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7b:d8:50:6c:10:e5:1d:99:56:29:d2:f8:5f:
55:4e:2c:3b:7e:d9:7e:47:33:2d:3f:aa:11:33:81:
39:5c:57:20:d2:64:f9:d8:f0:c5:12:96:f5:b1:38:
e0:c6:0e:93:58:2e:80:7a:3e:5d:34:71:75:bf:85:
ff:a5:27:b2:f9:3b:5a:4d:4b:5f:1b:5c:de:c4:e3:
5b:28:0f:fd:b7:96:8c:b6:24:88:07:d0:86:9b:57:
7a:7e:68:15:0b:5a:8e:1f:6f:34:18:7d:91:fc:39:
95:85:39:f4:17:2c:a3:98:28:6c:94:5c:bb:e8:14:
7d:97:54:27:a1:9d:18:a2:58:f9:e2:6a:2b:c8:da:
44:81:c6:df:3e:c3:58:dd:9f:c0:51:10:90:50:95:
85:f8:53:a3:f6:95:f5:11:5b:97:b0:69:a1:e2:74:
4a:29:33:c4:16:9d:53:f7:77:42:85:62:54:d9:4e:
5e:01:22:72:18:99:59:f0:7d:a1:2f:57:3b:66:49:
3a:d0:d7:ea:ec:c3:c6:2b:33:d2:2a:e7:f8:4e:e0:
86:2a:0f:d8:dd:69:6c:5f:99:ec:8a:2c:d6:5f:ea:
3c:b7:d8:6b:ff:c2:07:01:40:bc:dc:42:dc:e7:df:
23:4a:19:a2:3d:60:a6:45:e5:ee:5f:07:cf:01:8b:
2f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B5:62:1C:5F:7A:2F:CB:DD:A2:35:4C:53:67:6B:0A:C8:31:4A:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D2C161A768911EF8C018FA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.41.0/24
Signature Algorithm: sha256WithRSAEncryption
95:5d:c6:b4:ce:be:aa:be:5f:01:b0:1b:9c:80:d4:74:7d:8b:
df:33:12:f2:0e:7c:04:55:99:3c:e3:e9:d1:fa:35:b9:98:43:
eb:c6:f5:9c:46:99:0d:8d:4e:13:f2:5f:e1:4c:d7:f6:d3:63:
13:4d:8b:6c:9d:24:98:6e:b0:bb:5a:bf:76:00:3b:86:dd:82:
e7:fd:6e:51:f7:66:57:59:77:2e:59:5d:24:4e:b3:28:68:74:
c3:d6:59:ed:ad:d7:ce:41:18:11:b5:a7:eb:cc:e2:7a:33:f7:
09:97:97:b3:dd:b8:b5:81:80:57:5f:4f:04:9f:9b:99:21:50:
5d:df:25:74:d7:44:a9:a2:15:9c:4e:3b:54:25:e6:27:59:c7:
cd:13:83:b4:4c:6e:c3:0f:9d:74:de:38:56:32:ee:bd:1d:3e:
62:17:cf:67:95:3b:aa:f2:99:23:fc:6a:44:78:55:e2:4d:cb:
b8:64:97:6f:64:ac:f3:4e:0d:fd:7e:cd:0d:b6:7e:f6:20:55:
38:f3:60:b5:13:7d:24:d1:6f:ce:b0:22:ff:15:28:a1:7e:39:
b7:6d:16:0b:44:c5:f5:22:e5:4d:b8:27:fa:ae:58:fa:2b:96:
24:aa:6c:8c:95:ed:53:ef:c6:60:38:d1:cc:da:d4:a5:ba:cf:
59:c1:62:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:05 2024 by rpki-client on console-ams.rpki-client.org