Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EEFE810911F11EF8F3274B6762E951A.roa
File: 8EEFE810911F11EF8F3274B6762E951A.roa (raw, json)
Hash identifier: dzv3yUOwOdc44rHSb1hrKtbo+AH9KBTOqMuFM7DNVUQ=
Subject key identifier: 63:53:68:FA:BF:60:02:DA:DD:19:9E:E3:95:EB:23:16:10:CF:C6:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EEFE810911F11EF8F3274B6762E951A.roa
Signing time: Wed 23 Oct 2024 09:17:00 +0000
ROA not before: Wed 23 Oct 2024 09:16:56 +0000
ROA not after: Tue 26 Nov 2024 09:16:56 +0000
asID: 8796
IP address blocks: 154.201.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65778 (0x100f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:16:56 2024 GMT
Not After : Nov 26 09:16:56 2024 GMT
Subject: CN=6718bf0c-927c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:39:28:fb:ae:05:ae:e5:a1:1e:ce:39:42:c0:
a3:b7:08:0d:e6:fe:30:15:5c:0a:4d:26:57:1e:b4:
ad:9f:20:e1:c7:ee:b2:dd:2c:a7:5d:4a:80:8e:c5:
7a:80:5d:86:4c:b2:ff:4b:e0:dc:ba:b1:6f:85:80:
36:35:a9:7c:44:07:80:ae:e2:c8:31:11:5b:16:02:
69:de:53:d7:ff:b7:5c:22:24:74:6c:7b:23:ae:e1:
f0:4b:69:d3:5a:0b:4e:9a:00:bd:78:f3:10:43:81:
f6:8a:d1:6e:aa:a2:76:62:e5:51:95:c3:dd:3a:00:
2f:3a:17:5c:fe:6c:a9:03:4f:3d:7f:9f:7d:8d:79:
d1:20:1f:ae:d7:18:49:6a:3c:27:ac:45:37:41:f2:
ff:b3:fd:19:88:40:69:d8:46:3d:ef:8a:6f:fe:8c:
d7:37:39:3f:3c:c0:31:b3:b6:95:e2:49:80:25:c5:
93:06:c3:64:34:e3:81:e2:c4:bc:9c:ad:ec:78:6b:
f6:43:52:3f:53:2d:a9:b9:ef:cc:a4:cc:5d:da:a2:
85:fa:06:d3:06:15:f8:7a:41:f7:88:03:3d:49:fb:
73:3d:e6:dc:81:d2:b8:ff:e7:24:be:2e:32:48:1b:
49:7f:f9:cc:0f:51:96:3c:1f:27:7a:b6:12:e0:2e:
97:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:53:68:FA:BF:60:02:DA:DD:19:9E:E3:95:EB:23:16:10:CF:C6:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8EEFE810911F11EF8F3274B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.92.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:8b:f2:86:60:8f:8a:d2:93:c4:f9:f7:03:b0:87:b8:c7:b0:
41:b4:7c:94:7b:2b:c3:d9:7a:2c:e3:6c:7f:2e:dd:71:71:05:
fc:67:c0:81:57:e7:af:bf:2d:d2:80:bd:f7:25:eb:8f:0f:e2:
77:1a:94:d4:50:4c:03:6f:5c:fc:1f:23:35:db:5f:59:db:77:
02:28:e0:f1:0f:d8:2e:b0:d5:06:c3:06:eb:72:90:76:ff:8b:
b4:ac:9a:98:64:cd:af:6b:77:fe:9b:1b:9d:38:25:73:b4:f9:
74:16:82:3a:e3:6f:d6:38:3a:2c:91:5d:30:44:0d:de:7e:1d:
77:de:e6:f2:1c:d8:25:48:58:73:e7:d3:b0:4c:70:97:7a:1d:
64:80:30:61:82:14:73:91:da:aa:50:46:4b:de:3c:13:a5:76:
22:be:6b:48:fe:80:96:f1:f2:e6:d3:5f:5b:b8:08:d1:67:5c:
50:03:03:53:fb:77:a5:c7:10:5c:b2:1d:c4:bf:a5:7f:ca:d3:
4a:25:cf:0d:2e:51:2d:21:38:4d:2a:b5:ca:3b:16:a8:7a:47:
8d:1d:ec:26:3f:52:09:1b:0f:b5:04:d2:47:7b:aa:e9:1c:d2:
d3:2f:79:3c:5d:ff:b9:a6:f6:b4:5c:da:4d:77:ee:78:bc:31:
30:aa:a5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:14 2024 by rpki-client on console-ams.rpki-client.org