Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7046F48904D11EF937A418F762E951A.roa
File: A7046F48904D11EF937A418F762E951A.roa (raw, json)
Hash identifier: xQrTttgz7LnJehNBxZljJo6gOn3MjnjT1AUAxa3/Rkk=
Subject key identifier: 06:2B:EB:26:71:B8:6B:C9:67:C1:60:C5:A0:FA:60:3A:9A:03:D6:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010073
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7046F48904D11EF937A418F762E951A.roa
Signing time: Tue 22 Oct 2024 08:14:26 +0000
ROA not before: Tue 22 Oct 2024 08:14:22 +0000
ROA not after: Fri 24 Oct 2025 08:14:22 +0000
asID: 136744
IP address blocks: 154.211.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65651 (0x10073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:14:22 2024 GMT
Not After : Oct 24 08:14:22 2025 GMT
Subject: CN=67175ee2-d606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:45:4f:60:de:13:f4:f7:a8:20:18:c5:db:ab:
5f:05:60:98:ec:08:5a:c4:d8:c8:68:6b:ac:b1:4f:
f4:94:09:a1:d1:0e:e5:a7:91:09:44:b5:7e:51:39:
20:36:03:c2:25:59:ef:4e:d4:7e:1d:c4:13:4e:bc:
16:b0:8b:2e:cd:de:67:d0:87:4c:8f:bd:26:03:65:
34:e1:92:e7:ce:c1:8b:90:60:26:f5:0b:66:74:56:
e7:bd:7d:f0:a4:ae:a2:ec:19:46:a5:44:8e:45:f7:
17:fb:08:14:7b:c6:8d:81:10:86:ce:66:25:b7:c2:
e9:59:34:ae:4f:23:a0:20:7a:7c:0a:e3:3f:3f:cc:
24:da:0c:6e:f2:b1:e2:81:a1:0d:65:20:4d:84:f8:
ac:87:a5:9a:c1:39:73:ec:16:11:f6:83:24:4e:2c:
f4:88:0d:b9:71:99:fc:ca:8a:84:aa:f4:3f:b9:8f:
aa:ea:b5:dd:ed:77:d3:22:4c:bd:dc:8b:31:89:6f:
59:f3:72:9b:40:7a:62:b6:66:c9:d5:31:b6:b6:32:
95:24:83:46:bf:a9:8b:15:7f:d5:79:2e:f7:8d:5a:
6c:e5:93:c4:83:22:8a:ce:ea:50:7a:eb:d9:c2:b5:
11:47:1b:53:ef:c9:78:4d:dd:b3:c2:71:9d:8f:0b:
33:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2B:EB:26:71:B8:6B:C9:67:C1:60:C5:A0:FA:60:3A:9A:03:D6:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7046F48904D11EF937A418F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.210.0/24
Signature Algorithm: sha256WithRSAEncryption
84:8a:29:c1:e9:48:5a:66:6c:90:0a:41:a5:56:cc:e1:65:4f:
db:c2:fb:00:24:f8:36:7e:c5:6c:3d:50:85:d3:1f:b1:64:92:
4d:ab:7f:e0:12:0e:64:81:2f:e9:94:07:52:5a:33:09:3b:27:
56:1e:34:56:78:ad:a7:20:91:2b:10:16:77:58:46:39:2c:b8:
9a:58:e4:61:ea:c1:4e:e4:19:4e:7d:c1:48:99:bc:38:76:6e:
e9:a7:45:85:c6:3b:54:e5:b5:03:eb:47:09:02:f5:93:08:54:
69:5c:8b:6d:94:35:7f:3a:14:1a:1f:ce:2f:99:db:30:64:43:
b5:1b:e6:53:1f:db:a4:04:87:b0:3a:63:54:19:8f:05:87:69:
c2:d8:4b:f9:80:5e:db:38:ea:a7:4c:61:d5:63:0a:28:aa:4f:
ca:93:85:f4:b6:09:38:4a:6c:0c:ea:c6:3c:3b:5e:a5:d6:46:
21:65:5d:44:82:58:d1:f5:d7:f3:ef:e3:53:c7:a3:1f:61:e2:
be:86:8a:50:08:5c:9e:a5:42:f1:e6:30:5e:93:75:9d:ec:21:
9f:83:31:8a:ba:85:82:b6:46:db:87:0b:41:d8:29:ae:8d:49:
7f:2d:7a:57:c6:c5:51:37:e9:dc:06:d0:1c:6d:73:59:83:7c:
f3:04:2f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:21 2024 by rpki-client on console-ams.rpki-client.org