Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F49A8E2904D11EFAEB9248D762E951A.roa
File: 7F49A8E2904D11EFAEB9248D762E951A.roa (raw, json)
Hash identifier: 0hA0Pp94ahrPnzVubONoSYfQyUJEbcYmwwG93qYTBoo=
Subject key identifier: D4:2C:96:AA:08:32:1D:06:D1:E7:C2:C7:BE:F3:11:4E:C9:2E:F0:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010071
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F49A8E2904D11EFAEB9248D762E951A.roa
Signing time: Tue 22 Oct 2024 08:13:20 +0000
ROA not before: Tue 22 Oct 2024 08:13:16 +0000
ROA not after: Fri 24 Oct 2025 08:13:16 +0000
asID: 136744
IP address blocks: 154.200.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65649 (0x10071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:13:16 2024 GMT
Not After : Oct 24 08:13:16 2025 GMT
Subject: CN=67175e9f-a522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f7:f6:fd:1c:45:51:7d:7c:6f:fc:93:4e:51:
57:69:c2:3d:ae:a3:04:57:c6:10:88:2b:11:5b:fc:
fa:2d:32:ec:a1:b4:b6:d4:79:66:bf:8a:dd:2a:f8:
ef:4f:db:05:b7:a4:13:f8:6f:66:de:3e:ad:04:c8:
2e:07:b1:50:ac:e3:e9:aa:50:a0:20:bd:36:f4:68:
bd:51:f4:04:1a:92:4e:74:50:a1:32:29:b5:60:bc:
a2:68:5f:67:ce:27:8b:a1:23:b5:4f:01:ab:ca:4d:
ef:9d:d0:31:32:fe:90:24:75:14:0e:9c:b5:40:f8:
e4:40:62:cb:c1:9e:3e:ea:1e:82:ee:fe:5f:73:4f:
ab:6d:d4:1a:0f:af:45:dc:9c:9d:09:60:46:70:b1:
a1:5e:27:c6:b0:f8:62:83:ec:b8:a9:ab:e3:ae:c7:
17:dc:45:a2:23:82:ec:13:b6:6f:6e:0c:ba:1f:b2:
86:1a:c0:37:7e:0d:78:51:4b:8c:31:30:0c:dd:43:
e6:20:a9:a6:6e:ed:36:07:b6:48:32:e5:34:f1:1a:
6b:85:a1:a3:ef:f7:3b:d3:1e:3f:0d:7a:42:ec:ed:
04:44:8a:59:8b:1b:69:54:bb:e0:76:7d:79:76:d7:
53:9b:9f:d5:81:9c:0b:25:3a:d6:d4:4f:48:19:f9:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2C:96:AA:08:32:1D:06:D1:E7:C2:C7:BE:F3:11:4E:C9:2E:F0:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F49A8E2904D11EFAEB9248D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.88.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b2:0d:05:3f:f6:55:90:99:ca:76:33:38:44:44:c1:c2:7d:
c1:a3:8f:30:80:77:48:50:2d:d1:c9:5a:e8:b4:19:b4:37:c3:
66:ee:75:59:c4:4d:38:d8:7f:66:3e:79:fd:fb:9d:c2:fc:ba:
62:cf:06:78:ec:a9:1b:ef:ec:65:9e:3e:d9:6a:d7:6f:0a:55:
56:e4:2a:28:1e:1a:20:f1:17:27:e3:12:48:a2:7e:dd:ef:e1:
3e:ef:1a:10:9e:55:f2:e4:36:7c:39:55:21:46:ff:27:96:e7:
73:ed:10:ce:69:4a:0b:cc:3d:92:e0:48:e9:cd:91:e3:01:04:
18:e2:a5:97:a9:a6:d2:a0:a1:29:21:37:ed:61:ed:45:29:c2:
3d:ee:34:1c:b9:bc:ca:7b:c3:7b:d3:70:6f:27:3e:f5:a2:90:
62:0c:3d:c2:22:a6:f4:0f:19:bb:2c:5d:c9:3d:9c:08:d6:7d:
f6:a0:96:5b:a5:e1:24:6d:37:b9:a2:c7:e3:69:e5:b9:18:a4:
2b:b0:85:54:7b:4d:3d:63:de:25:01:1f:67:51:c0:26:34:39:
ab:e4:0c:87:31:2d:b6:09:37:08:12:00:3d:26:ed:9f:6e:85:
89:85:49:7a:78:8a:24:e1:0f:4d:cc:a0:48:1d:9d:11:67:1b:
88:4d:c5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org