Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81BE66E0A44211EF8A756E6D762E951A.roa
File: 81BE66E0A44211EF8A756E6D762E951A.roa (raw, json)
Hash identifier: R2/IzMA9BdF1N12qpaCIEJTkeFgu/P60d5IjkFPheco=
Subject key identifier: C6:D6:08:A0:EA:66:80:FD:06:11:27:B2:4A:67:8F:DD:05:A2:86:92
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DCD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81BE66E0A44211EF8A756E6D762E951A.roa
Signing time: Sat 16 Nov 2024 17:45:02 +0000
ROA not before: Sat 16 Nov 2024 17:44:59 +0000
ROA not after: Sun 12 Jul 2026 17:44:59 +0000
asID: 55967
IP address blocks: 154.85.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69069 (0x10dcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:44:59 2024 GMT
Not After : Jul 12 17:44:59 2026 GMT
Subject: CN=6738da1e-e45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:80:df:ff:2f:15:12:95:26:e6:d1:dc:15:90:
26:f1:5a:9a:ce:4f:9f:5f:e3:22:f0:22:94:47:95:
69:24:13:2a:d2:73:72:b8:6f:de:f1:f9:08:43:ba:
05:ae:57:8d:78:57:12:b7:aa:f4:1b:7c:35:c7:a4:
4e:9b:37:9d:52:7a:e0:6d:62:0c:36:ca:c3:58:0b:
8a:d2:15:94:9b:39:57:66:e7:6a:72:3e:2e:ec:dc:
7e:ef:c7:24:c1:f9:14:54:95:8b:1a:59:3d:b0:17:
ad:39:8d:3b:2a:69:0e:6e:6e:a9:03:0a:0f:08:3b:
ba:b0:60:45:6e:95:2e:28:0d:96:81:4d:1e:3c:78:
23:09:07:5c:9a:03:20:6c:05:93:97:cc:49:a2:11:
9c:83:bf:d0:61:4e:ab:65:b9:55:f5:06:ea:c7:4b:
b0:a4:2a:de:53:87:84:5f:dd:15:99:0a:f4:48:77:
a3:65:fd:30:8a:ea:fd:94:03:31:ea:04:11:5d:d5:
f2:55:ff:40:26:14:88:d5:36:92:98:8c:fa:7d:94:
2a:38:94:4f:62:e9:87:29:de:7c:c7:fb:19:8e:ce:
ae:bd:20:36:b5:01:1d:29:12:cf:5c:1b:c4:78:18:
66:33:3f:a0:b9:10:2d:90:43:ec:b5:a9:a8:7f:ef:
56:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D6:08:A0:EA:66:80:FD:06:11:27:B2:4A:67:8F:DD:05:A2:86:92
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81BE66E0A44211EF8A756E6D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.56.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:af:62:b6:4c:02:0a:d8:37:94:11:07:00:c9:59:a6:98:70:
47:13:a1:e0:eb:ef:8e:ac:6f:2d:b4:11:91:39:44:50:03:b5:
09:e2:d8:c3:17:ef:eb:a6:64:c1:e3:29:e7:b0:88:83:19:27:
d1:53:7a:b9:a4:e4:43:22:2e:35:2a:a3:9d:f0:6a:dd:dc:4b:
00:c7:76:55:0e:bb:6c:dc:33:cd:11:20:0c:87:59:e3:5d:4e:
bf:0a:c9:02:0f:e7:a9:01:54:df:a4:a6:dd:d6:a4:41:7d:d7:
c1:0f:72:f5:41:01:64:04:ec:c6:b3:df:c1:25:a0:32:91:d4:
df:ef:aa:6e:ca:8b:96:9b:bf:a6:39:d6:7a:84:4c:16:98:5e:
b9:2b:3a:40:c0:6d:60:ba:48:59:35:46:aa:eb:56:c3:43:2d:
bf:41:c7:21:44:a8:43:c3:1a:7b:cb:07:15:d1:69:40:19:38:
34:63:72:32:6d:f1:06:0b:74:ac:04:9e:fd:2d:08:c8:0a:92:
29:b1:61:78:bd:b6:4a:16:f9:bb:6d:60:b3:e6:3e:da:45:4f:
af:30:20:7a:28:62:72:69:6d:f0:9c:e0:0f:db:56:8f:6a:4b:
4e:83:92:ee:a4:95:1b:1b:2c:65:db:b9:18:21:d4:58:cb:33:
4d:c3:dc:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:20 2024 by rpki-client on console-ams.rpki-client.org