Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5EAF5A4CA75311EFA6D63EB4762E951A.roa
File: 5EAF5A4CA75311EFA6D63EB4762E951A.roa (raw, json)
Hash identifier: OwT6TDl90niFyDsympKb9nFCfB0/Ewb5QMBrxplJBb8=
Subject key identifier: 48:42:BF:48:BA:36:7C:86:24:0B:12:31:A2:79:90:74:03:BC:7E:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FC7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5EAF5A4CA75311EFA6D63EB4762E951A.roa
Signing time: Wed 20 Nov 2024 15:23:18 +0000
ROA not before: Wed 20 Nov 2024 15:23:15 +0000
ROA not after: Sun 01 Dec 2024 15:23:15 +0000
asID: 151800
IP address blocks: 154.197.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69575 (0x10fc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:23:15 2024 GMT
Not After : Dec 1 15:23:15 2024 GMT
Subject: CN=673dfee6-9493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:de:6e:ad:e5:6d:5e:85:25:d2:9b:5d:18:07:
2a:c5:2c:88:dc:53:70:54:c2:4c:c2:5e:8a:0c:e5:
b6:7b:73:a9:ca:d2:96:99:86:ad:3a:25:3c:91:6d:
b3:0c:57:bc:98:89:62:e9:26:e0:a5:d8:8f:da:26:
95:c1:de:55:64:46:84:7e:bd:1d:54:c8:df:40:e4:
3e:66:44:d3:e7:4b:50:75:8f:9f:31:de:83:84:83:
45:71:ae:a5:39:c2:21:58:74:8e:96:25:46:e5:ff:
d8:1b:a8:e0:90:68:5c:4f:79:a1:02:39:f7:d3:8b:
97:23:d5:a8:b4:c6:90:bf:f7:0c:a2:a9:9f:71:6e:
99:0a:88:48:f8:8e:51:e3:72:31:91:ed:8e:96:b7:
e1:16:79:86:cf:6e:15:10:61:f7:2b:21:af:9c:7d:
68:fb:f9:ae:b5:e7:53:3d:a1:58:b6:65:85:7d:81:
ad:fc:7d:7c:8c:c9:e5:d1:66:79:84:00:06:72:fe:
2c:3d:72:01:62:42:d2:bf:21:ca:be:58:38:7d:98:
cd:ec:45:59:59:88:29:64:eb:9c:4f:87:6a:98:bc:
0c:e5:ed:0c:c5:ac:6a:32:d7:c3:6f:39:b6:a7:51:
10:28:a0:40:92:0a:2f:42:75:f6:d3:e7:fe:84:f3:
f7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:42:BF:48:BA:36:7C:86:24:0B:12:31:A2:79:90:74:03:BC:7E:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5EAF5A4CA75311EFA6D63EB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.96.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:59:99:1a:81:04:07:a8:90:0b:71:d8:e8:c2:ea:20:11:0c:
9d:bc:42:b1:1d:13:da:42:13:47:63:a3:e5:6e:f0:67:c4:cd:
d2:31:8b:1d:40:fe:19:13:28:a9:37:40:d8:4e:6f:b2:4c:38:
a0:bf:5c:ab:99:32:f5:f9:7e:62:70:34:45:27:2b:95:93:65:
a8:8f:86:98:81:e6:d2:46:b2:af:84:d7:3c:70:aa:9c:a4:d2:
04:2c:95:32:f6:6e:15:18:89:8e:d5:3d:6b:e8:a7:56:a5:46:
36:cd:7f:fe:74:f2:f8:6d:8c:68:68:1c:9d:ab:e0:86:89:5d:
c6:79:a0:4e:e5:8b:e4:a9:95:89:b3:d3:d3:d6:bf:c5:1f:78:
0e:3e:bb:67:ed:e7:06:78:da:af:52:b7:5e:65:0c:67:80:3e:
01:ad:80:4a:23:70:dc:09:3c:e3:93:70:dc:2d:cf:32:39:31:
87:e7:6a:db:e2:56:20:0a:7a:00:f2:62:83:1c:69:49:ea:d5:
7e:67:19:ae:e9:05:cb:7b:80:9e:85:d7:58:ad:7f:ce:fe:bb:
af:e1:93:ad:6d:a1:65:db:fc:2d:19:e0:3e:35:49:8a:9f:24:
46:76:41:3b:2f:de:10:6e:0a:16:df:96:14:8f:5c:77:c7:38:
71:f8:59:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:05 2024 by rpki-client on console-ams.rpki-client.org