Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8689062EB0FC11EE8A1CED58775412E6.roa
File: 8689062EB0FC11EE8A1CED58775412E6.roa (raw, json)
Hash identifier: czqbysA6XDPnAUjei+PoxHrXC/bRnApG7ogUeyQJvtY=
Subject key identifier: B8:3A:C1:F0:FC:F9:C6:74:8B:86:37:57:B8:23:33:3C:38:70:A4:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 746D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8689062EB0FC11EE8A1CED58775412E6.roa
Signing time: Fri 12 Jan 2024 03:41:53 +0000
ROA not before: Fri 12 Jan 2024 03:41:50 +0000
ROA not after: Fri 13 Dec 2024 03:41:50 +0000
asID: 140224
IP address blocks: 154.205.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29805 (0x746d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 03:41:50 2024 GMT
Not After : Dec 13 03:41:50 2024 GMT
Subject: CN=65a0b501-1641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:94:67:b5:7d:48:02:7b:f0:da:2e:23:b1:d1:
d2:33:e6:3c:66:ed:1a:75:c6:1d:23:37:f6:e3:9f:
74:34:42:40:1d:f1:52:4f:69:95:51:2d:11:97:3a:
ee:67:42:9e:b1:96:d2:d4:07:80:17:d3:e6:46:f3:
72:ea:53:fe:1e:5d:66:96:90:f3:c2:02:50:dc:8d:
1c:16:93:ed:8b:35:71:e6:bc:e4:9e:0c:1b:7b:dc:
29:bf:6b:21:f0:90:a9:60:70:8f:f8:9c:84:86:f0:
d0:78:1a:9e:28:1d:55:11:d0:9b:25:a9:63:83:df:
0a:b9:52:9f:9c:6f:2f:92:df:0c:dc:ea:38:37:2b:
c8:e4:fb:ef:72:ed:6f:57:78:7b:3d:8f:7f:14:2c:
6f:e9:01:6a:1a:21:63:50:98:f3:11:0f:1d:e6:af:
60:37:a9:41:70:af:d2:00:5b:ff:a1:9d:5d:46:df:
02:ed:f1:3c:d5:50:5e:2a:c1:f9:10:a3:94:3a:8d:
ca:5a:00:4c:90:ce:1b:85:a9:ac:37:6f:76:04:3e:
3d:cd:63:3c:2a:09:76:6e:d1:09:58:10:34:06:6e:
db:7e:71:f1:84:8c:45:a0:05:8c:00:23:be:29:ff:
a1:07:50:cc:8c:cf:1f:2b:61:e7:2f:6c:f0:a5:d2:
99:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3A:C1:F0:FC:F9:C6:74:8B:86:37:57:B8:23:33:3C:38:70:A4:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8689062EB0FC11EE8A1CED58775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.216.0/24
Signature Algorithm: sha256WithRSAEncryption
31:db:2c:b5:77:0c:7f:58:68:a0:3d:dd:25:c3:f6:94:45:b1:
72:23:66:c7:cc:d3:8c:36:44:35:6d:c8:b6:fc:b5:e8:96:ff:
ee:cc:92:56:21:11:80:b6:73:74:09:28:51:e7:dc:66:15:f1:
62:43:4e:fd:cb:99:61:e8:72:ac:10:ef:86:c3:c8:75:df:40:
fc:da:a9:4a:bc:3c:0d:30:ea:cc:04:ee:a7:63:d8:81:ff:0a:
25:73:8a:f2:67:28:c2:e2:4c:71:c0:ed:6f:28:85:a7:e0:32:
ac:df:96:7d:62:48:d8:cc:aa:c6:4a:af:dc:16:57:d4:ee:c7:
ff:f0:aa:57:0c:7d:d9:e7:23:ee:b9:c5:e4:60:3e:28:d5:45:
0e:19:f4:d7:53:02:88:a6:90:f1:7f:5a:be:8a:b0:b7:2c:b8:
a3:1a:cc:32:cc:a6:85:5c:22:9d:2a:cf:94:34:e1:09:e9:c9:
2f:40:b4:9f:8c:25:7f:54:50:a6:a4:a7:c2:c2:e2:a4:ed:d8:
95:0d:b9:f5:31:ca:e3:6b:90:36:e1:e3:d4:9d:67:35:8f:87:
e6:8f:ed:ca:5a:57:ab:53:0e:4a:9c:25:b5:20:f2:41:41:9e:
33:a9:d2:1c:f3:39:d1:7c:e0:10:d0:ea:c3:d0:15:b9:a7:db:
3d:71:37:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:14 2024 by rpki-client on console-fra.rpki-client.org