Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/680912269D1811EF8447EEB0762E951A.roa
File: 680912269D1811EF8447EEB0762E951A.roa (raw, json)
Hash identifier: 0FZznh0qShwDA34AhCjsrr6TpIya8MyA7UXBTLLD2Vg=
Subject key identifier: 6F:22:89:A2:90:30:F9:7C:96:F1:2C:AB:25:2E:7A:CC:BE:15:C8:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010963
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/680912269D1811EF8447EEB0762E951A.roa
Signing time: Thu 07 Nov 2024 14:56:02 +0000
ROA not before: Thu 07 Nov 2024 14:55:58 +0000
ROA not after: Wed 11 Dec 2024 14:55:58 +0000
asID: 203020
IP address blocks: 154.207.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67939 (0x10963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 14:55:58 2024 GMT
Not After : Dec 11 14:55:58 2024 GMT
Subject: CN=672cd502-7b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e5:c7:69:3e:78:8a:d6:ec:45:91:53:cc:96:
86:d5:36:af:49:60:9b:d4:cc:94:94:52:fb:3e:4d:
30:9f:0e:e2:e7:bf:7e:e1:2b:59:52:b1:fa:ac:37:
24:1d:49:da:85:05:a1:f1:c4:9a:c4:34:1e:db:fa:
39:1a:77:1d:ae:34:24:46:39:32:1d:27:77:75:71:
2e:d7:82:af:9e:9f:38:f2:25:56:17:77:3f:45:3e:
3f:3d:e4:69:e3:6e:97:ce:7d:47:3c:b7:d6:ee:d1:
1d:81:27:e2:0b:8a:5d:b8:df:af:fb:5b:bd:2c:dd:
94:dc:d6:9c:e8:8e:31:08:66:aa:f8:b7:f6:59:22:
15:ba:16:9a:ea:d5:25:fd:a9:33:d0:85:77:76:79:
6b:67:a1:13:99:45:0d:07:9a:ec:da:4c:bc:d6:73:
63:2e:b8:a3:78:62:6d:b7:92:8d:2f:c4:12:f3:50:
8b:ea:f1:7e:3a:2f:c3:86:e5:f7:50:3e:7b:07:22:
fe:7c:b0:89:d4:7b:4d:61:8b:9a:79:79:eb:31:c4:
5c:a6:ea:05:e3:05:e1:12:54:14:68:87:1b:da:52:
1b:6e:a1:12:93:92:91:ad:76:db:0f:e2:c0:60:09:
1c:ca:22:eb:9e:85:d4:bb:cc:a9:07:ad:80:43:d3:
ac:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:22:89:A2:90:30:F9:7C:96:F1:2C:AB:25:2E:7A:CC:BE:15:C8:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/680912269D1811EF8447EEB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.48.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:a2:09:74:56:b5:b3:a8:97:34:d5:7e:81:49:df:b3:4c:7e:
91:a5:df:01:91:b9:41:d5:21:66:17:cf:99:55:0a:f5:55:93:
bd:eb:0d:28:96:75:74:f8:8d:9e:7d:e8:ca:70:10:ec:0c:93:
a5:ce:c3:f3:38:34:4b:15:7b:02:79:9e:12:20:1b:46:68:52:
2c:4b:62:97:fb:c6:c9:c0:bd:54:03:48:e1:5a:b7:46:7f:8b:
ae:5c:d1:aa:9e:5b:27:b2:91:71:18:a6:41:cf:ee:fa:e1:5b:
89:3b:00:11:0d:02:26:ae:63:b6:be:65:9c:1f:02:c7:9d:5b:
92:70:dd:cf:8e:84:ea:20:b5:63:96:0e:e2:5a:f6:74:65:59:
7b:1e:22:86:a9:b1:c8:43:c3:02:17:e9:67:8f:0f:2f:fa:c9:
2d:61:a6:ca:cc:62:84:f3:b1:b3:b0:6d:52:99:67:43:a5:37:
f3:d3:d4:14:08:54:72:80:99:e0:18:0f:13:3a:52:41:c9:c2:
fc:dd:cd:ff:fe:0a:ba:30:f5:e4:ef:4f:86:df:32:e1:2b:3c:
29:2f:45:66:5d:fb:51:45:42:09:2e:a3:4e:d7:a5:ba:81:a1:
b5:b5:cb:c6:f3:94:55:14:fe:82:97:34:c5:83:82:6b:01:11:
19:ef:23:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org