Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8406B20C95DA11EF83BA8784762E951A.roa
File: 8406B20C95DA11EF83BA8784762E951A.roa (raw, json)
Hash identifier: GpIaWQm3j0aP3H6iAWMJ0jZxJoSfO65DYFu5QbkHL4U=
Subject key identifier: 88:A9:77:03:10:D9:3E:40:49:39:2D:3B:87:68:83:38:A0:6C:4B:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010392
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8406B20C95DA11EF83BA8784762E951A.roa
Signing time: Tue 29 Oct 2024 09:45:22 +0000
ROA not before: Tue 29 Oct 2024 09:45:19 +0000
ROA not after: Wed 04 Dec 2024 09:45:19 +0000
asID: 214808
IP address blocks: 154.83.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66450 (0x10392)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 09:45:19 2024 GMT
Not After : Dec 4 09:45:19 2024 GMT
Subject: CN=6720aeb2-1be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:ec:9f:79:48:37:41:7e:58:f4:bc:ee:80:
64:a7:57:42:da:a7:da:f8:ed:f9:8a:da:3b:cb:41:
bd:0c:3c:71:3f:16:6e:42:e7:f1:1a:93:97:32:d0:
67:69:2a:97:3a:c6:25:f5:4c:3e:28:ae:f7:76:b2:
84:c2:53:2a:9b:68:bd:7e:43:32:03:89:24:67:3b:
14:d5:ea:32:dc:e1:5f:ee:23:cd:63:dd:a0:4a:5f:
63:a9:1c:32:06:5a:74:1d:36:d5:4d:b1:9f:c7:c0:
ae:9a:ef:3a:a7:e8:59:0a:26:b0:73:8f:46:c9:51:
e5:31:37:65:4d:2b:35:d0:79:47:53:c8:66:c7:bf:
b6:00:a6:37:1d:90:db:fd:9c:74:98:ce:d5:23:2d:
05:28:df:86:43:d5:a7:7e:bb:9f:78:4f:99:41:23:
e6:23:30:b2:5c:b5:7a:c4:f0:e0:71:bc:29:4d:99:
6c:25:30:52:36:42:1e:bd:e2:bb:e5:b1:89:10:a0:
cc:fe:b6:6d:68:7b:d5:05:40:ae:1f:c7:f0:9b:a7:
c5:18:f1:41:58:dc:57:17:1a:47:db:ad:06:2c:65:
bf:3c:7e:12:95:22:25:a8:11:3f:a9:81:a3:f4:8c:
ce:97:41:83:0d:15:5b:50:a2:9a:12:cd:07:42:5b:
ea:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A9:77:03:10:D9:3E:40:49:39:2D:3B:87:68:83:38:A0:6C:4B:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8406B20C95DA11EF83BA8784762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
51:8d:ca:96:38:02:f2:bb:6c:ad:55:17:69:5b:26:aa:25:00:
5a:26:a8:a9:0a:df:da:9e:79:c5:1e:87:19:e6:a8:c0:fb:47:
bd:ab:4e:53:d6:bb:c2:b5:d6:2e:1a:90:33:0f:9a:3a:72:8d:
71:57:97:41:20:fb:19:2c:5f:a7:9f:4e:7c:b5:6a:42:12:69:
41:e9:c5:30:4f:da:5a:19:d1:0c:45:91:c4:e8:57:97:f3:7e:
cd:c0:4e:cc:e5:4a:93:0f:78:f5:82:16:c9:03:95:49:fe:8f:
82:b9:07:4b:72:1a:69:e8:55:13:d9:da:d5:19:23:f2:18:dd:
da:f9:b6:ad:5f:dd:45:75:5f:61:71:20:d6:b3:48:42:a2:cf:
b8:1c:2b:43:48:47:41:e6:67:b5:eb:b9:db:57:b3:d2:b1:ab:
c1:81:5f:18:a3:50:7e:41:10:7a:58:7d:73:66:b6:f6:e0:a7:
9c:fd:73:a9:bc:65:73:08:74:68:30:ce:06:92:8c:6d:07:e6:
fa:2c:44:fc:7a:f4:cd:ea:f1:1f:db:79:de:75:b4:db:ad:7f:
21:0b:eb:d9:ac:08:a0:c2:09:70:2c:19:b0:90:19:67:63:7f:
ac:40:4b:7d:5a:15:57:e9:fd:32:5b:dd:1a:77:df:96:ad:27:
6d:29:7a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:21 2024 by rpki-client on console-ams.rpki-client.org