Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92FBE1DCA33211EFBBF28150762E951A.roa
File: 92FBE1DCA33211EFBBF28150762E951A.roa (raw, json)
Hash identifier: G6fe8BRU+7nV4lDN9RzVKVbllwenRKDlikJKHPdQ97w=
Subject key identifier: C2:EC:86:F8:3A:BC:BA:30:27:7B:48:D0:A1:78:34:FB:EC:21:3C:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D7C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92FBE1DCA33211EFBBF28150762E951A.roa
Signing time: Fri 15 Nov 2024 09:18:28 +0000
ROA not before: Fri 15 Nov 2024 09:18:24 +0000
ROA not after: Sat 17 Oct 2026 09:18:24 +0000
asID: 137443
IP address blocks: 154.205.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68988 (0x10d7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 09:18:24 2024 GMT
Not After : Oct 17 09:18:24 2026 GMT
Subject: CN=673711e4-2683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f7:1e:d8:ab:94:c8:53:5b:b0:03:de:1f:e6:
0f:b4:cb:08:b7:9d:b5:2f:f0:2a:68:5b:97:e4:8c:
39:18:dc:22:70:62:1c:36:72:58:f9:86:ea:2a:51:
16:ab:38:87:8d:e3:1d:76:06:e6:d4:a9:06:7c:76:
9c:a1:6e:25:3e:ea:8a:b3:12:f4:90:5a:e9:d8:1d:
14:48:47:2e:1d:c4:40:c0:20:38:44:cf:75:bf:c9:
65:20:bb:d7:d7:2e:12:bd:09:56:78:d6:8e:5c:28:
43:ff:fb:96:44:0d:ae:d4:27:3a:40:04:06:14:af:
63:0c:17:9d:ff:31:e5:96:a2:c1:3a:74:fa:bd:84:
63:b6:19:ee:81:c2:28:cb:62:b6:d7:37:ab:c3:5c:
90:af:a6:ad:72:10:69:19:ba:be:f3:2c:05:4b:9f:
e0:74:52:8b:1d:9e:ab:6b:bf:00:04:6e:5d:1a:f6:
6f:5c:2e:71:38:ea:7e:38:24:29:4e:0f:bb:7c:83:
eb:97:d2:cc:a6:6f:2b:94:a0:a9:9f:2d:88:c2:8c:
6d:b8:7d:bb:23:e8:5a:65:a2:ce:86:d6:e1:03:b9:
2c:4e:eb:db:c9:a2:05:5e:c4:d6:3b:48:cb:1e:cd:
69:80:64:0d:a8:8c:1e:7e:51:35:b2:bb:d5:42:f1:
83:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EC:86:F8:3A:BC:BA:30:27:7B:48:D0:A1:78:34:FB:EC:21:3C:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92FBE1DCA33211EFBBF28150762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:c8:87:b3:c1:4e:6e:de:00:ce:2f:08:4d:a7:6b:2b:fd:da:
71:40:ce:f4:f0:74:89:df:d9:e7:0a:74:2c:bf:89:d2:c1:d9:
b3:58:63:92:7c:b5:90:26:1f:f4:f7:33:c7:88:43:be:84:00:
b9:9c:60:7e:45:b3:e0:3f:70:28:db:f9:7c:b5:b0:80:2b:c8:
d0:63:7f:38:3a:aa:73:6f:db:a5:51:da:56:a3:64:9e:1e:f8:
cc:b6:92:50:f9:43:85:54:24:0f:89:dc:9d:2a:c1:eb:d0:02:
09:69:6b:8b:c4:41:05:1b:70:3d:16:99:48:49:8b:f2:e6:e3:
8a:d1:18:a3:82:77:38:0d:69:0b:4a:97:56:35:76:f5:98:1a:
bf:ce:4d:56:dc:9e:72:0a:4f:15:6f:59:b7:f6:0c:e2:7a:8c:
cc:30:53:59:7e:ca:3b:5e:73:db:34:d7:51:ab:ec:d8:f9:2f:
fb:a2:14:88:ce:14:52:98:e7:41:d3:0f:a4:2e:96:25:a4:ff:
01:56:ed:02:f1:15:1e:dd:7d:cb:09:3a:1f:62:fb:bf:76:43:
cd:f4:b9:a1:8b:8d:64:8a:ef:cc:38:2d:5c:c2:79:07:ee:96:
15:0d:50:3c:3a:73:c7:0f:fb:75:33:91:5c:87:90:82:46:94:
a7:bf:15:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:15 2024 by rpki-client on console-ams.rpki-client.org