Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D5B20B0A8DE11EF98327F6C762E951A.roa
File: 8D5B20B0A8DE11EF98327F6C762E951A.roa (raw, json)
Hash identifier: OY25FAGqPLl8vIVjPtcF0Fnl06l1BogBLf/fGRCupc0=
Subject key identifier: 02:5F:BB:04:D5:EE:AB:98:56:E2:EE:46:37:3C:92:7F:B9:2D:D1:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011075
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D5B20B0A8DE11EF98327F6C762E951A.roa
Signing time: Fri 22 Nov 2024 14:32:08 +0000
ROA not before: Fri 22 Nov 2024 14:32:04 +0000
ROA not after: Tue 03 Dec 2024 14:32:04 +0000
asID: 197547
IP address blocks: 154.201.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69749 (0x11075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:32:04 2024 GMT
Not After : Dec 3 14:32:04 2024 GMT
Subject: CN=674095e8-08a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7d:ca:ca:16:db:cf:95:96:df:b3:1c:6a:7c:
dc:46:2d:ab:3e:30:46:d5:4b:95:55:a5:16:e0:ce:
46:c4:62:c1:50:cc:a3:d0:bf:b5:35:ae:e0:db:43:
80:56:93:60:ba:b9:24:83:52:fc:91:c7:93:d6:17:
55:f7:d5:9c:33:e1:56:cd:22:48:ce:37:66:1a:d5:
c3:64:77:10:43:8e:6e:e5:d2:b3:43:c1:8e:0e:2b:
a1:76:c1:b7:13:f6:b6:20:39:1d:81:a0:d4:61:02:
69:84:04:ae:e3:f2:8f:7d:c6:7f:18:cf:b4:4b:3c:
38:ac:2c:14:4e:e0:b5:b1:f3:d2:ce:6b:c7:9c:94:
85:cc:f8:81:37:11:82:15:0d:90:5a:07:91:ae:d9:
17:dc:41:86:9d:73:0c:51:88:36:50:6c:91:6f:25:
bd:1b:ae:93:55:4a:04:74:f3:22:4c:1f:47:02:5a:
3e:8d:a5:a7:16:73:e4:c7:dd:5a:d5:bc:05:e0:cf:
82:a9:4e:ef:e6:ea:fd:f8:7f:6d:a8:3f:49:e7:ac:
bb:cb:91:bd:61:4f:63:18:d1:97:86:8d:1d:c9:53:
bd:34:be:24:2c:11:de:86:0a:1b:1e:2d:ef:4a:86:
ba:dd:d8:a6:1a:f6:62:d0:09:e5:aa:5f:60:b0:02:
66:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5F:BB:04:D5:EE:AB:98:56:E2:EE:46:37:3C:92:7F:B9:2D:D1:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D5B20B0A8DE11EF98327F6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.93.0/24
Signature Algorithm: sha256WithRSAEncryption
af:8f:91:62:20:e8:8d:c5:db:9c:c5:01:df:16:ba:bf:81:f4:
9f:c6:46:1f:84:ef:f1:28:af:a4:9c:0b:16:50:b4:c3:9e:94:
40:62:28:db:c8:21:76:33:e1:07:5c:b5:52:65:e8:a3:e1:71:
f1:b2:43:ef:cd:ad:55:5a:d2:08:b8:0c:6c:7a:6b:5b:2b:17:
1b:f7:65:b1:e4:1f:d5:bd:b9:d9:79:8e:7b:24:57:16:13:9b:
b8:a6:a7:6a:82:1b:80:34:11:76:b4:ea:27:b0:6b:91:e9:96:
fc:5e:73:3c:00:40:76:fd:d1:86:70:49:66:7e:69:f9:a3:1f:
5d:e7:f2:c8:92:86:9b:1f:90:03:4e:3e:16:d6:12:00:21:d2:
ea:b8:af:4b:bc:43:7c:a4:8b:88:97:a2:71:ff:f2:7d:b1:18:
f8:ba:66:97:e6:88:1e:59:75:11:b0:fa:ba:95:04:04:f5:72:
4c:5e:4d:87:73:4d:0b:bc:59:5c:e2:79:8c:00:5e:3b:42:a3:
35:85:59:c2:1a:20:76:7d:04:4d:f4:22:59:29:19:b6:50:93:
9f:f0:3e:eb:e7:4e:3c:d3:b2:f6:64:cd:5c:31:fe:8b:8a:dc:
81:05:bf:91:6d:35:d4:e2:ae:19:38:e3:0c:69:78:00:83:e5:
1c:0c:79:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:23 2024 by rpki-client on console-ams.rpki-client.org