Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E3EDF9EA73A11EF9C748299762E951A.roa
File: 8E3EDF9EA73A11EF9C748299762E951A.roa (raw, json)
Hash identifier: 8FrPitXoihYT9eGI9kt/VTJHcry68CvA9bDIKcHixNc=
Subject key identifier: 20:25:E0:C7:CD:66:59:98:90:7F:68:00:81:2E:09:84:66:22:8F:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F9D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E3EDF9EA73A11EF9C748299762E951A.roa
Signing time: Wed 20 Nov 2024 12:25:41 +0000
ROA not before: Wed 20 Nov 2024 12:25:37 +0000
ROA not after: Fri 29 Nov 2024 12:25:37 +0000
asID: 5065
IP address blocks: 154.90.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69533 (0x10f9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 12:25:37 2024 GMT
Not After : Nov 29 12:25:37 2024 GMT
Subject: CN=673dd545-1cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a5:90:ea:39:a8:d6:7e:0f:41:3b:c3:53:b8:
31:c6:e0:ea:2c:97:92:56:da:30:73:f0:cc:2c:9b:
5d:bb:1e:61:51:89:3a:0b:57:ce:0e:17:c2:91:d7:
ea:98:77:3d:8c:95:f9:0e:25:6e:7c:60:a5:90:28:
01:eb:3f:b1:4a:b9:71:95:0a:3a:8f:e1:7f:97:a9:
b2:27:d2:1c:a5:05:0d:25:dc:74:13:cc:57:68:0a:
8f:45:59:42:12:3d:95:7a:59:f1:93:87:71:0c:22:
e0:58:15:5a:50:3d:ad:71:e0:bf:61:cd:bc:62:2f:
86:27:fd:d8:68:ab:66:50:2a:22:aa:b9:4d:53:3b:
ff:68:8c:2c:40:1b:c0:6d:23:e3:e7:85:77:27:81:
4c:55:ea:07:07:f3:ea:80:00:e8:0c:5b:40:94:81:
03:8b:76:e5:6c:6e:94:07:68:b4:54:5d:a7:49:94:
2f:e9:70:03:5a:64:47:c5:a1:98:d0:f7:2a:69:86:
11:9e:94:75:d6:e6:81:11:a9:19:86:bf:b8:38:97:
d1:80:34:f7:a3:8b:93:08:fc:bc:42:3c:81:9c:6f:
c3:6d:a4:e5:9e:df:a5:ca:b5:3c:23:11:06:93:a2:
a3:22:13:5a:00:5d:d5:62:6e:30:a7:bb:21:c7:dd:
39:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:25:E0:C7:CD:66:59:98:90:7F:68:00:81:2E:09:84:66:22:8F:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E3EDF9EA73A11EF9C748299762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.24.0/22
Signature Algorithm: sha256WithRSAEncryption
71:5d:69:54:f6:4a:23:29:32:b0:65:25:3e:98:42:d2:c5:63:
e6:57:80:b8:be:c2:34:ba:4d:3a:1d:8b:9c:c6:e9:38:84:fe:
a1:9a:b5:1b:8f:4c:21:be:9b:f9:10:da:da:85:a6:99:ce:f7:
3a:24:21:f1:88:cb:c3:9c:b9:3c:20:42:cd:4f:03:23:89:80:
a1:00:b3:b4:ce:34:29:0c:6a:4e:99:55:e8:06:61:8b:7c:5e:
e4:28:88:f7:84:eb:be:7f:5d:22:78:72:f5:98:f1:85:f6:9c:
6d:e2:59:4c:3d:c2:86:a7:cc:fa:51:7f:0c:7b:42:00:84:57:
0f:45:ce:5a:95:31:8e:42:a5:41:1d:94:8c:7b:5c:26:ea:eb:
33:50:c4:f3:0b:7b:d1:e6:44:5e:b8:87:4f:87:57:66:65:1f:
27:31:13:c3:67:17:e1:0f:91:58:15:3b:a4:27:23:53:ff:5a:
34:0f:3a:c5:24:86:69:bc:72:2c:3a:fc:0e:4e:1a:bc:4e:29:
b4:a4:3d:cf:8a:f4:0a:56:8e:51:25:19:ab:44:56:bc:e8:d2:
f3:a0:c5:79:d5:5a:b3:a2:5b:ad:e3:f1:cb:8f:96:74:6d:d7:
e9:cf:4a:0b:97:cf:e2:2b:4e:83:d8:ea:5d:e4:5f:8f:2e:46:
be:27:7a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:51 2024 by rpki-client on console-ams.rpki-client.org