Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F807B4A726E11EFBF5E3775762E951A.roa
File: 6F807B4A726E11EFBF5E3775762E951A.roa (raw, json)
Hash identifier: xqSyYrRkIuKm2t3gfN+iXa6NrbCbCkt4+HAgjmRDDlU=
Subject key identifier: 8C:60:E1:FC:B5:C1:5F:48:64:2B:7C:85:23:97:E2:F7:F9:A8:32:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE16
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F807B4A726E11EFBF5E3775762E951A.roa
Signing time: Sat 14 Sep 2024 07:53:31 +0000
ROA not before: Sat 14 Sep 2024 07:53:28 +0000
ROA not after: Sat 30 Nov 2024 07:53:28 +0000
asID: 138152
IP address blocks: 154.94.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60950 (0xee16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 07:53:28 2024 GMT
Not After : Nov 30 07:53:28 2024 GMT
Subject: CN=66e540fb-52a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:43:d5:f3:1f:a0:c9:b5:c2:67:f9:9a:c4:f1:
75:2e:57:7a:09:74:01:01:cd:0a:4f:5e:04:75:22:
ae:61:70:27:3c:65:22:9a:2f:82:99:f9:68:3a:ab:
81:ee:32:69:d9:e5:36:6c:2b:f0:70:e8:55:f6:1a:
d7:4a:45:c7:e2:f9:ea:17:ab:94:d6:10:6d:23:25:
f5:53:86:d8:8e:48:93:ec:c3:dc:b7:a7:40:c5:d9:
de:40:e5:d8:78:03:52:ac:45:09:0a:15:4f:ab:bb:
83:86:7f:15:a5:bc:b0:d7:95:80:af:82:f2:1b:f3:
72:f5:d8:a3:b3:03:b1:2b:19:cd:a7:d0:c7:e6:ac:
b1:97:08:d0:79:fe:f9:01:d8:1d:1a:d7:d3:16:e9:
ad:de:78:e9:8e:28:62:fe:7b:80:e6:de:a9:4b:dd:
4e:d8:f8:fa:54:1b:fa:89:b3:b5:5d:09:e2:69:d8:
f5:11:08:a3:88:f3:d1:e3:7e:d5:02:20:09:48:30:
02:69:f0:1b:8d:29:e9:60:29:e7:1f:47:6e:c8:bf:
eb:23:79:b7:48:d9:fe:91:3c:25:81:6f:50:03:d5:
ba:be:3d:0d:b1:e4:b9:93:46:e8:21:20:cb:58:9e:
51:90:ea:6f:de:89:8c:1f:f0:8f:4f:49:a8:7b:ae:
93:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:60:E1:FC:B5:C1:5F:48:64:2B:7C:85:23:97:E2:F7:F9:A8:32:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F807B4A726E11EFBF5E3775762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.4.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:48:45:a1:93:ba:01:2b:d8:99:dd:b9:0d:8b:21:bc:82:17:
d5:15:3e:4d:a1:c4:9d:61:93:85:7a:5d:60:5f:f5:33:56:2e:
89:76:6b:fa:ff:f4:92:d0:6b:62:ca:c8:ff:de:6b:b6:8c:3d:
2a:49:e0:ca:f5:c6:55:74:10:eb:ab:e6:57:80:67:18:41:2f:
e2:fe:e7:9a:aa:c4:9e:f2:15:7d:3e:d8:6a:a3:6f:cc:46:da:
c3:71:b2:5e:6e:11:a3:25:52:86:43:ed:9e:24:52:2a:c7:61:
76:46:42:bd:cd:ec:62:47:f2:b2:55:99:42:16:87:13:d6:36:
e2:5e:6e:c4:af:6e:4e:cd:5d:ad:7f:e0:1f:96:9a:a4:d3:5a:
f0:e0:5b:1c:f9:dc:f7:5e:42:2d:cf:fd:96:18:6a:98:30:f7:
e9:6d:17:44:49:2c:da:66:39:dc:07:6c:43:1a:19:c0:42:8d:
d6:b8:27:97:b0:59:93:b3:3c:c9:fb:e3:0a:f1:ef:5e:55:d2:
09:45:d9:50:1f:34:c8:cd:9b:f7:63:6e:79:75:26:c0:df:65:
32:3e:82:d7:19:46:04:b7:42:c7:45:4b:2a:e2:c9:e2:dc:ed:
9b:22:48:f3:38:5a:8a:7d:c5:be:c9:80:c5:a1:f4:2a:a7:c0:
d6:97:09:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:09 2024 by rpki-client on console-ams.rpki-client.org