Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67615DB447E211EF8DBD8FA0762E951A.roa
File: 67615DB447E211EF8DBD8FA0762E951A.roa (raw, json)
Hash identifier: NYkTyuvfCVHP4RBj1ck8wTgGFEgm7Zs7++ibg9sBn98=
Subject key identifier: 40:23:1B:B0:DC:EA:2E:9A:9E:CF:F4:A7:02:0D:23:0C:FD:BB:7A:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D490
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67615DB447E211EF8DBD8FA0762E951A.roa
Signing time: Mon 22 Jul 2024 04:25:19 +0000
ROA not before: Mon 22 Jul 2024 04:25:15 +0000
ROA not after: Sat 11 Jan 2025 04:25:15 +0000
asID: 140867
IP address blocks: 154.197.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54416 (0xd490)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 22 04:25:15 2024 GMT
Not After : Jan 11 04:25:15 2025 GMT
Subject: CN=669ddf2f-5b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:21:3a:bc:2a:d4:01:5f:83:15:64:f8:1e:c4:
c2:1f:63:e9:b2:f1:c5:16:cc:27:7c:cd:8d:2b:f1:
58:4e:45:41:d6:d8:c2:f0:fc:42:0c:53:49:83:02:
1b:90:18:c5:d0:17:06:6a:ce:53:b9:29:c0:b8:be:
f8:eb:53:60:91:a0:ea:19:96:89:bf:5c:71:48:f3:
b2:d3:7b:5c:be:04:26:3b:8b:8a:b8:10:49:d9:33:
48:e3:ab:15:55:09:35:c2:13:4d:12:12:24:23:17:
b1:69:17:ff:71:bf:e0:f2:25:b7:19:58:72:03:94:
af:97:b5:2a:e5:83:f9:ba:4c:3d:5f:fb:dd:31:0a:
60:de:0e:8b:53:c0:e0:b5:a3:65:22:ad:3f:e4:67:
94:82:84:94:74:8a:bf:34:57:be:e3:9a:a4:fa:c4:
c2:f6:d6:da:91:3e:d7:02:1d:c1:29:3c:7b:ff:0d:
7a:f4:8f:d7:d5:1b:90:4a:58:b4:79:63:95:5b:73:
c8:83:c1:89:78:6f:91:f8:2b:2a:43:32:20:e9:13:
b6:bf:58:05:de:10:93:76:f1:df:da:e2:dd:69:ed:
17:e7:07:28:0c:93:9e:19:c3:cb:1d:15:04:52:ad:
c4:79:5c:cb:ce:44:ff:24:67:95:e7:7f:88:d3:e3:
13:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:23:1B:B0:DC:EA:2E:9A:9E:CF:F4:A7:02:0D:23:0C:FD:BB:7A:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67615DB447E211EF8DBD8FA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.126.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:27:0d:02:53:da:af:31:98:69:61:dc:9a:15:b2:fe:78:df:
84:41:3b:a8:5c:fb:f2:56:43:b6:f8:34:8f:32:9c:35:0f:21:
ca:6c:1a:e6:39:eb:9a:73:01:70:91:84:38:cf:8d:2f:ee:1c:
63:0a:e1:8b:98:9b:f3:61:0f:ea:bb:8c:95:25:44:ec:a8:3a:
b4:04:0d:d9:be:6a:09:b2:13:24:d1:81:80:7c:7e:61:5c:9a:
39:e9:de:73:b9:66:40:33:ef:2e:9c:26:ce:0e:22:3b:00:e0:
ee:a6:be:e4:88:32:12:82:a6:81:7a:f9:75:6c:cc:16:c7:49:
a8:32:de:7b:27:87:e2:72:4d:6f:ad:5d:26:e7:49:9a:cf:70:
c5:43:11:79:1e:18:a8:24:58:70:9f:cf:ab:ff:e2:95:61:01:
0b:b3:c8:15:4f:de:18:08:05:77:be:84:c8:78:b5:94:41:b7:
14:61:ce:be:7c:8c:b5:3c:66:2d:c0:6d:7e:70:d8:a7:9f:03:
c9:cb:3a:8b:da:cb:7d:6b:69:f6:75:c1:a2:b0:3f:8a:df:35:
07:f0:54:ad:de:ba:ee:6f:fe:b1:76:50:96:cd:f6:54:21:5b:
bc:60:5f:6e:bb:05:fb:a0:3a:54:e7:ce:ff:e6:df:d2:c9:4a:
ee:9f:84:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org