Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63AA631C9DA211EFA5C9569C762E951A.roa
File: 63AA631C9DA211EFA5C9569C762E951A.roa (raw, json)
Hash identifier: 9PEhmVhzVyORJWvadDntyua4D09BG1EDOLv1alr+pjg=
Subject key identifier: 73:77:E0:FC:08:B1:62:5F:C2:08:56:31:1E:F3:05:09:BD:5C:29:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63AA631C9DA211EFA5C9569C762E951A.roa
Signing time: Fri 08 Nov 2024 07:23:45 +0000
ROA not before: Fri 08 Nov 2024 07:23:42 +0000
ROA not after: Sat 30 Nov 2024 07:23:42 +0000
asID: 150008
IP address blocks: 154.210.224.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68022 (0x109b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:23:42 2024 GMT
Not After : Nov 30 07:23:42 2024 GMT
Subject: CN=672dbc81-874c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f6:fa:eb:2d:a2:5b:01:97:a6:8d:62:c9:94:
a6:91:3f:20:3a:e8:da:50:55:82:70:c3:32:56:c7:
09:e8:3d:25:4b:00:6b:6d:0f:3e:43:a3:92:9c:9f:
c5:15:28:1d:b8:f3:2c:54:88:28:8d:bf:a0:3c:5e:
2b:a1:fe:f8:d4:fd:05:4d:0d:4b:d3:82:b7:00:d9:
ae:f6:d2:65:36:ff:a9:1e:fc:e0:4d:ae:de:41:bd:
83:d7:1b:26:f8:e6:24:c0:3d:95:7c:93:cc:3a:54:
39:9c:ff:af:e6:cf:20:1b:ff:23:27:40:ad:7b:9a:
2c:97:31:d5:94:35:7b:39:29:d8:0e:e2:b0:9a:e3:
78:89:10:ab:99:dd:00:ba:c5:40:d5:21:ec:18:a2:
dc:a2:c4:ba:03:e4:c9:aa:ee:eb:a3:f7:51:53:07:
70:3c:9c:b1:9e:72:d5:0d:7d:7f:82:2a:51:71:c8:
33:b4:78:9d:10:1d:b8:af:f7:b3:9b:2f:e7:7a:84:
1b:f6:2a:98:48:33:3d:13:f8:92:90:07:6e:22:12:
fa:65:0c:43:45:7c:a6:f2:42:8e:ce:a4:c6:10:f6:
5a:fb:6c:25:22:92:4a:4a:c8:89:a1:5b:43:75:31:
26:ef:78:b3:08:cd:59:1b:71:e5:a3:63:e8:4b:69:
43:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:77:E0:FC:08:B1:62:5F:C2:08:56:31:1E:F3:05:09:BD:5C:29:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63AA631C9DA211EFA5C9569C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.224.0/21
Signature Algorithm: sha256WithRSAEncryption
cd:bb:17:17:c4:6a:14:99:27:b8:d5:8e:b5:19:5d:e7:fe:29:
b3:7b:39:17:ef:a1:f6:82:d8:6a:ed:66:c3:e6:6f:8a:b5:58:
07:ea:c5:5c:29:90:79:24:89:c6:1b:2f:be:42:ab:42:1c:79:
9b:dd:cd:9d:c9:6b:1b:af:b8:d2:15:4c:87:60:10:f5:8b:d5:
85:56:c9:d9:ed:e0:07:39:5a:1f:4c:09:52:ee:88:ea:0a:4e:
da:d8:e1:ea:c6:e9:e9:14:c7:83:21:ce:a0:48:02:d3:29:b6:
57:c8:8d:fd:0a:71:d9:63:d7:c9:10:67:0f:ef:66:84:bd:a7:
3c:5f:46:c1:13:f7:59:c4:67:a2:c9:22:c8:6b:30:73:d5:ca:
24:89:e2:e9:67:09:be:f0:6f:2e:d2:f6:2f:e6:4d:fe:93:b5:
a1:99:c2:51:c0:2c:6c:e6:86:3b:7b:cd:58:8f:bc:0b:b2:a0:
55:6c:34:23:a7:73:9b:99:a4:10:8c:ca:58:57:4f:c9:6d:5c:
9e:77:e2:2a:9d:b6:52:f0:2f:d4:72:dd:ac:3a:bf:21:fd:bf:
f5:85:fa:a3:1c:ef:76:7b:7f:6a:a2:0b:2d:43:16:51:6c:6a:
36:d7:02:43:d8:e4:39:e2:6a:ae:13:2c:eb:1d:2e:ce:1c:f5:
52:00:e3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:14 2024 by rpki-client on console-ams.rpki-client.org