Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FBABD6C7ED511EF91FC6769762E951A.roa
File: 8FBABD6C7ED511EF91FC6769762E951A.roa (raw, json)
Hash identifier: Hh/IfwgWRuYWd1/Td3jLC7Bl45uE5fohTKUHS2ahotg=
Subject key identifier: 4C:A5:11:87:17:18:EF:55:F3:4C:74:0D:1A:13:0A:7A:4F:CD:BC:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F597
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FBABD6C7ED511EF91FC6769762E951A.roa
Signing time: Mon 30 Sep 2024 02:41:58 +0000
ROA not before: Mon 30 Sep 2024 02:41:54 +0000
ROA not after: Fri 03 Oct 2025 02:41:54 +0000
asID: 141356
IP address blocks: 154.92.108.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62871 (0xf597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 02:41:54 2024 GMT
Not After : Oct 3 02:41:54 2025 GMT
Subject: CN=66fa0ff6-be64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:68:13:d6:0e:a2:1a:b7:b8:14:eb:47:2d:
4a:3a:bf:3b:0f:2a:01:7a:6a:0d:1f:cd:d7:bd:ce:
87:40:69:36:ff:01:b2:3b:9e:ab:49:bc:78:1c:89:
86:36:c5:dd:62:71:64:33:9a:02:bb:71:05:04:36:
73:6c:3f:37:40:b2:a6:aa:f7:4b:41:40:b0:4c:5d:
f3:75:3d:6a:a7:c3:e4:d1:c2:a8:c4:38:4d:12:b5:
96:14:87:9e:5d:35:3b:ce:52:55:fe:d0:30:06:16:
6b:ec:9c:67:ef:8c:39:3f:83:78:50:e1:92:5e:57:
f1:20:64:0b:5a:0d:f0:34:42:87:9a:e7:28:7c:41:
ca:0b:b2:a0:0e:c8:ff:b4:9c:f5:c1:0b:a9:0f:d0:
ad:9a:af:63:f4:4d:b9:2a:e9:18:1b:99:46:d8:3b:
aa:02:cb:32:f4:9a:c6:6d:e7:5d:af:65:f3:31:56:
d0:af:42:cb:bb:fc:b9:3d:5e:5c:c9:ef:03:7d:9b:
50:2a:92:32:e6:ec:c1:47:96:e3:f1:c0:99:4a:e7:
cd:6e:35:49:79:96:31:32:80:45:d8:85:73:2e:c6:
db:8d:db:53:3f:5a:7c:33:0d:c0:f4:db:77:03:8c:
22:4b:84:8b:f3:29:7b:32:b3:57:d1:c7:45:b0:5f:
58:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A5:11:87:17:18:EF:55:F3:4C:74:0D:1A:13:0A:7A:4F:CD:BC:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FBABD6C7ED511EF91FC6769762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.108.0/22
Signature Algorithm: sha256WithRSAEncryption
75:41:21:1d:55:53:73:e4:05:cc:c3:11:57:94:df:f8:8e:c2:
1a:c3:f3:50:1e:3a:a1:bd:22:5d:65:07:b8:be:67:c4:4f:4a:
f6:f8:02:c0:c1:95:a6:35:ce:31:9f:8c:24:54:66:a5:86:d6:
f7:5b:3e:1b:4e:36:d3:71:20:9b:c5:65:a3:18:c5:77:8e:b7:
ba:f2:bb:93:e9:50:5f:7f:fa:3d:86:db:6e:6a:e3:79:7a:21:
f3:e6:99:da:16:ec:9f:73:fb:08:6e:68:56:c1:ce:75:6d:49:
c4:90:84:50:a3:4d:ed:c7:cf:8b:2b:57:ea:0d:6d:44:82:26:
83:70:95:db:90:8a:31:53:ec:65:b9:42:89:e9:1a:8f:fb:65:
67:cd:8a:e7:c7:76:ec:cd:b0:69:d6:95:56:e0:c7:ff:47:2b:
7e:4e:d3:ce:86:7a:f0:81:92:e4:54:69:df:7c:3b:9f:f8:12:
62:bb:70:62:57:e4:ea:76:50:85:c9:22:e9:8c:44:ce:2e:b4:
26:b9:41:36:4f:ac:f0:3f:f3:43:62:9f:53:e3:67:f2:d2:ec:
26:6d:e3:1b:a2:15:40:df:56:17:cc:e1:8f:d3:e9:6b:ec:64:
fc:b3:a4:93:fb:6b:ba:2a:45:53:37:fa:c3:b6:b4:ff:55:16:
ed:42:da:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 20:18:09 2024 by rpki-client on console-ams.rpki-client.org