Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BD90B866A5F11EFA5AC7349762E951A.roa
File: 6BD90B866A5F11EFA5AC7349762E951A.roa (raw, json)
Hash identifier: UM0EsSmtJK5OOfhwNQGwkx1t7ePohJkmbOpd9vFwERM=
Subject key identifier: 30:42:DA:CD:18:44:0D:5C:F4:E5:A4:EC:C4:D9:4F:36:5A:28:A0:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EA03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BD90B866A5F11EFA5AC7349762E951A.roa
Signing time: Wed 04 Sep 2024 01:45:53 +0000
ROA not before: Wed 04 Sep 2024 01:45:50 +0000
ROA not after: Mon 30 Dec 2024 01:45:50 +0000
asID: 17561
IP address blocks: 154.207.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59907 (0xea03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 01:45:50 2024 GMT
Not After : Dec 30 01:45:50 2024 GMT
Subject: CN=66d7bbd1-5c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0f:05:3b:c5:3c:42:45:33:e4:d2:07:96:79:
ec:73:2e:60:a2:c0:0d:00:5f:79:db:d6:1c:1e:d8:
cb:c1:7a:0a:f4:b6:bb:f7:ab:7d:52:87:71:34:84:
9a:e5:8b:9d:38:81:dd:f5:45:1a:db:ab:97:08:0e:
8e:0e:a8:76:3f:b5:a1:0c:0e:e3:93:44:32:15:e4:
03:da:9e:5e:27:7a:c8:17:e6:9c:fe:e6:03:cb:b6:
51:61:a8:45:cd:db:0c:ed:c4:01:e2:ee:3d:e5:0e:
2d:9d:08:6d:cc:9a:14:a2:a4:8c:4d:55:7e:b3:8c:
31:9f:d3:5e:a8:49:e2:f1:f2:18:14:29:85:8a:d0:
cf:2e:44:05:66:6a:e2:98:d8:0d:e0:c9:e0:de:1b:
3d:7d:61:dc:d4:6e:4f:8f:3d:10:6a:4e:d6:67:02:
8d:1a:64:5f:5e:06:eb:ed:1e:ef:51:c7:2a:86:2d:
80:3d:8b:68:16:b4:9d:2d:2f:04:76:bd:38:a7:69:
17:2c:cd:42:33:df:b3:2a:9c:21:95:24:da:11:4e:
65:ca:28:bb:6a:39:ed:95:91:36:89:01:a2:e2:55:
66:6a:3a:4b:33:b8:51:7b:e1:19:0d:c0:90:7f:0b:
e9:af:d0:11:48:d4:ed:47:80:a3:69:6d:b2:ff:be:
b9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:42:DA:CD:18:44:0D:5C:F4:E5:A4:EC:C4:D9:4F:36:5A:28:A0:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BD90B866A5F11EFA5AC7349762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.80.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:fe:ad:a9:73:02:7d:32:7f:ab:49:53:76:8b:8a:39:8e:72:
a0:1f:94:82:fa:53:2d:0f:d2:53:48:31:53:ec:f7:a1:59:d5:
2d:55:47:f4:30:34:32:0e:39:de:66:9b:ca:92:3f:e2:e9:f9:
96:ad:56:4d:f0:76:b9:cd:d7:46:4b:e5:47:d4:5a:4c:38:4e:
36:ac:70:93:9c:ee:e4:cc:68:df:c1:20:6c:74:cd:35:1b:66:
0b:8f:82:71:7f:61:e1:e8:d1:26:50:54:5f:7d:51:21:b5:73:
2a:cd:26:7a:1a:c9:ca:15:c3:39:2c:25:27:eb:ed:b6:9f:4a:
ce:96:ca:74:d7:78:bf:0d:9b:98:75:22:5a:71:f7:cb:2a:fb:
12:62:1f:12:69:1d:60:96:ef:ce:f3:86:83:c4:d7:50:e6:7f:
c2:49:5d:2e:ba:4a:41:d9:cd:84:04:b8:ad:b2:7f:cc:1c:4d:
df:47:ef:05:7d:84:38:ff:94:5e:8f:09:be:cf:86:9c:73:0a:
c9:50:71:d3:cc:b1:2b:ec:a4:57:79:e6:b8:98:38:b9:a8:e7:
cb:ec:fa:81:45:16:d5:c8:7e:a7:bc:46:a1:97:95:58:19:2e:
c7:a3:ea:5c:ff:44:ab:b6:e0:16:95:72:dd:3d:91:e0:95:6c:
44:9e:aa:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org