Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67F23208385B11EF88BBF6A8762E951A.roa
File: 67F23208385B11EF88BBF6A8762E951A.roa (raw, json)
Hash identifier: r1pzzGwDu1k+b3ZT+CRJkjaFLjB5o0Y7IcEQPcDFdxE=
Subject key identifier: 2C:F4:A1:7B:71:19:39:14:B0:A5:B1:3C:E7:16:5F:8C:51:5B:2C:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CB4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67F23208385B11EF88BBF6A8762E951A.roa
Signing time: Tue 02 Jul 2024 10:11:11 +0000
ROA not before: Tue 02 Jul 2024 10:11:08 +0000
ROA not after: Fri 04 Jul 2025 10:11:08 +0000
asID: 210334
IP address blocks: 154.89.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52044 (0xcb4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 2 10:11:08 2024 GMT
Not After : Jul 4 10:11:08 2025 GMT
Subject: CN=6683d23f-6c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6d:c0:f3:47:7c:48:e7:f9:79:61:b9:7e:69:
67:61:de:ea:4b:39:f9:30:61:9f:c9:fb:ba:1e:da:
2c:c3:3c:9d:92:9a:08:0f:03:ef:fc:05:0f:0a:db:
2d:6b:71:2e:3d:9f:7b:f2:9f:40:1a:59:cd:0e:5c:
57:40:9a:38:6e:13:f6:b4:25:58:13:56:7a:b5:ed:
5e:8e:cb:39:52:9c:b2:b7:42:6b:16:be:b6:d3:c8:
63:0f:37:f2:fa:f3:9e:2c:01:90:cf:da:fe:ca:0c:
25:c5:de:66:75:b4:0d:b8:fc:13:ae:86:c7:8b:ee:
9a:2e:af:d4:89:e3:17:f4:f1:38:b3:92:34:4a:10:
63:1d:f5:02:b1:a6:8f:87:5c:9a:e3:bf:12:aa:aa:
42:1a:ec:a6:1d:8f:58:fc:30:d3:80:0d:86:1b:1b:
7f:3d:6e:96:41:05:27:fe:fc:6f:30:18:c1:79:a8:
7c:b9:4a:da:56:f5:99:ca:e0:21:6d:69:81:76:4e:
e9:f2:f4:7d:8d:90:94:b1:83:a8:9b:ed:5f:fc:b1:
69:01:50:16:ad:44:ba:90:db:51:c4:52:6a:15:e0:
a2:c0:e0:d5:b0:2a:c5:ee:fc:bc:12:8a:0a:c6:cc:
aa:7b:88:f2:7f:ac:0d:6a:6f:b5:55:e3:c9:f3:2f:
a3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F4:A1:7B:71:19:39:14:B0:A5:B1:3C:E7:16:5F:8C:51:5B:2C:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67F23208385B11EF88BBF6A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.32.0/19
Signature Algorithm: sha256WithRSAEncryption
d2:6f:8d:39:47:b6:b4:b3:5d:67:66:5e:7e:b2:6f:b8:e8:6e:
74:86:a7:4e:d5:2a:1b:b1:34:9b:82:13:d4:94:72:0b:b1:b0:
dd:49:30:3a:ca:77:2f:57:08:3b:00:22:dd:da:1e:41:a6:57:
cd:e3:3b:f3:41:19:3e:73:09:0b:f9:56:bb:69:2a:af:80:e3:
d4:ea:d6:43:4c:79:68:df:96:1a:cb:59:83:9a:5b:9f:73:d9:
98:e9:16:dd:1c:4f:c4:d9:80:b4:e9:55:99:8e:83:a1:50:70:
de:2b:b1:6d:10:99:7d:e3:d0:44:e3:aa:83:9c:a5:b9:aa:e2:
5d:a2:05:0f:a7:80:0d:00:1a:70:ee:ba:05:a7:2e:42:84:8c:
5a:a5:86:c7:b5:48:79:24:e6:83:55:6d:2d:69:cc:c4:5a:ca:
af:36:5e:d2:41:0f:cd:76:66:a5:f2:81:7e:6d:e1:e9:40:9a:
80:86:c8:19:8a:bc:d6:bf:f2:c4:bb:b1:bb:b3:8d:47:d1:bd:
0d:7d:a5:d3:b8:a2:f2:52:ea:ee:12:91:13:cd:2c:81:77:68:
0c:4b:75:aa:92:52:7b:47:7c:8d:2f:db:8b:8d:7d:f0:dd:5f:
95:24:e2:f2:b2:2b:da:46:f9:9b:d6:4e:57:5a:1c:36:60:d6:
e6:98:54:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:15 2024 by rpki-client on console-ams.rpki-client.org