Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E5DCEFEA8BB11EF8A51B691762E951A.roa
File: 8E5DCEFEA8BB11EF8A51B691762E951A.roa (raw, json)
Hash identifier: olMW0lB6HEBOryKMNErhgahF90v7mF7yirmTZvI7jlc=
Subject key identifier: 0E:05:3D:5A:38:9D:59:AE:86:33:FC:26:E3:16:43:8D:3C:6C:5C:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E5DCEFEA8BB11EF8A51B691762E951A.roa
Signing time: Fri 22 Nov 2024 10:21:37 +0000
ROA not before: Fri 22 Nov 2024 10:21:34 +0000
ROA not after: Fri 27 Dec 2024 10:21:34 +0000
asID: 18779
IP address blocks: 154.206.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69625 (0x10ff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 10:21:34 2024 GMT
Not After : Dec 27 10:21:34 2024 GMT
Subject: CN=67405b31-6d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:bb:0e:ea:cc:f2:b5:ce:35:76:3d:fa:bd:ae:
f8:61:8d:97:d9:e0:9b:e0:9c:74:c7:37:89:a4:0e:
04:73:a2:bd:c9:3e:38:dc:17:94:39:1a:8b:96:1b:
5d:0f:25:c7:4c:37:26:6c:7f:bf:98:40:3a:6c:6a:
aa:e3:8e:59:83:07:49:42:90:e2:cd:b6:90:d3:3d:
13:3a:c6:9e:a1:89:73:d5:f1:5d:36:81:bc:ba:94:
b8:64:00:d1:c3:17:82:92:98:f6:aa:18:0d:35:38:
9e:30:38:fb:0a:a5:dd:c3:bf:1d:8e:39:b6:32:75:
a3:f8:57:7a:66:c7:c7:65:9a:6f:a8:c6:67:76:86:
0c:fd:8c:a2:75:79:76:2e:47:22:7d:51:df:5f:82:
9f:07:13:d2:f8:f9:08:65:ff:a4:2d:df:34:8c:5e:
e5:39:46:a2:52:23:82:cf:37:57:e1:35:ee:5d:31:
02:89:c9:23:a7:aa:28:38:b9:8a:6f:4b:c1:b8:2d:
fe:ce:2f:b9:8b:be:5a:ef:1b:7f:61:68:a5:32:ce:
4d:d5:a2:c4:10:1d:fb:7f:ab:fc:30:35:f3:bd:d7:
b8:9b:61:24:96:09:06:fd:72:b1:ee:0e:7f:7c:4a:
02:f5:31:e1:41:f2:d0:34:18:04:6c:94:58:4d:43:
a1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:05:3D:5A:38:9D:59:AE:86:33:FC:26:E3:16:43:8D:3C:6C:5C:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E5DCEFEA8BB11EF8A51B691762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.20.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:62:2b:c2:64:7d:65:b5:7a:11:14:13:a3:0b:99:3c:14:59:
21:8c:95:03:c7:8e:4c:e2:55:3b:79:03:0d:1e:80:2b:5a:24:
d1:83:8c:f5:03:67:6b:1f:4b:44:17:7e:04:41:66:ce:e2:e1:
59:bb:86:eb:cb:e7:78:53:b4:1b:ba:cd:3a:6a:75:b8:f1:ed:
12:b6:50:d7:db:0a:7b:10:44:9a:2e:9c:40:3e:93:e9:77:35:
12:6e:12:6f:e7:c9:40:01:c6:98:34:ec:f4:a8:1e:c3:72:18:
45:51:06:53:09:78:c9:79:58:f8:36:ed:6e:74:c3:00:0c:c2:
0f:8a:c4:ec:00:b1:a8:2f:59:cc:b5:ae:a1:c0:3e:42:46:3c:
e4:b4:70:6d:44:84:e2:92:cc:87:d7:8d:31:61:f3:d9:b3:13:
0b:e8:58:c7:34:1b:4c:7f:04:a6:c3:65:d4:a5:b0:26:df:7a:
35:05:ee:92:73:17:0b:e4:81:e1:14:af:be:a7:35:de:81:1b:
3a:d9:98:65:52:5f:1b:20:ea:d0:13:e5:73:04:63:f9:34:6d:
f6:90:e4:63:d7:8f:13:cf:06:2b:d5:85:0a:d6:d6:0a:bc:5b:
2f:5e:9d:f8:f4:63:6e:5d:8b:44:06:93:4c:bb:7d:dd:0f:00:
1a:9a:f7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:23 2024 by rpki-client on console-ams.rpki-client.org