Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/817C2130B10011EEB8B1DE5F775412E6.roa
File: 817C2130B10011EEB8B1DE5F775412E6.roa (raw, json)
Hash identifier: Hl+CqboJHp1gVugeL2rwSimNlIaU1bpJahQYhehl2zc=
Subject key identifier: 01:CA:56:6B:4B:EF:7C:FB:A9:48:DC:E6:A0:1F:94:B4:E8:CE:16:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 748F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/817C2130B10011EEB8B1DE5F775412E6.roa
Signing time: Fri 12 Jan 2024 04:10:23 +0000
ROA not before: Fri 12 Jan 2024 04:10:19 +0000
ROA not after: Fri 13 Dec 2024 04:10:19 +0000
asID: 140224
IP address blocks: 154.205.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29839 (0x748f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 04:10:19 2024 GMT
Not After : Dec 13 04:10:19 2024 GMT
Subject: CN=65a0bbae-6d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:52:19:0f:3b:10:82:56:96:29:e2:95:af:14:
ff:3e:c9:37:8e:ec:01:5e:2e:ce:19:50:0e:98:e7:
6b:ea:b1:b8:b0:cd:41:6c:aa:5a:21:17:d5:82:24:
47:46:11:1b:3e:ce:a8:8a:f7:15:67:b8:d5:fe:6a:
ee:a2:6f:70:8a:3e:44:ce:2f:f3:cb:38:52:93:6c:
b2:32:73:33:ad:09:7e:95:00:fb:35:08:db:0b:5f:
89:a7:39:69:9a:8a:a4:27:9f:4c:8c:00:5e:ef:7b:
75:c9:4b:f0:05:47:b7:a7:1f:cb:b3:d2:ba:55:0e:
1b:d1:4f:c6:65:39:5a:56:a8:62:8a:6b:3a:82:8c:
98:9b:ff:03:7f:7a:95:5c:51:e2:da:1e:bf:5c:e9:
3a:b0:11:19:ae:af:91:74:52:0c:c9:c5:72:1a:c7:
be:42:f2:dd:f8:a9:40:25:bd:73:32:1b:3f:93:02:
07:e4:8a:8c:5e:84:a3:f2:4e:50:06:39:d1:9b:f4:
44:4d:6b:93:17:30:cc:27:47:81:6b:55:d4:61:7a:
5f:5e:7f:fe:8c:dc:7d:82:8e:b8:0c:9c:90:c3:ba:
60:38:5b:4e:a7:9a:4c:8a:8f:46:2d:a4:e1:50:64:
92:2f:f6:45:19:d0:ec:9e:f6:27:d9:35:dd:3e:ff:
2b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:CA:56:6B:4B:EF:7C:FB:A9:48:DC:E6:A0:1F:94:B4:E8:CE:16:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/817C2130B10011EEB8B1DE5F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.210.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d6:14:c9:6b:54:58:23:33:96:b1:ad:75:a1:0a:fd:61:37:
8f:b2:ab:22:54:83:45:d2:0f:ad:22:eb:db:a5:fa:10:b6:31:
1d:3c:dc:a6:71:d7:4f:42:8f:f2:15:52:a8:06:6f:6b:d7:76:
a2:8c:d6:fa:11:06:ab:e9:4e:31:26:86:da:1f:b2:c5:cd:1b:
28:94:29:e0:db:f7:f4:02:ec:b5:3e:7a:fb:6d:67:81:6f:59:
cf:ce:13:a2:c0:44:47:f6:30:f6:4b:39:6b:28:a8:9b:65:93:
a8:96:48:4c:50:36:0a:d2:43:c7:23:6d:8f:64:0d:8c:a3:3a:
8d:ee:05:08:02:38:ce:64:b4:f7:65:a6:82:b4:32:45:0c:e4:
95:c4:2a:11:85:be:d7:64:69:e7:fb:fe:a1:2b:7c:cb:8b:f1:
8b:25:7a:b7:5e:5e:f7:c5:55:2f:3a:71:c3:a7:28:b6:3e:06:
ba:af:0a:8a:fc:28:b8:dd:b4:70:f3:c9:04:64:75:30:96:0f:
ec:e5:85:df:26:3d:e5:74:55:18:f8:c0:83:9b:68:76:0a:05:
13:8c:01:b4:d7:ac:69:0b:9d:b5:09:1d:ae:f6:fb:9d:d9:b8:
19:64:4c:a2:e2:bb:33:64:0f:04:86:97:af:72:78:a4:ba:a9:
a9:64:0e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org