Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/866604C4A15D11EF91F86B4E762E951A.roa
File: 866604C4A15D11EF91F86B4E762E951A.roa (raw, json)
Hash identifier: atfSYu/9HuVMyFeVRzs1usD8g5OzaQBoNtDsBP06D/4=
Subject key identifier: E9:1B:25:54:FE:6F:BF:5B:EB:A6:11:95:83:D4:6F:D4:94:F7:58:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010C7D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/866604C4A15D11EF91F86B4E762E951A.roa
Signing time: Wed 13 Nov 2024 01:20:53 +0000
ROA not before: Wed 13 Nov 2024 01:20:49 +0000
ROA not after: Sat 12 Jul 2025 01:20:49 +0000
asID: 55967
IP address blocks: 154.85.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68733 (0x10c7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 01:20:49 2024 GMT
Not After : Jul 12 01:20:49 2025 GMT
Subject: CN=6733fef5-1a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c6:53:5c:c7:83:13:c8:27:f5:8a:c0:fb:b5:
f1:4e:9e:6b:b2:13:e0:47:bf:8c:ad:39:47:c8:8a:
d7:5f:d8:8c:81:2e:f3:52:bd:26:9f:d3:fc:76:aa:
44:ab:89:88:08:a8:70:7d:e6:0f:11:ba:11:94:14:
08:89:48:af:3f:97:98:0c:33:46:d2:05:83:ad:2e:
6f:9a:78:ef:a6:b2:93:7c:04:ac:e2:05:d5:95:86:
37:c2:b1:38:91:52:8a:7e:fc:da:dc:5d:cc:ee:02:
c1:93:83:20:77:13:b6:8c:d9:ca:c2:f0:0a:ce:74:
22:3e:b8:2f:ed:e3:f6:99:a7:77:e4:e6:a1:9b:4d:
f2:8d:90:17:ea:86:68:23:17:ab:c1:06:17:ba:8b:
39:a6:3b:2f:47:44:30:8f:56:a3:a8:0e:2e:a2:53:
8a:20:d9:43:01:c0:3f:57:c1:9c:71:c8:13:81:6f:
22:71:ce:0a:25:3e:03:01:95:2b:ea:b3:60:78:b2:
00:ae:56:fe:45:de:16:f6:bc:d2:3c:5a:99:0c:99:
ac:bb:5c:d2:5e:83:10:4c:55:b7:15:b9:4a:a9:d1:
0d:24:4c:08:56:09:d0:4d:8a:08:24:37:e0:00:2d:
69:1f:21:56:ee:7e:09:21:0e:e6:b0:1a:da:40:92:
75:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:1B:25:54:FE:6F:BF:5B:EB:A6:11:95:83:D4:6F:D4:94:F7:58:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/866604C4A15D11EF91F86B4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.56.0/21
Signature Algorithm: sha256WithRSAEncryption
d3:9c:09:4a:87:a3:84:a0:60:32:c9:5d:1b:74:c9:c3:a9:fd:
2f:4f:3c:40:a5:9b:50:84:d2:ee:2f:15:00:a8:63:ab:5c:41:
46:da:7e:cd:ab:24:20:79:af:f1:bb:f4:bc:e3:54:61:44:d7:
ab:9e:c5:74:10:9a:60:18:5d:cc:02:c0:44:22:23:a1:a2:e0:
bd:2c:24:57:bb:41:b3:25:1f:4d:bf:9f:76:47:7e:21:ab:7f:
06:c8:e8:cd:86:11:ef:45:3a:c6:6b:d8:d8:ef:27:8b:d4:ea:
c7:b0:82:1e:53:65:ce:54:d4:2a:fc:d1:d4:f0:e8:1a:5d:58:
36:e2:14:dc:24:5a:0b:a9:17:ff:3f:70:02:4e:52:b0:7e:45:
97:7f:45:8e:60:77:f8:28:78:7f:fe:f1:9e:16:03:d3:cc:22:
55:b6:da:ae:b5:4d:4a:1b:e0:26:f2:3a:a8:44:db:2e:72:58:
24:f5:13:1b:43:9e:0f:a7:0d:47:4e:cd:ad:e4:d0:0f:93:7b:
f7:79:34:e9:7f:42:69:f5:ba:7c:b5:93:66:d2:57:2b:b4:5f:
3e:ca:eb:e9:99:80:25:60:05:fa:ef:ac:58:c7:63:30:d9:ee:
8f:a6:73:28:6d:c5:24:11:71:be:de:8f:f7:27:54:a9:0b:67:
7f:83:64:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:21 2024 by rpki-client on console-ams.rpki-client.org